MILLENNIUM TRUST’S ROLE IN SECURITY

1. Secure Communications

Our system is designed so that data will be encrypted as it travels to and from your PC. Encryption turns meaningful words and phrases into coded language. Everything you do during your Millennium Trust’s web access sessions is encrypted using 128-bit encryption, making your account information read as gibberish to everyone but you and Millennium Trust. 128-bit encryption means there are 2¹²⁸ possible keys that could fit into the lock that holds your account information, but only one that actually works for each session. Encryption is accomplished through Secure Sockets Layer (SSL), which has become one of the de facto standards for data encryption on the Internet. This makes it difficult for your sensitive financial information to be deciphered by unauthorized individuals. SSL allows users to establish sessions with Internet sites that are secure, meaning there is minimal risk of external violation.

2. Secure Login

For security, an ID and password must be entered to access the website and your account. Additionally, the password you enter displays as asterisks so that no one else can see it. An account lockout condition has been set to prevent unauthorized access. After multiple failed attempts to access your account, access will be restricted and you will have to contact us. Millennium Trust employees do not know your password and do not need to know your password. No one from Millennium Trust will ever ask you for your password.

3. Secure Environment

To provide additional safety, Millennium Trust’s account access does not connect directly to the Internet. It is protected by firewalls – software and hardware products that are intended to define, control, and limit the access that outside individuals have to account access. As a general rule, firewalls allow only authenticated users to send or receive transactions through the system.

Further, Millennium Trust’s account access is registered with Verisign, an industry leader in website identification and encryption. Via your browser, Verisign allows you to confirm this website provider’s identity before transmitting any personal information.

4. Automated Time-Out

To help prevent unauthorized access to your account, your session on the website will automatically end after 15 minutes of activity.

5. Use of Cookies

We use "cookies" to help personalize your online experience. A cookie is a text file that is placed on your hard disk by a Web server. Cookies are not used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a Web server in the domain that issued the cookie to you. The use of cookies is a widespread industry standard and thus many major Websites use cookies. Cookies are primarily used to facilitate navigation of websites and as a convenience feature in the entering of information on websites.

You have the ability to accept or decline cookies. Most Web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience some features of Millennium Trust’s website.

6. Social Media Features

Our websites include Social Media Features, such as the Facebook Like button and Widgets, such as the Share This button or interactive mini-programs that run on our sites. These features may collect your IP address, which page you are visiting on our sites, and may set a cookie to enable the feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our Websites. This Policy does not apply to features hosted by third parties. Your interactions with these features are governed by the privacy policy and other policies of the companies providing them.

7. Employee Training

Our Client Service employees are required to do multiple compliance and security related trainings. Including but not limited to:

• Data Protection, Privacy, and Information Security: An Overview
• IRA Compliance
• Identity Theft and Fraud Prevention
• Anti-Money Laundering
• Information Security
• Code of Ethics