We take security serious. Yours is especially a high priority. We have a number of systems and security protocols in place to guard you while you do online banking, and to make sure you are safe from identity theft or any other online threats.

That way no matter where or when you logon, you know you are protected.

Below is additional information on all our security measures

What we can do for you

What we can do for you

  • Barclays Online Security

    Barclays Online banking is built using state-of-the-art technologies that provide a high degree of security. The security infrastructure comprises of firewall, intrusion detection systems (IDS), virus monitoring tools and many more. The security requirements have been implemented and audited by an international consulting firm, using internationally accepted standards and practices. Online Banking uses 128-bit digital certificate from VeriSign for encryption of the Secure Sockets Layer (SSL) session. SSL is the industry standard for encrypted communication and ensures that customers' interaction with the Bank over the Internet is secure. Besides technological solutions, Security is also built into the login process. Online banking enforces the use of a minimum 8 character password including alphanumeric plus special . We also use secret question and answer to protect your online banking details.

  • Data Encryption

    Our Online Banking service is hosted on a secure 128-bit encrypted server. This means that any information you send us is encoded for your protection.

  • Secure Code

    Secure Code is a feature that helps us to identify that it is really you making the transactions. It is a unique code that will be sent to your mobile phone via SMS.

  • One Time Passwords (OTP)

    When creating a new beneficiary, one time transfers, or other kinds of sensitive transactions, a special one-time password (OTP), will be sent to your mobile phone. You must type this into the indicated field for verification. These codes can only be used once, and dramatically decrease the risk of being defrauded.

  • Timed Logout

    Online Banking logs you out if you are inactive for 5 minutes. This gives you added protection if you forget to log yourself out.

  • 3-Password failure resulting in account suspension-Lock

    If the incorrect PIN or password is entered three times consecutively, the internet banking service will be temporarily suspended or locked and you will have to visit your preferred branch or call our Contact Centre.

What you need to look out for

What you need to look out for

  • Virtual or Dynamic Keyboards

    Virtual or Dynamic keyboards are designed to reduce the risk of programs that download themselves to your computer and create keystroke log that can be used to gain access to your accounts. Virtual keyboards are an important component in securing your online banking experience.

    a) Avoid using shared computers when accessing Barclay Online Banking.
    b) Avoid logging into Barclays Online Banking or using critical passwords at internet cafes, libraries, and other public sites to avoid the risk of information being copied and re-entered after you leave.
    c) Change your passwords regularly.
    d) Contact Barclays Contact Centre on Tel: +254 (20) 3900000 immediately if you suspect your Online Banking password has been compromised.
    e) Use a password on your computer to prevent unauthorized individuals from accessing Your information.
    f) Disable the "AutoComplete" function of your browser.
    g) Always remember to log-off Online Banking and close your browser when you have finished.

  • Internet and email fraud

    While the internet can make life very convenient with services such as online banking and shopping, there is always the underlying security risk that criminals will abuse the internet to gain access to your personal information – such as banking details – and use this to steal your money.

  • Phishing Scams

    Some criminals will go to amazing lengths to steal your money – but the more aware you are, the less likely it will be that you will fall prey to internet or email phishing scams.
    Fraudsters often send out emails claiming to be from Barclays (or other reputable organizations) – commonly known as ‘phishing’ - many of which look very authentic as they make use of the Barclays logo and corporate colors to convince you that the email is legitimate. Often, the content of the email makes reference to your account being suspended, and the only ways you can stop this suspension is to click on the link supplied and update your personal details. Although this link does not link to the real Barclays website, these websites are usually designed to look exactly like our site, and it becomes difficult to differentiate between this site and the real site. You should therefore identify that the site you are logged on is the genuine Barclay’s website.
    Delayed phishing attacks: In some cases, fraudsters may obtain your access credentials long before any attempt is made to defraud your account. It is very important to change your banking logon information such as your PIN and password regularly to prevent delayed phishing attacks.
    Steps to avoid being a victim of phishing attacks: Although we have a number of security measures in place to protect you, your awareness is the key to avoid being a victim of phishing attacks, so bear the following in mind when you receive an email claiming to be from Barclays:

    a) Never reply to these emails, and don’t click on any links
    b) Never provide your personal details such as your PIN or account details via email or on any links within these emails. We already have information like your ID number, cell number and email address and will never ask for them via email.
    c) Never navigate to our site using a link from an email – always type in the address (www.barclays.co.ke).
    d) Delete spam emails immediately. Even a request to remove your email address from the mailing list will confirm to the fraudsters that your email account is active, and could open you up to more attacks.
    e) Never open an email attachment unless you know who sent the message.
    f) Use the latest browsers which come with filters that alert you when you visit a website that contains potentially unsafe website.
    g) Barclays will never send you a letter or e-mail requesting you to complete your personal details by clicking on a link in an e-mail.

  • Access denied

    We will automatically disable your access to Online Banking if three incorrect attempts are made to log in using your details. This is to stop fraudsters making repeated attempts to log into your accounts.

    Follow these simple tips to enjoy a secured online banking experience! Avoid using shared computers when accessing Barclay Online Banking.

    • Avoid logging into Barclays Online Banking or using critical passwords at internet cafes, libraries, and other public sites to avoid the risk of information being copied and re-entered after you leave.
    • Change your passwords regularly.
    • Contact Barclays immediately if you suspect your Online Banking password has been compromised.
    • Use a password on your computer to prevent unauthorized individuals from accessing y our information.
    • Disable the "AutoComplete" function of your browser.
    • Always remember to log-off Online Banking and close your browser when you have finished.
  • Measures to improve online security

    It is vital that you are aware of some measures that you can take to make you more secure online, such as:

    a) Always keep your personal access information secure, and change your PIN and passwords regularly.
    b) Never open on a link or an attachment within an email claiming to be from Barclays as this may link to a fraudulent website or download a virus or key logging software that will compromise your security.
    c) Be aware that phishing scams have also been received through instant messaging systems such as Google Talk or Skype; as well as through Social Networking websites such as Facebook. When in doubt of the authenticity of a link or a claim, simply don’t click it.
    d) Install good quality security software and ensure that you have updated to the latest version of your browser. Most of the newer browsers have the inherent ability of detecting fraudulent websites.
    e) Don’t bank or shop online when using a public terminal such as those found in internet cafes, hotels, coffee shops or student labs. Key logging software could be present on the computer, and will send all your personal information through to the fraudster, who could then use this information to clear out your account.
    f) Before you bank online, ensure that you are actually within the secure internet banking website. Once you visit www.barclays.co.ke and click on the Internet Banking link, you will be redirected to an available banking server. Once there, check the browser address. It should begin with ‘https://’ (not ‘http://’). Also check the browser for a closed lock and/or key icon – which should either be at the top or the bottom of the screen.
    g) When leaving your computer, always end the current session by closing your browser window, and never leave your computer unattended during an Internet Banking session. 

  • SIM swapping

    A fraudster is able to perform an illegitimate SIM swap with your Cell phone Service provider by for example carrying a false copy of your identity document. This allows the fraudster full use of your cell phone account and to receive messages intended for you. They will also receive the confidential banking notifications and approval SMSes that the bank sends to customers. If they have already tricked you to give them your personal and account details, they can transfer money from your account without you knowing.
    You should:
    • Protect your personal, bank account and cell phone account information – also when you’re online. • Immediately investigate when you notice that you are not receiving calls and messages. • Keep your phone switched on – otherwise you will not notice when your SIM card has been swapped.

Need more help?

Call:

Tel: +254 (20) 3900000
Cell: +254 (722) 130120
Cell: +254 (732) 130120

Email:

barclays.kenya@barclays.com

Ask an expert