|
 |
|
Web security
This site is for public access and does not require log in or submission of personal data to access its content.
Secure websites provided to clients and participants in plans managed by The 401(k) Company, have strict security standards and procedures to help safeguard plan and account information. Website security measures include, but are not limited to the following:
- Access to the website is controlled and monitored through hardware and software, including but not limited to: a firewall, certificate-based client authentication, and Secure Socket Layer (SSL) protocol (browser encryption).
- Secure website access requires validation of a unique account number and password combination and all account information – including your account number and password is encrypted. The participant website allows a maximum of five login attempts. After the fifth incorrect login attempt, the system locks the account and restricts access. All connection attempts, successful and unsuccessful, are logged by the system for future reference.
- A cookie is stored on the user's computer when visiting the website. A browser cookie is a small amount of information stored in a file on the host computer. Cookies allow a web page to store some information that persists on the user's computer after it exits from the page. Since the amount of data is small, and it can only be used in certain restricted ways, this practice does not pose a security hazard. Cookies allow users to create and maintain a secure session while requesting information and doing business online. We do not use cookies to store confidential or personal information, nor do we use them to track a user who has logged off our website. Users are reminded to log off and close their browsers at the end of each session.
- Access to plan and participant account information by employees of The 401(k) Company is limited to authorized individuals with appropriate rights and privileges.
|
