Cardholder Protection – smsGuardian® Details

Text Alerts

All alert messages will contain the:

  • Institution short name, which can be up to five characters in length and helps identify the institution.
  • The last 4-digits of the card number
  • The merchant name or ATM location
  • Most transactions will provide the transaction amount
  • All will provide an Alphanumeric code that the cardholder will text if the transaction is fraudulent

If a single transaction sets off multiple rules in smsGuardian®, the first rule triggered will be sent to the cardholder as a text alert. We do not send multiple text messages on the same transaction.

 

We respect the cardholders's wish not to be bothered, so we will store all alerts until the "Do Not Disturb" window is closed, at which point we will send all earlier alerts. This will allow the cardholder the ability to review the transaction and respond/ignore accordingly, Since the alerts time out after 12 hours, the "Do Not Disturb" window cannot exceed 12 hours.

 

Other messages sent by the smsGuardian® servce include reminder messages to the cardholder for subscription expiration; Help messages sent to devices when an inbound HELP request is sent, STOP (OPT-OUT) confirmation message when the cardholder texts that he/she wishes to opt out of the service.

 

International Transactions

This rule will send an alert for the following types of transactions:

  • Country Codes do not equal
    • US
    • USA
    • Blank
  • Approved only
  • Excluding Reversals

International transactions will provide text messages on approved transactions where the country code does not equal US, USA, or is left blank.

 


Authorizations greater than …

This rule will send an alert for the following types of transactions:

  • All approved transactions with amounts greater than $400
  • Excluding Reversals

Note: Recognized amounts are $100, $200, $300, $400 or $500

 

"Authorizations greater than…" will send text alerts on transactions that are approved and exceerds the dollar amount selected. The cardholder will not receive text messages on reversals, with the exception of merchants who do not send reversals using standard code.

 

 

 

 

 

 


Or More Transactions in 24 Hours

This rule will send an alert for the following type of transactions:

Note: Recognized numbers are 3, 4, 5, 6, 7, or 8

  • All transactions that equal 6 or more approved authorizations that take place in a scrolling 24 hour time period
  • Excluding Reversals

"… or More Transactions in 24 hours" will send text alerts on transactions that are approved and exceed the number selected for the scrolling 24 hour time period. The system will review the number of transactions for the previous 24 hours. When the transaction count exceeds the preselected number, a text alert will be sent to the cardholder. The cardholder will not receive text messages on reversals, with the exception of merchants who do not send reversals using standard code.

 


Card Not Present Transaction

This rule will send an alert for the following type of transactions:

  • All Approved transactions with POS Entry Mode as follows
  • 01 - Manually Entered (Visa will use this for internet transactions)
  • 06 - Magnetic stripe read (Track 1)
  • 81 - Manually keyed e-commerce (MasterCard only)
  • Excluding Reversals

"Card Not Present" will send text alerts on approved transactions that were manually entered, read only track on a magnetic stripe swipe, or manually entered e-commerce (MasterCard only). The cardholder will not receive text messages on reversals, with the exception of merchants who do not send reversals using standard code.

 

You can review the cardholder activity report under the heading of PEM to determine the POS Entry Method which identify the actual method used to read the account number, expiration date of a card, and the PIN.

 


The Text Message

When reviewing the text message the following will provide clues to what was sent:

  • JHABT identifies the institution. The institution creates a short name using up to 5 characters
  • CARD 1234 identifies the last 4-digits of the cardholder's card number
  • BESTMART identifies the location of the transaction
  • $399.95 identifies the amount spent. The combination of location and dollar amount indicates the rule that was broken.
  • REPLY AA1234NO is the reply being requested if the transaction is fraudulent. Sending the code back lets the system know that this is a fraudulent transaction. It is important to remind your cardholders that if they send anything other than what is requested in the test message will be ignored.
  • REPLY STOP if text back will remove the service from the call phone being used.

 


When an initial text is sent from smsGuardian, the system allows the cardholder up to 12 hours to respond to the message at which point it times out.

 

The text receiver will be provided instructions on how to respond so that the Guardian system recognizes that the transaction is fraud. If the cardholder texts anything different such as "Yes this is fraud" or "Not my transaction" the system will not recognize it and ignore it.

 

If a cardholder receives a text alert on a good transaction, the cardholder will ignore the alert. This will indicate the transaction is good.

 

Any time a cardholder replies to an alert by texting STOP, all cards tied to that phone number will no longer receive text alerts.

 

The cardholder will not receive text messages on reversals, with the exception of merchants who do not send reversals using standard code and real time completions.

 

The card holder will not see the amount of the transaction on these texts because they would be receiving text messages on the pre-authorizations which vary from station to station starting at $1 and could jump to $75 or $150. This could confuse many cardholders.

 

 

We are confident in our systems ability to protect all transactions; however, this is not an invitation for people to attempt unauthorized access to the system. This is a private computing system that is restricted to authorized individuals. Actual or attempted unauthorized use of this computer system will result in criminal and/or civil prosecution. We reserve the right to view, monitor and record activity on the system without notice or permission. Any information obtained by monitoring, reviewing or recording is subject to review by law enforcement organizations in connection with the investigation or prosecutions of possible criminal activity on the system. If you are not an authorized user of this system, or do not consent to continuous monitoring, exit the system at this time by clicking the close box in upper the upper left. Otherwise, continue to Enroll in Online Banking