Security Information

Security Practices

We use specialized software and other technologies to prevent unauthorized users from accessing your information through the Internet. When you access a secure form in our site, we secure the connection with Secure Socket Layer (SSL) technology. All information is transported within our systems via an encrypted network.

An SSL certificate ensures safe, easy, and convenient submission of information via the Internet. Once an Internet user enters a secure area — by entering banking information, email address, or other personal data, for example — the site's SSL certificate enables the browser and Web server to build a secure, encrypted connection. The SSL "handshake" process, which establishes the secure session, takes place discreetly behind the scene without interrupting the process. A "padlock" icon in the browser's status bar and the "https://" prefix in the URL are the only visible indications of a secure session in progress.

By contrast, if a user attempts to submit personal information to an unsecured Web site (i.e., a site that is not protected with a valid SSL certificate), the browser's built-in security mechanism triggers a warning to the user, reminding him/her that the site is not secure and that sensitive data might be intercepted by third parties.

Other important security features include:

Browser Encryption: We require the use of a 128-bit secure browser to perform transactions. Our root certificate — the Valicert Class 2 Policy Validation Authority — is installed in the following browser versions:

· Internet Explorer 5.01 and higher

· AOL 5 and higher

· Netscape 4.7 and higher

· Opera 7.5 and higher

· Safari on Mac OS X 10.3.4 and higher

· Mozilla (all versions)

· Firefox (all versions)

· Konqueror (all versions)

· Palm OS 6.1 and higher (also Treo 650)

· BlackBerry OS 4.1 and higher

· Sony Playstation Portable 2.5 and higher

· Microsoft Windows Mobile 2005 AKU 2 and higher

· Sun Java Runtime (JRE) 1.4.2_07 and higher and 1.5.0_02 and higher

· ACCESS NetFront 3.3 and higher

· Cingular WAP Gateways (any Cingular phone which uses WAP version 1.X for Web browsing)

· Many Nokia devices manufactured in 2007 and later

Users of older browser versions may receive a warning that the root certificate is not trusted. When presented with the warning those users can simply install the root certificate. To do so, click "View Certificate." Then, when the certificate is displayed, click "Install Certificate." Alternatively, users of older browsers may download and install the root certificate directly from the Repository. A link to the repository is located within the “View Certificate” window.

E-Mail: We recommend that you do not send us ordinary e-mail containing any sensitive information such as your social security number, account numbers and other private personal information. If you wish to send an email with that type of information, please use the email link on the “Contact Balis” page. Inquiries sent in this manner use SSL. Since our e-mail response back to you is not secure, we will not include confidential account information in the response.

Form Clear: All forms in our website are programmed to delete all entries as soon as the “submit” button is clicked. This prevents subsequent users of your computer to view your information. Thus, whether using a public or private computer, your privacy is ensured.

Time Out: As an additional security measure, your current session using our secure forms on the Site will automatically timeout after 15 minutes of inactivity. The AT&T Yahoo browser is not compatible with our time out feature and is not recommended.

Log Out: Please be sure to Log Out if you are going to be away from your computer for an extended period of time. Logging out will end your session and prevent others from using your access.