To help all our employees become more adept at using the Internet, we're getting ready to make Internet access available to them. Could you please provide some guidance about any groundwork we should lay first?
We have a message posted on our Web site that tells customers not to submit emails that contain sensitive or confidential information and that tells them not to use email for specific transaction-related requests. Our system gives us the capability of doing auto-responders to any email submitted. We have drafted an auto-responder that thanks the sender for their message, acknowledges that it was received, but basically reiterates our policy about how they shouldn't be sending confidential or sensitive information or anything about a specific transaction or account. It has been suggested that we might want to add something to it to say something like "We will not act upon email requests for funds transfers, stop payments, account closings, or fraud notifications. These must be done either in person, or by calling such and such number." I'd like to know whether you think this is a good approach or whether there's a better way to handle this. We almost considered not even posting an email address on our site at all to just stop the email.
How could hackers figure out what our Internet server is running?
We will be launching online banking in about 60 days. I would appreciate any ideas you might have for making our customers aware of it, promoting it outside the bank, getting people to try it.