Primmum online security
We are committed to keeping your confidential information safe. Learn more at the links below:

Firewalls and cookies
Our online communication policy
How you can protect yourself
Protecting your computer
Browser, operating system and Internet connection security
Recognizing fraud
Identity theft
Be careful with sharing personal information

How we protect you

  • Secure firewalls help prevent unauthorized access to our internal systems.
  • Constant monitoring maintains the quality of our systems, proactively identifies unusual customer activity in the account and helps provide you with around-the-clock peace of mind.
  • 128-bit encryption, the highest level of encryption generally available, helps assure that your data can only be decoded and read by our secure online environment.

Your responsibility 

As set out in the MyInsurance Electronic Financial Services Terms and Conditions you are responsible for maintaining the care, control and confidentiality of your MyInsurance username and password. Primmum and its affiliates are not responsible for unauthorized access to your insurance coverages online or losses that occur as a result of you voluntarily disclosing your MyInsurance username or password, or the careless or improper handling, storing or disclosure by you of this information. In the event of loss, theft, misuse or compromise of your your MyInsurance username and password, you must notify the MyInsurance customer help line immediately.

Firewalls and cookies

Primmum uses secure firewalls to prevent unauthorized access to our internal systems.

Firewalls

  • Our Internet firewalls are designed to securely separate the Internet from our internal computer systems and databases.
  • Data coming from customer computers via the Internet flow through a series of safety checkpoints on the way to our internal systems so that only authorized messages and transactions can enter our computer systems.

Cookies

A cookie is a small file containing certain pieces of information that a website creates when you visit the site.

There are two common types of cookies that we use, "session cookies" and "persistent cookies":
  • Session cookies store information only for the length of time that you are connected to a website – they are not written onto your hard drive. Once you leave the website, the originator of the cookie no longer has the information that was contained on it.
    • For example, when you log in to MyInsurance and are authenticated through your username and password, we send out a session cookie to store the identification number of your browser. The MyInsurance server will monitor the number of your browser to ensure that, at all times during your session, we are dealing with you.
  • Persistent cookies store information on your hard drive, keeping it there until the expiry date of the cookie. If you have allowed Primmum to store non-sensitive information, we use persistent cookies to do it.
    • For example, if you choose the option on our login screen to remember your MyInsurance username for MyInsurance online services, the system will remember and automatically input your login information each time you use the service.
      View our privacy policy on cookies.
An important note about cookies: For the MyInsurance online services to function properly, your browser must be set to accept cookies. If you are concerned about having your browser enabled to accept cookies while you are surfing other websites, we recommend that you enable your browser to notify you when it is receiving a cookie, so that you can accept or reject any cookie presented by the web server you are visiting. For more information on how to do this, we suggest you use the "help" options offered on your computer itself, or contact the manufacturer of your browser or your Internet service provider. 

Our online communication policy

Primmum will not ask you to provide personal information, or login information such as username and password through unsolicited email.

From time to time, fraudulent emails are circulated requesting customers verify their personal and/or financial or insurance information. These fraudulent emails, also known as "phishing" emails, can be deceiving as fraudsters will hijack brand names of legitimate businesses in the hopes that the recipient will respond. Customers are often asked to click on a link in the email that directs them to a pop-up window or modified online login page to enter their username and password.

If you receive such an email claiming to be from Primmum and you believe it to be fraudulent, do not reply or click any links or open attachments found in the email. Please notify us by forwarding a copy of the email to us at phishing@primmum.com.

Delete the email immediately after notifying us.

If you act on any such email, you may compromise your personal information. Remember, your MyInsurance username and password should never be shared with anyone, even if they claim to represent your insurance company.

On occasion, Primmum will send you an email about better servicing your needs, responding to your email request or offering you a new product or service. At no time will we ask you to reply to an email with your MyInsurance username and password, policy numbers or other personal information, because unencrypted email is not secure. If the email provides the option of a response, you will be asked to contact us by phone or visit one of our secure websites. When you are provided with the secure site’s URL, always type the URL directly into the address bar and verify the website name to ensure you are visiting one of our secure sites.

How you can protect yourself

Smart online usage

Smart online usage means taking steps to avoid falling victim to online fraud. Online fraud occurs when criminals try to obtain your personal information, such as credit card and account numbers, get you to pay for items that are either non-existent or misrepresented to you and/or steal your identity.

Fraudsters use a variety of techniques. They may
  • Present themselves as valid merchants enticing you to pay for something that you’ll never receive
  • Send out official-looking emails attempting to convince you to divulge personal information such as your MyInsurance username and password or credit card details
  • Gain access to your computer and personal information via a virus
  • Contact you by telephone or email, representing themselves as someone with whom you have a business relationship, and direct you to call an unverifiable telephone number or proceed to a (fraudulent) website to provide them with your personal information

Here’s what you need to know to protect yourself:

Email safety. Don’t reply to authentic-looking emails that attempt to get you to release personal and financial information. Email is not secure. We will ask you to call us at a verifiable telephone number for such a discussion.

Fraudulent emails can be difficult to detect. Successful fraudsters may use the names of legitimate companies (without authorization) or use similar-sounding names in hopes that the recipient will respond. This process is called "phishing."

Tips for email safety

  • Do not click on links in emails from a sender you don’t know. The link may take you to a fraudulent website where you will be asked to enter your account or card information along with your username and password or other personal information.
  • To log in to MyInsurance online services, always type the URL directly into the Address/Location bar of your browser or click on a link in a Favourites list that you have created.
  • Do not respond to offers of money, threats of legal action or warnings about "compromised security."
  • Do not provide personal or financial information to anyone in an email. Primmum will not ask you for such information via email.
  • Be suspicious of email attachments from unknown sources. If you do not know the sender of the email, do not open the attachment. Attachments may contain viruses or malware designed to infiltrate and cause harm to your computer.
  • Do not set your email program to "auto-run" attachments. Visit the Microsoft Help and Support site for more information. Always run your anti-virus software to check that emails you have received do not contain viruses.
Passwords & login pages. Guard your MyInsurance username and password – they’re the keys that let you in to view the details of your insurance policies. Primmum will not ask you to provide personal information, or login information such as MyInsurance username and password, or policy numbers, through unsolicited email.

Passwords and login pages

It’s vital that you protect the ways your policy information is accessed:

Passwords

  • Choose unique passwords that you can remember so that you do not have to write them down, but ones that are difficult for others to guess. A combination of letters and numbers should be used for better protection.
  • Do not enable AutoComplete or other memorized password functions that may be available on your computer.
  • Do not save passwords on your computer, on the Internet or on any software. Anyone who has access to or compromises the security of that information potentially can impersonate you.
  • Never disclose your passwords to anyone, especially online, not even to the police, your insurance company or other financial institution or your Internet service provider.
  • Change your password at least every 90 days, to help protect the security of your information.

Login pages

  • Look for the secure transaction symbol on your screen before entering any personal information. This will look like a key or a padlock on the very bottom of your browser.
  • Verify the validity of the digital certificate and that it was issued from a trusted Certificate Authority, such as VeriSign. This can help you identify fraudulent websites. Double-click on the padlock icon to view details about the digital certificate.
  • Look at your browser’s Address/Location bar. Verify that the login page that you are visiting is in fact legitimate by confirming that the website address is correct. For example:
If you have chosen to use the “Remember my username” feature, your MyInsurance username will appear when you navigate to the MyInsurance login page, – provided that you have not deleted your cookies since the visit when you enabled that feature. This feature is unique to the legitimate login pages and cannot be duplicated.

Protecting your computer

We take strong measures to protect the security and privacy of your information. But there are a number of things you can do as well that will help protect your private information when you’re using the Internet.

Preventing viruses and dealing with malware

You can detect viruses, spyware and other malicious programs — generally known as "malware" — running on your computer and remove them with up-to-date tools:

Anti-virus software
Anti-malware software
Anti-spyware software

Anti-virus software

Your computer can become infected with a virus through email attachments, from content you download from a website or from infected media (CD-ROM, DVD, ROM, USB drive, diskette, etc.). Anti-virus software helps prevent your computer from becoming infected and your files from being corrupted or lost. It also can detect existing viruses and clean your computer so that they do not spread.
  • Always use up-to-date anti-virus software, from a reputable vendor, that is capable of scanning files and email messages for malevolent software. Most anti-virus programs include an auto-update feature that enables the program to download profiles of new viruses so that it can check for them as soon as they are discovered.
  • Register new anti-virus software immediately, and sign up for automatic notification of product updates if available.

Anti-malware software

Malicious software attacks are rising at an alarming rate. Malware generally refers to any program that intentionally harms your computer and is typically installed without your consent.

Malware can get into your computer by doing something as innocuous as clicking on an ad, going to a website or even unknowingly downloading a document. The malware "industry" has blossomed so much that some malware actually poses as anti-malware software.

Your best defence is to keep your browser, operating system, and applications up to date, and to run updated anti-malware software.

Anti-spyware software

"Spyware" is a particularly nasty type of malware, and is designed to essentially “spy” on you by tracking and collecting your personal information. The information collected often includes your user IDs, passwords, name and address. Your computer can become infected with spyware through email attachments or from free content that you download from a website. Spyware is often installed on your computer without your consent.

Anti-spyware software can detect these programs running on your computer and clean your machine.
  • Have and always use up-to-date anti-spyware software.
  • Register new anti-spyware software immediately and sign up for automatic notification of product updates if the software vendor offers that option.

Firewalls

A firewall filters the information coming through the Internet connection into your computer, permitting communication only with sources you know and trust. It helps prevent unauthorized access, protecting your home network and family from potential hackers and offensive websites.

If you do not have a firewall installed on your computer, any personal information stored on your computer or distributed using the web may be accessed by a hacker for as long as your computer is connected to the Internet. This is especially true for high-speed Internet connections, which generally maintain the same network address; increasing the window of opportunity for attack (a dial-up connection uses a different network address every time it connects).

  • Restrict traffic that travels through your firewall by only granting access to those programs and/or traffic that you are familiar with.
  • If you do not share files or documents with other computers on your network, disable the File Sharing feature. Doing so will prevent others from being able to download or view your files or documents.

Browser, operating system and Internet connection security

Primmum adheres to P3P (Platform for Privacy Preferences) technology in our website design. This standard allows users to better interpret a site’s online privacy policies. For more information, see our online privacy code.

There are two more ways to maintain your computer’s security.

Browser and operating system security
Internet connection security


Browser and operating system security

  • If you use a legally licensed operating system and browser, you’ll be entitled to any security software updates. Sign up for automatic notification, if available, and download them as soon as you can.
  • Always use a web browser that supports 128-bit encryption when accessing secure websites to ensure the confidential transmission of your data over the Internet. For more information about specific security updates or to find out more information about updating your operating system and/or browser, have a look at the links below:

Internet connection security

Computers connected to the Internet are vulnerable to attacks, and those connected for prolonged periods of time are even more so. Review these resources to ensure that your Internet connection is secure:

Recognizing fraud

Every year, thousands of Canadians fall victim to credit card and debit card fraud, telemarketing scams, identity theft, online fraud and insurance fraud. Increase your safety by learning about the most common approaches that fraudsters take and how you can recognize them.

Phishing

"Phishing" or "brand spoofing" is a scam where a perpetrator sends authentic-looking emails, appearing to come from legitimate companies, in an effort to phish for personal and financial information. The emails direct recipients to click on links that re-direct them to fraudulent or "spoofed" websites. Once on the fraudulent site, the email recipient is asked to enter personal and/or financial information that is later used to commit fraud.

If you receive such an email claiming to be from Primmum and that you believe to be fraudulent, do not respond and do not open or click on any links or open attachments contained within the email. Please notify us by forwarding a copy of the email to us at phishing@primmum.com.

Delete the email immediately after notifying us.

Our commitment

Primmum will not ask you to provide personal information, or login information such as your MyInsurance username and password, or policy numbers, through unsolicited email.

Identity theft

Identity thieves steal key pieces of your personal information and use it to impersonate you and commit crimes in your name. They may physically steal important documents, or they may find out your personal information in other ways, without your knowledge. Once they steal the information, they may use stolen identities to conduct spending sprees, open new bank accounts, divert mail, or apply for loans, credit cards and social benefits.


Key signs that someone may be trying to steal your identity

  • Your bank statement, online activity or passbook shows transactions that you don’t recognize.
  • A creditor informs you that an application for credit was received with your name and address, which you did not complete.
  • You receive credit card statements or other bills in your name that do not belong to you.
  • You no longer receive legitimate credit card or bank account statements or you notice that not all of your mail is delivered.
  • A collection agency informs you they are collecting for a defaulted account established with your identity and you never opened the account.
  • Your chequebook, passbook or credit card goes missing.

What to do if you think you might be a victim

Alert your creditors and financial institutions

  • Notify these organizations immediately if your bank cards, credit cards or identification are lost or stolen.

Consult financial institution(s)

  • Discuss whether to close your bank accounts and open new ones.
  • Ask your bank to replace your existing bank card with a new one and assign new PINs.
  • Ask how to report new problems.

Consult issuer(s)

  • Discuss whether to cancel your credit cards and get new ones issued.
  • Ask the issuer whether other accounts have been tampered with or opened fraudulently in your name.
  • Notify your telephone, cable and utilities companies that someone is or may be using your name to open new accounts fraudulently.
  • If identification has been stolen, contact all issuers to have the ID coded as stolen. Alert government organizations.
  • If your SIN is lost or stolen, or if you suspect that someone has been using your SIN to get a job, contact Human Resources Development Canada at 1-800-206-7218 or P.O. Box 7000 Bathurst, NB E2A 4T1.
  • If your driver’s licence is lost or stolen, contact your local driver and vehicle licence issuing office.
  • If you suspect that someone is diverting your mail, contact Canada Post.
  • Consider contacting the police. Filing a police report establishes legitimacy for your claim of fraud.

Advise credit agencies

  • Call Equifax toll-free at 1-877-323-2598, and call TransUnion toll-free at 1-877-713-3393 or 514-335-0374 (Quebec residents), 1-800-663-9980 (Canadians outside Quebec) or 1-800-916-8800 (U.S. citizens).

Credit card

Credit cards and debit cards have become the most popular payment options for Canadians. Most people today prefer paying with plastic to handing over cash and cheques. At the same time you should be aware of the potential for credit card and debit card fraud.

 

How do these types of fraud work?

Credit card fraud comes in two main forms.
  • Criminals can steal your actual card or obtain your credit card number, often by phishing or vishing.
  • They can also produce counterfeit cards and get credit cards issued to them by making false applications using your identity.
According to the RCMP, criminals target students, new Canadians and people who have experienced credit problems by offering them low-interest credit cards for a fee. People who pay the fee never get a card and never see their money again.

Vishing

"Vishing" ("voice" plus "phishing") uses telephone communications to strengthen a phishing expedition.

There are several variations on the scam.
  • In most cases, the fraudster will contact you either by recorded phone message or by email.
  • They then direct you to call a telephone number or proceed to a website to update, verify, activate or re-activate your account.
  • The phone numbers appear genuine; the recorded message appears to be coming from a call centre.
Be aware: Legitimate financial institutions do not request personal information from their customers by unsolicited email or telephone calls – they already have that information. On occasion, Primmum will send you an email about better servicing your needs, responding to your email request or offering you a new product or service. At no time will we ask you to reply to an email with policy numbers, username and password or other personal information, because unencrypted email is not secure. If the email provides the option of a response, you will be asked to contact us by phone or visit one of our secure websites. If you call the MyInsurance customer help line because you have forgotten your MyInsurance username and password, we may ask you to provide personal information as a means of authentication.

If you suspect vishing, do not respond to the phone or email message. Do contact the company, financial institution or credit card company and tell them of your suspicions.

Insurance fraud

You may receive a fraudulent telephone call from a false insurance broker, demanding immediate payment of your supposedly overdue premium in order to continue your policy.

The caller will typically claim to be from your insurance company and demand immediate payment of the full-term premium or an outstanding amount on your policy, by credit card. The caller threatens to cancel your policy if payment is not received.

In many cases, the caller will not know the name of your insurance company. This is a red flag that the call isn’t legitimate.

Please note:
  • Primmum will not contact you without identifying ourselves clearly and providing details of your insurance that you can validate.
  • Our internal fraud awareness team will investigate any cases involving our clients that may arise.
  • You must protect yourself by remaining aware of these types of actions and ensuring that you do not release information to a third party over the phone unless you have verified the identity of the party you are speaking with.

False brokers

If you receive a phone call from an individual claiming to be a Primmum broker who asks you to pay a service fee for providing you with insurance or advice, do not comply.

Primmum does not request any form of service fee in procuring insurance. In addition, these individuals are neither licensed nor insurance advice experts, and may unjustly and/or inappropriately represent the insurance provider.

If ever in doubt, please contact Primmum directly.

Misappropriation of premiums

When you take out personal or damage insurance as protection against risk, you are charged a premium by the insurer. However, there have been cases of persons purporting to be insurance representatives and misappropriating premiums for their own personal gain. To protect yourself,
  • Deal only with reputable brokers.
  • Never provide payment or private information without verifying the broker’s identity.

Password

Protecting your password is a necessary step in protecting you from potential card fraud.
  • Select a password that’s easy for you to remember but difficult for others to guess. Always avoid the obvious – your telephone number, date of birth, etc.
  • Memorize your password. Do not let anyone else know or use your password and avoid writing it down. If you absolutely have to write down your password because you cannot remember it, never keep the paper in your wallet or purse. Try to disguise the password in some way, for example, by keeping it within a record of other information.
  • Never give out your password over the phone, Internet or mail. No one but you knows your password– not even your insurance company.
  • Change your password from time to time, just in case. This is easy to do online.
Protecting your identity. Identity theft occurs when someone uses your personal information without your knowledge or consent to commit a crime, such as fraud or theft. Be careful and aware of sharing personal information.

Identity theft is becoming far more common in our rapidly changing world. Identity thieves use key pieces of your personal information – such as your social insurance number, driver’s licence number and/or credit card numbers – and use them along with your name, address and phone number to make purchases, take out loans or apply for credit cards. They may physically steal important documents, or they may find out your personal information in other ways, without your knowledge.
  • The following strategies can help protect you from identity theft.
  • Be careful of sharing personal information.
Back to top

Be careful with sharing personal information

Use appropriate security measures.
  • When you are asked to provide personal information, ask how it will be used, why it is needed, with whom it will be shared and how it will be safeguarded.
  • Be particularly careful about your Social Insurance Number (SIN); it is an important key to your identity, especially in credit reports and computer databases. Use other types of identification when possible (and when your SIN is not required by law). Only provide personal information on the phone or through the mail when you have initiated the contact or are dealing with someone you know.
  • Provide personal information over the Internet only when you know that the communication channel is secure.
  • If you receive a call from someone claiming to represent your credit card issuer or your bank and the caller asks for your credit card number, do not provide it. If the call is legitimate, the issuer will already know your credit card number.
  • Never disclose your password to anyone. No one from the insurance company should ask for your password.

Use appropriate security measures

  • Keep your statements in a safe place – they contain sensitive and personal information. When you no longer need them, shred them before throwing them out or putting them in the recycling collection.
  • Protect your username and password.
  • Guard your mail. Deposit outgoing mail in post office collection boxes or at your local post office. Promptly remove mail from your mailbox after delivery. Ensure mail is forwarded or re-routed if you move or change your mailing address.
  • Take advantage of technologies that enhance your security and privacy when you use the Internet, such as digital signatures and data encryption. If you use Internet/Online services, protect your computer.
  • Check your statements for accuracy.

Check your statements for accuracy

  • Check your account statements as soon as they arrive and review them on a regular basis to ensure all transactions and charges are correct. Look for extra or missing transactions and report any discrepancies immediately.
  • Pay attention to your billing cycle. If credit card or utility bills fail to arrive, contact the companies to ensure that they have not been redirected.
  • Access your credit report from a credit reporting agency (Equifax or TransUnion) once a year to ensure it’s accurate and doesn’t include debts or activities you haven’t authorized or incurred.
  • Consider enrolling in a credit report monitoring service, which will alert you to changes in your credit, enabling you to reduce the impact of identity theft.
  • Always keep your own notes of all transactions, especially those conducted over the telephone or the Internet, and store notes securely.

Consider purchasing the Identity Plus Advantage coverage.

The Identity Plus Advantage® coverage is an add-on to your home insurance policy offered by Primmum. If you have purchased the coverage and become the target of identity theft, an expert in the field will work with you to help you restore your identity. Learn more about Identity Plus Advantage coverage here.

Avoiding telemarketing scams

According to the federal government, telemarketing fraud costs Canadians more than $100 million every year. While telemarketing is a legitimate sales tool for many companies, including Primmum, criminals may use it to deceive you with tempting but phony offers. Your best defence is to learn to recognize this type of fraud and take a few simple steps to protect yourself in these scenarios.

Telemarketing fraud occurs when criminals – posing as legitimate businesses, charities or causes – call people with phony offers in an attempt to defraud them. For example, a fraudulent telemarketer may try to pressure you into sending money for a special offer, deal, prize or lottery that you have supposedly won, or ask you to provide personal information like your credit card numbers.

These strategies will help you stay safe from telemarketing scams.

Know who you’re dealing with

  • Verify who the company is, where they’re located, etc. Ask questions and get a call-back number. If your questions are being avoided or not answered to your satisfaction, you should be cautious. Legitimate companies will give you an opportunity to check them out or think about an offer.
  • Never provide your account number, credit card number or other financial information over the phone unless you initiated the call or have validated who you’re talking to within the company. No one should ever request personal banking information from you over the phone. If anyone asks you for this information, alert the police and your financial institutions immediately.

Don’t be pressured into a decision

  • Take the time to do your homework. Don’t invest or buy a product or service without fully understanding what it is and verifying whether it is legitimate.
  • Never send money to take advantage of a special offer, prize or deal. There’s a good chance you won’t get any of these things – or see your money again.
  • Think twice about sending cash. According to law enforcement agencies, criminal telemarketers often ask you to send cash or a money order, rather than provide a cheque or credit card number. If you’re asked to send payment by wire or courier, it could be a scam.
  • If the offer sounds too good to be true (e.g., “call now and receive a free trip”), chances are that it is.

Keep records

  • Record the name, address and phone number of the person or company making the call. If you do purchase an item, record the date of the transaction and the delivery date that is promised.

Your business

Your business can also become the victim of fraud.

Who to call for fraud-busting help

Part of preventing fraud is reporting it so others aren’t victimized as well. To learn more or to report a fraud, contact the following agencies:
  • Phonebusters, 1-888-495-8501. Phonebusters is a national anti-fraud call centre operated by law enforcement agencies, including the RCMP. It collects complaints and forwards them to the appropriate law enforcement agencies.
  • Competition Bureau, 1-800-348-5358. The Competition Bureau is a great source for fraud prevention information.
  • RCMP. The RCMP website highlights the latest consumer scams and how you can deal with them.
  • Reporting Economic Crime On-Line. RECOL enables you to file your complaint online, and forwards it to the appropriate law enforcement or regulatory agency and/or private commercial organization for potential investigation. It also provides support for education, prevention and awareness of economic crime.
  • Canadian Council of Better Business Bureaus. The BBB’s mission includes setting standards for marketplace trust and denouncing substandard marketplace behaviour. On its site you can search for reputable businesses and file complaints.

Back to top