Protect Your Data—and Your Dollars

Over the past few years, massive data breaches have become almost commonplace. Leaks put the personal information of billions of people around the world into cybercriminal hands—including email addresses, usernames, passwords, full names, birthdates, Social Security numbers, physical addresses, account numbers and even medical information.

How Does Identity Theft Happen?

Although data breaches can expose a massive amount of personal data, it is not the only way criminals obtain sensitive information about you.

When you post on social media platforms, that information can be viewed, saved and used against you. Additionally, cybercriminals will often target individuals to obtain sensitive information. Armed with this information, identity thieves could then try to drain your financial accounts or apply for new credit cards or mortgages in your name.

Perpetrators can also assume your identity in another location to defraud you, such as using your Social Security number for employment, to get medical treatment on your health insurance or to file fraudulent tax returns.

How to Protect Your Personal Information

With so much data out in the open—and the potential for it to be used fraudulently—knowing how to guard your personal information online is the first line of defense. Control what you can and monitor your accounts so that any data breaches may have less of an impact on your life and finances.

Online

Use strong passwords and change them often.

• Length is more important than complexity. An 8-character password with basic complexity takes 6 minutes to crack, but a 14-character password with the same complexity could take years to crack.

• Don’t use the same usernames and passwords for multiple sites because a data breach for one account could also compromise other accounts. Be sure to use different passwords for online financial sites than the ones you use for social media.

• Password manager software is a much more secure way to store your passwords than a physical list.

Enable multifactor authentication (MFA).

• Multifactor authentication provides an extra layer of security for your account by requiring additional verification using a security code sent to your phone or personal device. This reduces the risk of account compromise even if someone obtains your password.

• This process protects your account more effectively by requiring something you know (your username and password) as well as something you have (a code on your phone) when you log in.

• The MFA security code should only ever be used by you, so do not provide it to anyone over the phone or by text.

Understand your digital footprint.

• Do an online search of yourself to understand what information is publicly available so you can better control what type of information you expose.

• Evaluate your privacy settings, especially on social media.

• Think through what you post before you post it, and be aware that what you make public has the potential to be used by others. Remember, what happens on the internet stays on the internet.

• Delete or deactivate old accounts that are no longer needed. This limits your online presence and lowers the chance of bad actors obtaining credentials or other information about you.

Be wary of Wi-Fi.

• Activate password protection for home Wi-Fi networks.

• Avoid logging in to personal accounts or making transactions through public Wi-Fi, especially if the website you're accessing doesn't include encrypted technology (look for addresses that start with https:// rather than http://).

Know the red flags of phishing emails and fake websites.

Remember that bad actors will try to STEAL your data. Look for these red flags:

Offline

Keep important documents safe.

• Store your Social Security card and statements, birth certificates, tax returns, financial records, loan agreements and insurance documents in a home safe or locked file cabinet.

Shred documents that contain personal information.

• Safely discard monthly bills, bank statements and correspondence, paycheck stubs, direct deposit receipts and pre-approved credit card offers.

Check your mail daily.

• Stop delivery if you will be away for an extended period. Check USPS.com to see if Informed Delivery, a digital preview of your mail, is available in your area.

Keep track of your wallet or purse.

• Consider what you really need to carry: driver’s license, debit or credit cards, work identification, gym membership, health insurance card (and not your Social Security card), etc.

On Your Phone

Don't give out personal or financial information during an unsolicited call.

• If the caller claims to be from a company and you're unsure, hang up and call the company's publicly available number directly. Never reply to text messages asking for personal information.

Lock your phone; choose a strong passcode.

• Consider using biometric identification features such as fingerprint or face recognition scans. Use remote wipe software to protect your information in case of theft.

How We Protect Your Investment Accounts

American Century Investments proactively guards against the threat of cybercriminals.

Our information security team designs and maintains technical security systems, and we employ strict internal controls and policies to secure our clients’ private information.

What to Do If Your Information Is Exposed or If You Suspect Identity Theft

Act fast. Hackers and identity thieves have a head start because they have already obtained your data before you even know it’s missing.

1. Contact financial institutions.

2. Change passwords and ensure they are unique across all accounts.

3. Close fraudulent accounts.

4. Place a fraud alert on your credit reports by contacting the three major credit bureaus: Equifax, Experian and TransUnion.

5. File a report at IdentityTheft.gov.

6. Order copies of credit reports through the Consumer Financial Protection Bureau or the major credit bureaus.

7. Capture all communications in writing.