How we will protect you online

We will never ask you for your personal information

Fraudsters will often send out bogus emails in an attempt to try and get hold of your personal information, such as login credentials (username and password). Emails which they send out may look very similar to the genuine article. However, the most important thing to remember is that we will NEVER ask you for account details, payment details or your full security details in an email.

If you receive an email which you do not believe has been sent by the West Brom:

- DO NOT click on any links or call any of the telephone numbers which appear in the email.
- Please forward the email to

Confirming a site is secure

Look for the Lock symbol. Internet browsers show you that a website area is secure by displaying an unbroken key or a lock either in the bottom right of your browser window, or next to the website address bar at the top of the page. Click the icon for details of the security certificate.

The website address will be prefixed with 'https:' when you go to a secure page.

We make sure that all of our logged in areas or any forms requiring you to enter personal information always use a secure page.

What web addresses we will use

There are only a couple of web addresses (or URL's, as they are also referred to) which we use. They are as follows:

If you come across or are suspicious of any websites or webpages which carry the West Brom's name or logo, then please email us the links to

Online account security

Our popular WeBSave online savings accounts provide a secure way for you to manage your savings online. A few of our online security measures are:

Encryption Technology: Your access and use of our website is validated and protected using the secure TLS Protocol with 256-bit Certificate keys for encrypting data, the latest encryption technology, so that information passed between us and you is scrambled, and cannot be read or understood by anyone else.

Firewall protection: We utilise firewalls to restrict access to our systems, and routine monitoring is performed, to protect your information from unauthorised access.

Secure login: Your account can only be accessed by entering your unique User ID and password. Additional personal memorable data will also be required.

System time out: You will be automatically logged out of your account if you leave your screen inactive for more than fifteen minutes. Whilst you should always log off, whenever you leave your computer, the automatic time-out provides some additional protection.

Last login date and time: Whenever you log into your account, the date and time that you last logged in is displayed for your protection.

Online certificates: We utilise online security certificates, issued by Symantec, so that you can verify that our website is genuine. Clicking on the gold padlock - either at the bottom of the web browser (on older versions of browsers) or in the URL address bar (newer browsers) - allows you to view our certificate.