Skip to Content

This section of our website explains our general policy regarding any personal information you might supply to us when you visit this site.

Online Privacy Statement

This section of our website explains our general policy regarding any personal information you might supply to us when you visit this website and related online and mobile services. BankPurely®, a division of Flushing Bank, is committed to protecting the privacy of our customers. This online privacy policy explains how we collect, share, use and protect information when you use the BankPurely website, mobile applications, channels, pages, accounts and social media websites and covers other interactions you may have with us or our affiliates through one of our digital advertising campaigns. Certain BankPurely web site pages (e.g., a micro site) and BankPurely social media sites may have certain terms and conditions regarding the privacy of your information that vary or are in addition to those described in this Online Privacy Statement. Please be sure to review the privacy disclosures for the specific BankPurely service you are using.

BankPurely Internet Privacy Policy

You can visit the BankPurely website and obtain information about our products and services, view our corporate reports, check on career opportunities, or get news updates and other value-added services without providing any information about yourself.

If you do provide personal or any type of identifying information, such as a home or business address, e-mail address, or telephone or fax numbers, we will not disclose this information to any external organization or company unless we have informed you, been authorized by you, or are permitted or required to do so by law. We will, however, retain this information, as well as your business activities and transactions, according to our strict confidentiality standards. Click here for the full details of our customer privacy policy (pdf).

When you download and use our mobile banking apps, the following permissions on your device pertaining to the collection and use of information may be required:

Permission: Function: Used For:
CAMERA Allows access to the device’s camera Mobile Remote Deposit
LOCATION Allows access to location Maps
ACCESS TO EXTERNAL STORAGE Allows access to files/media on the device Secure Message Attachments
CONTACT LIST Allows access to contacts on the device Person-to-Person Payments Recipient List
AUDIO Allows access to the device’s microphone Chat
PHONE STATE Allows access to information about the user’s device for device identification Malware/Anti-Phishing
DOCUMENTS AND IMAGES Allows access to for the collection, processing, and retention of documents and images Statements and check images
ZELLE® Allows access to email addresses and phone numbers Transfer money between you and others who are enrolled directly with Zelle® or enrolled with another financial institution that partners with Zelle®

Images: When it comes to images used in our mobile application, we collect and store them only with your explicit consent and solely for authorized purposes, such as facilitating transactions or streamlining user experience. These images are securely stored and accessed only by authorized personnel, adhering to strict data access controls.

What Information We Collect

  • Personal information that identifies a particular individual, such as information you provide on our forms, surveys, applications or similar online fields.
  • Registration information, such as your email address, and the username and password you select for this website.
  • Third party credentials, such as username and passwords for third party social networking and other websites.
  • Information submitted in connection with our contests and sweepstakes.
  • Technical and navigational information, such as computer browser type, pages visited, average time spent on our website, IP address, unique identifier of you device, operating system version and app version.

Usage and Other Information

BankPurely (and our service providers) may use cookies and similar technologies to collect information about which computers and browsers access our website, and to keep track of you as you move through our website and social media networks. We may use this information for a number of reasons, including the following:

  • Deliver specific content to your interests
  • Provide access to our secure banking functions
  • Assist with website traffic reporting (such as reporting unique visitor counts)
  • Measure and report the level of engagement with our advertisements on this and other websites, and provide you with advertisements tailored to your interests (“Targeted Advertising”)

If you chose, you may set your web browser to warn you before it accepts a cookie and allow you to choose whether you want to accept the cookie. Certain website features may not work properly if you restrict the use of cookies on the website.

Do Not Track

Although, there are no common technical standards for how Do Not Track consumer browser settings should work on commercial websites, the marketing industry has undertaken certain self-regulatory initiatives to provide consumers with a choice of the types of ads they may see online and to enable them to opt-out from online behavioral ads served by some or all of the companies participating in these programs reasonably conveniently. Because of the absence of such technical standards, we cannot ensure that our websites will respond to Do Not Track consumer browser settings in any particular instance.

Targeted Advertising

We believe that online behavioral advertising helps to provide you with more relevant advertising based upon on the websites you visit. Third party companies we work with may place and track our advertisements on third-party websites.

If you prefer to not receive targeted advertising, you can opt out of some network advertising programs that use your information by visiting the Network Advertising Alliance (“NAI”) site. This will not avoid you from seeing any ads, but will avoid having any relate to your interests as determined during your web browsing. The NAI web site also offers a tool that identifies its member companies that have placed cookies on your browser and provides links to those companies. Please note that network advertising companies that provide these services have their own privacy policies and are not subject to our Online Privacy Statement.

Opting Out of Email Advertising

You may choose to stop receiving alerts and other emails by following the unsubscribe instructions in the email you receive. Please note that you may not have the ability to opt-out of certain service-related messages.

You may choose to close or request that we delete your online account at any time. It may not always be possible to completely remove or delete all of your information from our databases without some residual data because of backup and other reasons. We may retain some information to comply with law, prevent fraud, resolve disputes, trouble shoot problems and enforce our terms, as permitted by applicable law.

Online Banking System Security

At BankPurely, we understand the importance of online security and the need for various types of safety measures. On a daily basis, we take many precautions to successfully protect the security of your accounts and transactions, including using some of the most up-to-date Internet Banking security methods and programs.

Security concerns have been addressed from several angles within the architecture of the Internet Banking application. Implementation of the Secure Sockets Layer security protocol on the Web server and customer browser helps ensure authenticated data has been received from the customer. The three-tiered approach of the Internet Banking application creates a double firewall which performs information requests over dedicated networks designed to handle specific functions. Placing all business logic and event logging within the Internet Banking server creates a controlled environment which allows quick incorporation of Internet security technologies as they evolve. Finally, a security analyzer monitors login attempts in order to prevent unauthorized logins.

However, it is also up to you, our customer, to participate in creating a secure environment to protect your online banking accounts from unauthorized access and fraudulent activity.

Best Practices for Online and PC Security

By following these simple steps you can contribute to a safe online banking experience.

  • Monitor account activity on a periodic basis.
    • E-mail and text alerts can be scheduled to notify you of your current account balance, changes to your account balance, paid checks, and more.
  • Never share logins, passwords, or any other information that allows secure access to your online banking system. Do not leave them in an area that is not secure.
  • Use different logins and passwords for each online banking system. Your password should be easy to remember and difficult to guess. We recommend using best practices for strong passwords that include upper and lower case letters, numbers, and special characters. Periodically change passwords several times a year.
    • Avoid using passwords such as birthdays, family names, and pet names.
    • Do not store a list of passwords on the computer or keep them near your computer.
  • Never access websites for online banking from a public computer at an Internet café, hotel, library, etc. and do not use public wireless access points or non-secure wireless networks.
  • Obtain and install commercial anti-virus, anti-malware and anti-spyware software, and consider installation of a managed firewall. Free software may not provide the level of protection required against the latest security threats. Keep all security software updated to the latest releases. In many cases the software can be configured to automatically update. Visit our Customer Resources section below for several vendors who provide security software solutions.
  • Keep your computer updated with the latest operating system patches and updates for all software applications. This includes the operating system, browser software, and software programs such as Real Player, iTunes, and Microsoft Office. Most of the programs can be set to automatically update.
  • To prevent the inadvertent installation of malware, spyware, or viruses do not navigate the web when you are using an identity that has Administrative rights. Set up a separate identity for web browsing that does not have Administrative rights, and only use the Administrative rights identity when operating off of the web.
  • Be aware of pop-ups that prompt you to install software. A common scam is a message that warns of a virus installed on your computer and imitates running a virus scan. Never click OK to the popup that states software needs to be installed to remove the virus. Clicking OK will actually install malware, spyware, and/or a virus on your computer.
  • If possible, dedicate a computer to perform online banking transactions and do not use it for any other online purpose (ex: reading e-mail, web browsing, accessing social media sites).
  • Clear the Internet browser’s cache before and after visiting online banking websites to avoid having malware installed on your computer.
  • Perform updates to installed software by visiting the official website instead of clicking a link contained in an e-mail or web page. For example, if a media player needs to be updated, go to the official media player website to install the update. Clicking on a fake update installation link could result in downloading malware onto the computer.
  • If you are on a site that asks for personal information or login information check for the following on the web page:
    • ​Check that the online banking system session is secure by verifying the web address contains “https://” and not “http://”. This ensures the site is secure.
    • Look for a closed lock either by the address bar or in the bottom frame of your browser. If the lock is missing the page is not encrypted and your information can be intercepted as it passes across the Internet.
  • Type the address of the page you are browsing to in the address bar instead of clicking on a link. Links can be spoofed to look valid but may take you to a fraudulent site without your knowledge. Favorites can also be compromised and altered to take you to a fraudulent site.
  • Do not use automatic login features for online banking and best practices advise to avoid saving passwords to the computer.
  • Never leave a computer unattended when using an online banking service, and always secure the computer when not in use or away.
  • Never send personal or sensitive information by e-mail or post on any external websites such as social media sites.
  • Do not click on links or open attachments contained in suspicious emails.

Email and Text Scams

Email scams, also known as “phishing”, typically appear to have been sent by a legitimate source. The e-mail asks the Internet Banking user to update their personal information, confirm their account status, or try a new online banking feature. An embedded link within the e-mail sends them to a fraudulent website that often looks similar to an actual online banking site. In addition to other sensitive data, users are asked to enter account user name and password under the pretense of verifying their identity. Unfortunately, this information can then be used to gain access to real accounts online.

For years, scammers have tried to trick people using phony e-mails, asking them to click to websites that "spoofed" authentic websites for banks and credit card companies, eBay and major retailers, even the IRS. Most recently, text messaging scams, called “smishing”, have begun to appear. Smishing is when identity thieves send fraudulent text messages to a mobile phone, pretending to be from a financial institution asking the user to call a number. Those who call are asked to key in their credit card number, ATM number, social security number, and/or their personal identification number (PIN).

  • Be suspicious of e-mail or text messages purporting to be from a financial institution, government agency, or other source requesting any of your banking information.
  • Never reply back to the sender with account or login information.
  • It is strongly advised against clicking on links or opening attachments in these types of e-mails. Doing so could result in your system being compromised. Instead, contact the sender using publicly available contact information to verify the authenticity of the e-mail.
  • Never reply to or follow any of the instructions in an e-mail or text message that requests your personal information.
  • Never provide personal information including, but not limited to, Social Security Number, account or credit card numbers and personal identification numbers (PIN) over the phone, via the Internet, email or by text message unless you have initiated the transaction.
  • Always access online banking websites by typing the URL in the address bar instead of clicking on links in an e-mail or another website.
  • Always review the sender’s e-mail address or text message to verify that it is from a valid account or source. If they appear suspicious in any way, notify BankPurely customer service or the legitimate source company immediately.
  • Always leave any suspicious website if you suspect that it is not legitimate.

Social Engineering

Like ‘phishing’ and other email or text scams, Social Engineering involves scamming or tricking people into breaking their normal security procedures in order to obtain information, commit fraud, or gain access to the victim’s computer system. These Social Engineers attempt to obtain information by gaining the confidence of an authorized user and getting them to reveal information that compromises the network's security. The Social Engineer relies on the natural helpfulness of people, causing them to lower their normal safeguards. For example, they may call pretending to be authorized employee of a company claiming to need assistance with an urgent problem that requires a person to reveal their online access credentials.

A Social Engineer will use tactics to persuade people to run malware-laden email attachments and convince people to divulge sensitive information. These malicious engineers rely on people who are not aware of the value of the information and are careless about protecting it. Eavesdropping, shoulder surfing, and dumpster diving are other tactics used in Social Engineering.

Children's Online Privacy Protection (“COPPA”) Statement

Our online services are NOT intended for children under 13 years of age. We do not knowingly collect personal information from children under 13 without parental consent.


This section supplements the information contained in our privacy policy above and applies solely to visitors, users, and others who are California residents (“consumers” or “you”). We adopt this notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”) and other California privacy laws to the extent applicable.  Any terms defined in the CCPA have the same meaning when used in this supplemental privacy notice.

We do not collect information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household (“Personal Information”) covered by the CCPA. 

Personal Information collected, processed, sold, or disclosed, as permitted, pursuant to the federal Gramm-Leach-Bliley Act and its implementing regulations is not considered Personal Information by the CCPA.

Should we begin to collect Personal Information covered by the CCPA, we will review and update this privacy policy. 

If you have any questions or comments about this privacy policy, please do not hesitate to contact us at: 844-878-7359 (TTY/TDD 855-858-0990)

We reserve the right to amend this privacy policy at our discretion and at any time. When we make changes to this privacy policy, we will post the updated policy on our website and update the policy’s effective date. Your continued use of our website following the posting of changes constitutes your acceptance of such changes.

Additional Resources

BankPurely and legitimate companies or financial institutions will NEVER make an unsolicited contact requesting your user name, password, or other account information. It is important that all Internet banking users be aware of such types of fraud.

You can report suspicious e-mails, text messages or any other suspicious activity or requests to us and the Internet Crime Complaint Center, a partnership between the FBI and National White Collar Crime Center.

For more information, visit the following websites: Federal Deposit Insurance Corporation, the Anti-Phishing Working Group and the National Consumers League.

Notice of changes

BankPurely reserves the right to amend this online privacy policy from time to time without prior notice. By including the ‘Effective Date’ of this policy, as indicated below, the last time it was revised or materially changed is made clear and enables you to determine whether there have been any changes since you last reviewed this online privacy policy. Please review periodically.

Effective Date

This online privacy policy was last modified on November 2015.

Customer Resource Center

Helpful Links

New York State Department of Financial Services
Identity Theft Protection
Internet Fraud
Social Security

Credit Reports

Free Credit Report

Security Software Solutions

McAfee® Security Solutions
Norton™ Antivirus Software, Spyware Protection, & Personal Firewall
Symantec™ Antivirus, Anti-Spyware, & Endpoint Security
Click here to download Adobe Acrobat Reader.

Back to top

NACHA, PayItGreen Approved Seal of Approval, and their respective logos are the service marks of NACHA. All other trademarks are the property of their respective owners. ©2020 NACHA. All rights reserved.