• No suggestions found

    • Categories

  • No categories found
Login
Sign Up

Staying safe from scams and fraud.

There’s been a rise in phishing activity across the financial services industry in recent times as cybercriminals look for new ways to steal confidential information. To help safeguard your details, we’ve included some tips on how to protect yourself and what to do if you think you’ve been scammed.

How to protect yourself from email and sms phishing.

01

Don’t share your password, verification code, personal or financial details with anyone. Afterpay Customer Service will never ask you to disclose these things.

02

For emails, always check that the email is coming from afterpay.com.

03

Don’t click on links in emails or messages, or open attachments, from people or organisations you don’t know.

04

Hover your mouse over a link to see the actual link and where it will take you, if the website doesn’t match afterpay.com it could be fake.

05

Make sure your Afterpay App is the latest version and your account contact information is up to date.

06

Don’t reuse your Afterpay password with other accounts, such as email or social media. We recommend using unique, long, strong passphrases across your accounts - a password manager is a great way to help you with this.

07

Look out for grammatical errors and typos - the phishing techniques used by cybercriminals are always improving so some templates are very convincing.

08

If you think an email, phone call or text message is suspicious, look up the details of the organisation separately and contact them to verify.

Help centre

What to do if you think you’ve been scammed.

If you think you’ve entered your Afterpay details into a phishing site, let us know what happened as soon as you can. Include as much detail as possible, such as a screenshot of any suspicious information and the communication you received.

If you have received a SMS verification or email message from Afterpay that you have not triggered, you can safely ignore this.

If you’d like more information about phishing or updates on the latest threats, visit the Australian Government’s Scamwatch here.

Visit a helpful resource to report cyber crime to the Australian Cyber Security Centre here.

Go to help centre

Proudly compliant.

Afterpay is committed to protecting account information.
The below outlines the certification Afterpay has in place to ensure our customer and merchant data is safe.

Afterpay Limited is a PCI-DSS Level 1 certified Service Provider organisation.


PCI-DSS is a comprehensive set of requirements created by the Payment Card Industry Security Standards Council to ensure cardholder data security.


By receiving data directly from our customers, Afterpay Limited acknowledges that this means the organisation has responsibilities for ensuring the secure handling of customer cardholder data for the Afterpay services.


Afterpay Limited does not receive cardholder data from our merchants. Merchants may have PCI-DSS responsibilities that are independent of the Afterpay Merchant Agreement process.


It is the Merchant’s sole responsibility to remain informed of their PCI-DSS obligations and compliance status. Afterpay Attestation of Compliance (AOC) is available to merchants and partners on request and under a NDA. Afterpay’s Privacy Policy is available here.


Afterpay Limited is an ISO/IEC 27001 certified organisation. ISO/IEC 27001 is an international standard that requires organisations to establish, implement, maintain and continually improve an information security management system.

View more

Spotted a security vulnerability?

Report it on Bugcrowd

Support

Information

Apps

Social Media

Resources

Location

© 2024 Afterpay Australia Pty Ltd.


Afterpay acknowledges the Australian Aboriginal and Torres Strait Islander peoples as the traditional custodians of the land, sea and waters where we live, meet and work. We pay our respects to their Elders past and present. Always was, always will be, Aboriginal Land.