Cyberbanking

Cyberbanking is an innovative and integrated banking service. With this service, you can operate your accounts via various electronic channels including the Internet and mobile phone.

You can manage your finances and make account enquiries and fund transfer anytime, anywhere. 

All personal and corporate customers of BEA Singapore can sign up for Cyberbanking.

Through Cyberbanking, you can:

• check account balances and transaction history
• view a summary of your fixed deposits
• transfer funds to other BEA Singapore accounts
• transfer funds to other banks in Singapore via FAST/NON-FAST
• transfer funds to other banks through Telegraphic Transfer
• place fixed deposits
• request cheque books
• request audit confirmations 

Personal customers
You can access and manage your bank accounts including your personal and joint-alternate accounts.

For joint account with both-to-sign mandate, you can only view the account balances and past account activities.

Corporate customers
You can access and manage your corporate bank accounts. 

Yes, Cyberbanking services are available 24 hours a day, 7 days a week. You can make requests at any time, except during our maintenance period. 

Yes, you can access your Cyberbanking anywhere as long as you have access to the Internet with a compatible browser. Please also ensure that your mobile service provider supports the delivery of SMS messages in the respective overseas country so that you are able to receive the One-Time Password and post transaction notifications.

No, it is free of charge for signing up for Cyberbanking.

Hardware

• Computer or device with 500MHz or faster processor
• 128 MB of RAM
• 56kbps modem or faster internet connection
• Screen resolution of 1024x768 (recommended)

Software

• Operating System
  • Windows 7 / Windows 8 / Windows 8.1 / Windows 10
  • macOS
• Browser
  • Google Chrome (version 528 or above)
  • Mozilla Firefox (version 491 or above)
  • Safari (version 471 or above)
  • Microsoft Edge (version 492 or above)
  • JavaScript, TLS 1.2, and Cookies must be enabled 

Yes, the Cyberbanking hotline is +65 6602 7878 during business hours 9:00 am to 6:00 pm.

If you have any queries or require assistance with regard to Cyberbanking, you can also visit our branch during business hours. 

You may call our Cyberbanking hotline at +65 6602 7878 during business hours from 9:00 a.m. to 6:00 p.m..

You can check the transaction details and balances in "Account Summary" or "Account Activity" functions under "Accounts" of the "Accounts and Payments" menu.

Alternatively, you may call our Cyberbanking hotline at (65) 6602 7878 during business hours from 9am to 6pm for assistance. 

To use Cyberbanking, JavaScript must be enabled in your browser. Please follow the following steps to enable "JavaScript":

Google Chrome

1. Open Google Chrome on your computer
2. Click More and then Settings
3. Click Security and Privacy
4. Click Site settings
5. Click JavaScript
6. Select Sites can use JavaScript

1. Go to control panel and click on internet option
2. Select "Security" tab, and select the "Custom Level" button
3. Scroll down to "Active scripting"
4. Make sure the "Enable" radio button is checked
5. Click "OK" to save your preference

1. Open the Mozilla Firefox browser or restart it, if it is already running
2. From the Mozilla Firefox menu, select Tools then click the Add-ons option
3. In the Add-ons Manager window, select Plugins
4. Click Java (TM) Platform plugin (Windows) or Java Applet Plug-in (Mac OS X) to select it
5. Check that the option selected is Ask to Activate or Always Activate or on olderMozilla Firefox versions, click on the Enable button (if the button says Disable Java is already enabled)

1. Click on Safari and select Preferences
2. Choose the Security option
3. Select Allow Plug-ins then click on Manage Website Settings
4. Click on the Java item, select an option (Ask, Allow or Allow Always) from the pulldown list When visiting other websites
5. Click Done then close the Safari Preferences window 

If you have not installed JVM or cannot find the Java Control Panel on your computer, please download and install the Oracle (Sun) Java Virtual Machine at www.java.com.
(Supported version: Oracle (Sun) Java Virtual Machine (JVM) Version 8 Update 60) 

Microsoft Edge

1. Go to control panel and click on internet option
2. Click on the advance tab
3. Scroll down to Security category, manually check the option boxes for Use TLS 1.0, Use TLS 1.1 and Use TLS 1.2
4. Click OK
5. Restart Microsoft Edge

Google Chrome

1. Open Google Chrome
2. Click Alt F and select Settings
3. Scroll down and select Show advanced settings
4. Scroll down to the Network section and click on Change proxy settings
5. Select the Advanced tab
6. Scroll down to Security category, manually check the option boxes for Use TLS 1.0, Use TLS 1.1 and Use TLS 1.2
7. Internet TLS Properties
8. Click OK
9. Close your browser and restart Google Chrome

Mozilla Firefox

1. Open Mozilla Firefox
2. In the address bar, type about:config and press Enter
3. In the Search field, enter tls. Find and double-click the entry for security.tls.version.min
4. Set the integer value to 3 to force protocol of TLS 1.3
5. Click OK
6. Close your browser and restart Mozilla Firefox.

Safari

There are no options for enabling SSL protocols. If you are using Safari version 7 or greater, TLS 1.0, TLS 1.1 and TLS 1.2 are automatically enabled. 

You are required to complete the respective Cyberbanking Account Application Form and submit it at our branch in person.

For corporate customers, you may also mail the completed forms and required documents to us. 

To log in, please visit our website at www.hkbea.com.sg.

Please do not click on any hyperlinks in emails or any unverifiable source to access Cyberbanking. 

You will need your Cyberbanking account number and PIN which will be provided to you upon sign up.

Upon first login, you will be prompted to accept our Terms and Conditions for SG Cyberbanking Service (Personal Banking) / Terms and Conditions for SG Cyberbanking Service (Corporate Banking). For security reason, you will also be prompted to change your PIN.

Please note that Cyberbanking access will be suspended if you fail to change your first-time login PIN within 90 days from the activation of your Cyberbanking account.

If this occurs, you will need to re-activate your Cyberbanking account (please refer to Q4.4). 

You are required to complete the respective Cyberbanking Account Amendment Form and submit it at our branch in person.

For corporate customers, you may mail the completed from to us. 

Your account will be suspended after multiple incorrect login attempts. You are required to complete the respective Cyberbanking Account Amendment Form and submit it at our branch in person.

For corporate customer, you may mail the completed forms to us. 

You are required to complete the respective Cyberbanking Account Amendment Form and submit it at our branch in person.

For corporate customers, you may mail the completed forms to us. 

You may click the "Log out" icon on the upper right hand corner. Please be reminded to clear the browser cache and close all browser sessions after logged out. 

You may login to your Cyberbanking Account and refer to our respective Singapore Cyberbanking User Guides.

You can enquire your transaction activity for the past 12 months. Please note the maximum display period is 1 month.

You may login to your Cyberbanking Account and refer to our respective Singapore Cyberbanking User Guides.

You may perform fund transfer to your own and BEA Singapore account or other banks via FAST/NON-FAST, MEPS or telegraphic transfer.

The cut-off time for fund transfer are as follows:

Instructions received after the cut-off time or on a non-business day (Saturday, Sunday or a public holiday in Singapore) will be processed on the next business day. These transactions can be viewed in the "Pending Transfer" function. 

You may login to your Cyberbanking Account and refer to our respective Singapore Cyberbanking User Guides.

There is no limit for transfer between your own BEA Singapore accounts. For other fund transfer, a default limit will be set by the Bank and this can be changed upon your request or via Cyberbanking.

The minimum amount per transaction is $1.00 in the transfer amount currency.

When you receive the onscreen message "Transaction Completed" or "Transaction Submitted " with a transaction reference, your instruction has been successfully received by the Bank.

A post transaction notification will be sent to your registered email address and mobile device number informing you that your instruction has been successfully received by the Bank.

For corporate customers, transaction status can be viewed in the "Execution Status" tab. 

Fund transfer instruction cannot be amended or cancelled upon submission.

You can check your account activity via Cyberbanking.

A post transaction notification will be sent to your registered email address and mobile device number informing you that your instruction has been successfully executed or rejected by the Bank. 

TT / MEPS refers to the electronic transfer of local / foreign currency funds from one party (remitter / debtor) to another (beneficiary / creditor).

Monday to Friday (provided it is a non-public holiday and bank operating day) - 2:00 p.m.

TT / MEPS received before cut-off time on a business day will be processed on the same working day while TT / MEPS received after cut-off time / weekend / public holiday will be processed on the next working day. 

For local / overseas TT/MEPS, charges may be imposed by the remitting bank, the beneficiary bank, and/or intermediary or correspondent bank and can be settled in one of the following methods:

a) BEN (CRED): Charges are borne by the Beneficiary
Your beneficiary shall bear all charges levied by the banks engaged in the TT/MEPS. You are only required to pay the amount you wish to remit. All charges (those levied by the remitting bank / the intermediary (correspondent) bank and/or beneficiary bank etc.) will be deducted from the remittance amount and your Beneficiary / creditor will receive the remaining balance.

b) SHA (SHAR): Charges are shared
You shall be required to pay for the remittance amount and remitting bank's charges. Your beneficiary shall bear the charges levied by the other banks (the intermediary, correspondent bank and beneficiary bank, etc.), which will be deducted from the remittance amount and your beneficiary will receive the remaining balance.

c) OUR (DEBT): Charges are borne by the Remitter
You are required to bear all charges of the TT / MEPS, i.e. the remittance amount, remitting bank's charges, as well as all the other banks' charges (correspondent, intermediary and beneficiary banks etc.). The charges will be debited from the account as indicated by you after the exact amount has been determined.

BEA shall not be liable if the beneficiary does not receive the full amount due to our correspondent or intermediary or the beneficiary's bank not following the instructions provided and deducting their charges from the remittance amount. 

• Your name, address and account number
• Payment currency code and amount
• Beneficiary bank's name, address and SWIFT code
• Beneficiary bank's routing code (if applicable)
• Intermediary bank’s name and SWIFT code (if applicable)
• Beneficiary's account number or IBAN for payments to European countries or United Kingdom or Middle East
• Beneficiary’s full name
• Detail of Payment 

You may login to your Cyberbanking Account and refer to our respective Singapore Cyberbanking User Guides.

New cheque book(s) will be posted to your registered mailing address via normal mail in 3 to 5 business days upon request.

Request received after 6:00pm or on a non-business day will be processed on the next business day.

Please note that cheque book request is subjected to approval a cheque book fee is applicable to each cheque book. 

You can access your Cyberbanking webmail via "Inbox" function in "My Details" tab.

Yes, you can send your enquiries via your Cyberbanking Webmail. However, please do not send transaction instructions or reporting of suspicious transaction through this service.

Yes, post transaction notifications, important information and updates will be sent to you via Cyberbanking Webmail.

The maximum capacity for Inbox and Outbox is 30 messages each. Messages can be retained for 4 years as long as your mailbox is not full. The oldest messages will be automatically deleted if the maximum capacity is exceeded.

You are required to complete the respective Cyberbanking Account Amendment Form and submit it at our branch in person.

For corporate customers, you may mail the completed forms to us. 

For security reason, you will be prompted to change your PIN during your first login.
We recommend that you change your PIN periodically. 

You can change your PIN via "Change PIN" function in "My Details" tab.

You should change your PIN immediately and you are advised to check your accounts. If there is any discrepancies in your accounts, please call our Cyberbanking hotline (please refer to Q2.1) or visit our branch as soon as possible. 

Please call our Cyberbanking hotline (please refer to Q2.1) or visit our branch as soon as possible. 

PIN
When you log in to Cyberbanking for the first time, you are asked to change your PIN immediately. From that point onwards, you must enter your correct Cyberbanking number and self-selected PIN every time you want to access Cyberbanking. For your safety, you will also be prompted to change your PIN from time to time.

One-time Password
You are required to enter a One-time Password that will be sent by short messaging service ("SMS") to your registered mobile device as part of our enhanced authentication measures.

Moving Number Keypad
An alphanumeric PIN, which consists of a combination of numbers and letters, and a moving number keypad - further ensures your ongoing security.

Automatic Session Log out
For protection against unauthorised access, your computer's connection to Cyberbanking will be automatically terminated if the session has been idle for 5 minutes.

Transport Layer Security ("TLS") with at least 128-bit encryption
"TLS" is an international and well-proven standard employed to ensure confidentiality of information transmitted over the Internet. All sensitive information sent between your Internet browser and our computer system is encrypted using at least 128-bit TLS encryption.

Automatic disablement
To guard against unauthorised access, your Cyberbanking access will be suspended after a number of unsuccessful login attempts. Customers will need to complete the Amendment Form for Cyberbanking - Personal Account / Amendment Form for Cyberbanking - Corporate Account. Personal customers should submit the form duly completed in person at our branch.

Cyberbanking's no-cache feature
All customer information (including your account / financial information) that you view during your Cyberbanking session are neither cached nor stored on your computer.

Last login date and time
Your last login date and time are displayed after you have successfully logged in to Cyberbanking for your verification.

Post transaction notification
An alert message will be sent to your registered mobile device after we have received transaction instructions, e.g. fund transfer. 

Please refer to the Security Tips available on our website. 

Every secure website possesses a digital certificate to prove its identity.

You must not login to / enter account information on any website fraudulently masquerading as BEA Singapore website where the "Security Lock" icon cannot be found or where the certificate information is invalid. 

If you receive a security certificate warning (similar to the screen displayed below), which may indicate that a security certificate does not belong to the Bank, you should discontinue to login to login/use Cyberbanking and inform us immediately.

The "auto-complete" feature of some browsers saves information that you previously entered into fields (web addresses, forms, passwords, etc.). When you type similar information into one of these fields, a dropdown list with possible matches will automatically appear for selection.

To protect yourself and prevent unauthorised use of your account, you are advised to disable this feature on your browser. 

To safeguard your personal information, you are advised to clear the browsing history (e.g. to delete all saved information you have typed into forms) and close all browser sessions after having logged out of Cyberbanking.

Two-factor authentication (2FA) is an authentication scheme that increases online security by relying on a combination of two different factors, e.g. something you know (e.g. user ID and password) and something you have (e.g. token or mobile device SIM card), in the verification of a user's identity.

Although fraudsters may be able to illegally obtain your user ID or password, they cannot steal something you have in your physical possession, such as a token or mobile device, over the Internet

We will provide a One-time Password ("OTP") to be used for two-factor authentication via SMS.

An OTP is a password generated by us and sent to you for you to input as an additional form of identity authentication. You will need an OTP each time you login to Cyberbanking and perform designated transactions through Cyberbanking. Each OTP is used only once for a designated transaction and expires after 180 seconds.

When you login or perform a designated transaction through Cyberbanking, an OTP will be sent to your registered mobile device. You must check the transactions details displayed in the SMS message and then input the OTP on the web page to complete the process before it expires.

OTP is used the following functions:

• log in to Cyberbanking
• perform own BEA Singapore account transactions
• request cheque books 

Please call our Cyberbanking hotline (please refer to Q2.1) or visit our branch as soon as possible. 

Yes, you can register an overseas mobile device number for using this service. Please ensure that your mobile service provider supports the delivery of SMS messages in the respective overseas country so that you are able to receive the One-Time Password and post transaction notifications.

Please note that charges may be incurred for SMS messages sent to you by your mobile network provider. Please contact your mobile network provider for details of SMS charges. 

You are required to complete the respective Cyberbanking Account Amendment Form.

This service is currently free of charge. However, charges by your mobile network provider may be incurred. Please contact your mobile network provider for details of SMS charges.

Mobile Banking can be used with the following devices:

Note:Not all mobile phones and tablets are supported. Moreover, external factors such as system setting may affect the display quality and use of Mobile Banking Service.

iPhone and Safari are trademarks of Apple Inc. registered in the U.S. and other countries. App Store is a service mark of Apple Inc. iOS is a trademark or registered trademark of Cisco in the U.S. and other countries and is used under license. Android is a trademark of Google LLC. 

Transactions made via the SG Mobile Banking are safe and secure due to the use of the TLS technology. Moreover, no personal information is downloaded to or stored in your mobile device.

The Mobile Banking Service provides you another channel through which you can access our Cyberbanking Service using a mobile device (such as smartphones and tablets), as long as the mobile device has a telecommunication connection for accessing the Internet (e.g. 3G, 4G, HSDPA or Wi-Fi).

The Service is designed for viewing information and operation on a mobile device. However, not all functions you can access via Cyberbanking from your PC are accessible via Mobile Banking. 

Through Mobile Banking, you can:

• View account balances and transaction history
• View summary of your fixed deposit
• Transfer fund to other BEA Singapore accounts
• Transfer fund to other banks in Singapore via FAST/NON-FAST
• Perform fixed deposit transaction 

This service is currently free of charge. However, charges may be incurred by your mobile network provider. Please contact your mobile network provider for details of SMS charges.

You can register for Mobile Banking if you have already registered for Singapore Cyberbanking. Simply download the BEA Singapore App from the App Store or Google Play.

You can access Mobile Banking in any country provided that you have access to roaming data service or Wi-Fi. However, your mobile network provider may charge you for roaming data and other additional fees. For charge details, please contact your mobile network provider.

You can call our Cyberbanking Hotline at +65 6602 7878 during business hours from 9:00 a.m. to 6:00 p.m..

You can read our Branch’s Privacy Statement made available on the Branch’s website at https://www.hkbea.com.sg/html/en/beasg-privacy-statement-and-notice.html. 

You can call our Cyberbanking Hotline at +65 6602 7878 during business hours from 9:00 a.m. to 6:00 p.m..

You can change your maximum daily transaction limit by logging into your Cyberbanking via web browser. You may login to your Cyberbanking Account and refer to our respective Singapore Cyberbanking User Guides for more detail.

To update your mobile phone number, please call our Cyberbanking Hotline at +65 6602 7878 during business hours from 9:00 a.m. to 6:00 p.m..

i-Token is an authentication tool embodied with BEA App function which allow customer to authenticate designated transactions and log in to Singapore Cyberbanking and BEA Singapore App.

You will need the following:

1. A registered mobile phone number with BEA that can receive one-time passwords.
2. A registered email address for Cyberbanking.
3. A mobile device with supported OS versions. 

You can open up the BEA Singapore App, click i-Token and check if your i-Token has been activated under your registered account.

No. i-Token is provided as a free service.

For security reasons, your i-Token can only be activated on one mobile device for one Cyberbanking account at a time.

By logging in to the BEA Singapore App/ Singapore Cyberbanking and deactivating i-Token in the Settings.

Yes. You can deactivate your i-Token by logging in to the BEA Singapore App and go to iToken > Settings > Select "Deactivate i-Token", then follow the instructions to complete the process of changing your i-Token PIN. 

Yes. You can change your i-Token PIN by logging in to the BEA Singapore App and go to i-Token > Settings > Select "Change PIN", then follow the instructions to complete the process of changing your i-Token PIN. 

Your company can use a bulk payment to make multiple payments in one go to any bank accounts in Singapore through GIRO. There are two ways to make a bulk payment:

a) Payment by Uploading a File
Upload a file containing multiple payments (up to 300 in one file).

b) Payment by Manual Entry
Enter payment details individually (up to 20 payments at a time). Details of each payment can be saved as a template for future use. 

For security reasons, bulk payments cannot be amended. However, you can cancel a bulk payment and submit a new one.

• View a summary of all loan transactions.
• Submit a request for a loan drawdown*, loan rollover**, partial loan repayment, or full loan repayment.
• View repayment history for loans.
• Receive notifications via email and SMS once requests are processed.

* and ** do not apply to syndication loans or mortgage loans 

The operating hours are from 9:00 a.m. to 6:00 p.m.. After 6:00 p.m., you can only make enquiries.

• View a summary of all trade finance transactions.
• Apply for Letters of Credit, Invoice Financing, Trust Receipt, Receivables Purchase Financing, and Banker’s Guarantees.
• Apply for a Letter of Credit Amendment or to extend a Banker’s Guarantee.
• Make a Trust Receipt payment.
• View all bills positions, including available limits. 

The operating hours are from 9:00 a.m. to 6:00 p.m.. After 6:00 p.m., you can only make enquiries.

Corporate customers with Cyberbanking access can submit their request via Cyberbanking.

You may request BEA Singapore to provide an audit confirmation to your auditor via Cyberbanking instead of writing to BEA Singapore.

Audit Confirmation requests cannot be amended or cancelled upon submission. You may contact "Customer Information and Limits Unit" at +65 6602 7946, +65 6602 7765 and +65 6602 7728 during business hours from 9:00 a.m. to 6:00 p.m. for any amendment or cancellation.

• Auditor Name
• Auditor Address
• Audit Year
• Select Payment mode: Debit from our account maintained with BEA Singapore or Cheque/Cash/MEPS/all others. 

A post transaction notification will be sent to your registered mobile phone number informing you that your instruction has been received and will be processed by BEA Singapore.

e-Statement is the electronic version of your account statement (for deposits and loans). It can be downloaded and viewed through Cyberbanking.

e-Advice is the electronic version of your transaction advice (for remittances, loans and trade finance). It can be downloaded and viewed through Cyberbanking.

No. This service is available free-of-charge.

Cyberbanking customers can view the e-Statement or e-Advice of their accounts registered under Cyberbanking.

e-Statements are available for:

• Deposit accounts
• Loan: half-yearly and yearly statements 

The following types of e-Advices are available:

• Remittance: debit advices.
• Trade: debit/credit advices, trust receipt advices, receivables purchase financing advices, acceptance bill advices and bill receivable advices.
• Loan: drawdown/rollover/repayment advices, overdue instalment advices and final instalment payment advices. 

You will be notified via email, webmail and push notification when your e-Statement or e-Advice is ready for download and view through your Cyberbanking account.

No. A password is not required.

Login to your Cyberbanking Account

• For remittance advices, select "Accounts & Payments" and click on "E-Advice – Remittance".
• For trade advices, select "Trade Finance" and click on "Trade Advice".
• For loan statement and/or advices, select "Loans" and click on "Loan Statement" and/or "Loan Advice". 

Please contact us at +65 6602 7878 during business hours from 9:00 a.m. to 6:00 p.m. for assistance if you are unable to access or view your e-Statement or e-Advice.

The active hours for transactions involving foreign exchange is from 9:00 a.m. to 5:30 p.m. on a Singapore business day.

Via the platform, we offer currency conversion services of up to 11 currencies including Australian Dollar (AUD), Canadian Dollar (CAD), Swiss Franc (CHF), Euro (EUR), Pound Sterling (GBP), Hong Kong Dollar (HKD), Japanese Yen (JPY), New Zealand Dollar (NZD), Singapore Dollar (SGD), Thai Baht (THB) and United States Dollar (USD).

We currently only offer foreign exchange on a Spot value basis.

A single FX contract can only be used for a single transaction.

Suspend account enables you to immediately suspend your Cyberbanking Account, you will not be able to log in and perform any online transactions or activities.

You can suspend your Cyberbanking Account through Cyberbanking web browser or BEA Singapore APP.

Alternatively, you can call our Cyberbanking Hotline at (65) 6602 7878 during business hours from 9am to 6pm. 

Personal
Web browser, click here.
BEA Singapore APP, click here.

Corporate User
Web browser, click here.
BEA Singapore APP, click here. 

You can call our Cyberbanking Hotline at +65 6602 7878 during business hours from 9:00 a.m. to 6:00 p.m..

The revised E-Payments User Protection Guidelines (EUPG), which came into effect on 16 December 2024, are guidelines that set out the duties of account users regarding the protection against losses arising from unauthorised and erroneous transactions. The EUPG aims to establish a common baseline protection for individuals and sole proprietors using e-payment services. For the avoidance of doubt, the SRF does not apply to corporate customers which are not sole proprietors.

The Shared Responsibility Framework (SRF), which came into effect on 16 December 2024, is a set of guidelines that clarifies the roles and accountabilities of individuals, financial institutions, and telecommunications companies in mitigating risks associated with seemingly authorised transactions, particularly in the context of scams and fraud. For the avoidance of doubt, the SRF does not apply to corporate customers.

For more detailed information on the EUPG and SRF, please refer to the E-Payments User Protection Guidelines and the Guidelines on Shared Responsibility Framework. 

As an account user, you are expected to comply with all your duties and obligations set out in the Terms and Conditions for SG Cyberbanking Service (Corporate Banking), Terms and Conditions for SG Cyberbanking Service (Personal Banking) and/or Terms and Conditions for I-Token Service and Biometric Authentication for BEA App (as applicable) (Collectively, the “Terms”), as well as Section 3 of the EUPG. These include without limitation:

• Providing Contact Information: You should provide the Bank with accurate and complete contact information to receive transaction notifications.
• Enabling notification alerts on device: You should ensure that device used to receive notification alerts, in the form of SMS, or email, from the Bank is enabled.
• Securing Access to Protected Accounts: You should follow security measures such as downloading apps from official sources, updating browsers and operating systems, using strong passwords, and avoiding the installation of unverified applications.
• Practice Good Cyber Hygiene and Protect Access Codes: You should practice good cyber hygiene and never give away your personal or account credentials to anyone. You should not disclose your access codes in a recognisable way to any third party, or store them in a manner that allows easy misuse.
• Refer to Official Sources to Obtain Website Addresses and Phone Numbers: You should only use contact details from official sources to contact the Bank and avoid clicking on unexpected/unknown/unverified links or QR codes.
• Reading and Verifying Messages: You should read messages containing access codes and verify the recipient or activity before completing transactions or high-risk activities.
• Be Wary of Clicking on Links and QR Codes: You should avoid clicking on links and QR codes provided in SMS or emails unless you are expecting to receive informational links from the Bank.
• Understanding Risks of High-Risk Activities: You should read risk warning messages and understand the implications of high-risk activities before proceeding.
• Report any Unauthorised Activity: You should report any unauthorised activity to the Bank as soon as practicable, and no later than 30 calendar days from when the Bank sends the notification alerts for any unauthorised activity.
• Activating the Suspend Account: You must activate the suspend account feature provided by the Bank to block further mobile and online access to your account as soon as you are notified of any unauthorised transactions on your account, have reason to believe that your account has been compromised and/or unable to contact the Bank for whatever reason.

As a responsible financial institution, we will comply with all our duties and obligations set out in the Terms, EUPG and SRF. These include without limitation:

• Informing every account holder of the user protection duties: We set out the responsibilities of the account holder as per above in question 22.2, provide such information on our website or mobile application as well as update our Terms and Conditions provided to the account holder.
• Refraining from sending clickable links or QR codes via email or SMS, or phone numbers via SMS to account user: We do not send such SMS or email to account holder or user with clickable links, QR code and/or phone numbers. We update our contact details on our official website as well as the Monetary Authority of Singapore’ Financial Institution Directory promptly.
• Notify account user of the risks and implications of performing high-risk activities: We inform the account user of the risks and implications of performing high-risk activites and obtain their confirmation at the point before the high risk activities are performed.
• Imposing a Cooling-Off Period for High-Risk Activities: We enforce a cooling-off period of at least 12 hours when a digital security token is activated on a device.
• Providing Real-Time Notification Alerts: We provide notification alerts on a real-time basis for the activation of digital security tokens and the conduct of high-risk activities.
• Providing Outgoing Transaction Notification Alerts: We provide transaction notification alerts on a real-time basis for all outgoing payment transactions.
• Providing a Self-Service Feature ("Suspend Account"): We provide a suspend account feature for an account holder to promptly block further mobile and online access to his protected account.
• Providing Information to Identify Payment Recipients: We provide information accompanying the access codes to allow the account user to identify the payment recipient.
• Providing a Reporting Channel: We provide account holders with a reporting channel that is available at all times for reporting unauthorised or erroneous transactions and blocking further access to the protected account.
• Real-Time Detection and Blocking of Suspected Unauthorised Transactions: We have capabilities to detect and block suspected unauthorised transactions at all times and review the effectiveness of its detection parameters annually.

You should contact the Bank immediately (and in any case no later than thirty (30) days from becoming aware of such unauthorised activity) to report any unauthorised activity on your account and if you suspect you are a victim of a scam or fraud. Such unauthorised activity includes any transactions, high-risk activities, and the activation of your i-Token that has not been initiated by you or with your consent. When making such report, you should provide the Bank with all relevant information as may be requested by the Bank, including any communication with the scammer, police report, and transaction details.

The Bank’s investigations unit will complete an investigation of any relevant claim by you (other than a claim in respect of any credit card, charge card or debit card) within 21 business days for straightforward cases or 45 business days for complex cases. Complex cases may include situations where any party to the unauthorised transaction is resident overseas or where we have not received sufficient information from you to complete the investigation.

After we have completed our investigation, we will give you a written report of the investigation outcome and our assessment of your liability and seek acknowledgement from you in respect of the same.

If you disagree with the investigation outcome and our assessment of liability, you may raise such disagreement with us by emailing us at BEASIN_FRAUDGRP@hkbea.com.sg (“Disputed Investigation”). The Bank may request from you further information such as records of correspondences in order to facilitate our investigation of the Disputed Investigation.

The Bank will endeavour to assess and complete an investigation of any Disputed Investigation within 21 business days or, in exceptional circumstances, within 45 business days, and provide you with an oral or written report of the outcome of our investigation into the Disputed Investigation. Our oral or written report will include the following information:

1. the outcome of the assessment and investigation of the Disputed Investigation;
2. the reasons for the outcome, including the assessment of you liability;
3. instructions for you to pursue the matter further if you do not agree with the assessment and investigation outcome, including the availability of dispute resolution by Financial Industry Disputes Resolution Centre Ltd (FIDReC); and
4. FIDReC’s contact information.

As an account holder, you are liable for actual loss arising from an unauthorised transaction if any account user's recklessness was the primary cause of the loss. Recklessness includes the situation where any account user deliberately did not comply with their duties, which includes actions such as storing access codes in a manner that can be easily accessed by third parties or knowingly sharing access codes with non-account users.

In such a situation, you (together with your joint account holders) will be liable for all unauthorised transactions on your account up to any applicable transaction limit that account users and the Bank have agreed to.

You are not liable for: 

1. any actual loss arising from an unauthorised transaction if the loss was due to any action or omission by the Bank and/or its employees, such as fraud or gross negligence by the Bank or its employees, or non-compliance with any of its duties set out in the EUPG; and/or
2. the first $1,000 of any actual loss arising from an unauthorised transaction if the loss was due to any action or omission by a third party,

provided that the loss did not arise from the failure of any account user to comply with its duties set out at question 22.2 above.

An authorised transaction is where any account user knew of and consented to the transaction, even if you or such other account user may not have consented to the transaction. This includes the situation where an account user acts fraudulently to defraud any other account holder (including you) or the Bank.

In such a situation, you (together with your joint account holders) will be liable for all authorised transactions up to any applicable transaction limit that you and the Bank have agreed to.

You should notify the Bank immediately if you suspect or discover any erroneous transactions from or to your account(s).

In respect of erroneous transactions from your account, the Bank shall work with the recipient’s financial institution and make reasonable efforts to recover the sums sent in error by you. Such reasonable efforts include:

1. Informing the wrong recipient's financial institution of the erroneous transaction within 2 business days of receiving the necessary information from you;
2. Asking the wrong recipient's financial institution for the recipient's response within 7 business days and thereafter providing you with an update; and
3. Where you are unable to recover the erroneously transferred funds, advising you on the next steps, which may include filing a police report if the funds cannot be recovered.

You shall provide the Bank with any information as may be requested by the Bank to assist it with recovering the sums sent in error by you.

In respect of erroneous transactions to your account, the Bank will make reasonable efforts to facilitate the return of the sums sent in error. Such reasonable efforts include:

1. If not first notified to the Bank by you, informing you of the erroneous transaction;
2. Asking you for instructions on whether to return the sum sent in error;
3. Informing you that retaining or using sums transferred erroneously is an offense under the Penal Code; and
4. Providing the account holder's financial institution with your response.

A seemingly authorised transaction is a payment transaction involving a scammer impersonating a legitimate business or government entity, and in doing so uses a digital messaging platform to obtain the account user’s account credentials. The account user enters his account credentials on a fabricated digital platform and the fraudulently obtained credentials are used to perform unauthorised transactions.

Upon reporting any unauthorised activity to the Bank in accordance with question 22.4 above, the Bank will assess if your claim falls within the scope of the SRF. You are required to furnish to the Bank a valid email address and any other supporting information as may be requested by the Bank, such as a police report and digital communication trail(s), within three (3) calendar days from the date of your report to the Bank, in order to facilitate the Bank’s claims investigation process.

    The Bank will, upon request by you:

1. provide you with information on the procedure to file a police report; and
2. provide you with relevant information that the Bank has of all the seemingly authorised transactions, which were initiated or executed from your account, including transaction dates, transaction timestamps and parties to the transaction.

Where the Bank has assessed that a claim brought by you does not involve a seemingly authorised transaction, the Bank will investigate the claim based on its existing investigation and claim resolution process for all other claims involving unauthorised transactions that are reported to the Bank, in accordance with questions 22.5 and 22.6 above.

Where the Bank has assessed that a claim brought by you involves a seemingly authorised transaction, the Bank’s investigations unit will then assess if the seemingly authorised transaction resulted from a scammer impersonating an entity and contacting you using SMS. If so, the Bank will obtain from you relevant information on the scam perpetrated through SMS before informing your telecommunications company of same for it to commence its investigation.

The Bank and the telecommunications company (where applicable) will work together to complete an investigation of any relevant claim within 21 business days for straightforward cases or 45 business days for complex cases. Complex cases may include situations where any party to the seemingly authorised transaction is overseas or uncontactable during the investigation period.

After the Bank and the telecommunications company (where applicable) has completed the investigation, we will give you a written report of the investigation outcome and our assessment of your liability and seek acknowledgement from you in respect of the same.

If you are dissatisfied with the outcome of the investigation, you may pursue further action through avenues such as FIDReC (if you disagree with the Bank’s assessment of responsibility) or through writing to the Infocomm Media Development Authority (if you disagree with the telecommunications company’s assessment of responsibility).

If the actual losses incurred by you arise out of a seemingly authorised transaction, the Bank, along with your telecommunications company (if applicable), will conduct an investigation to determine who will bear the loss from such seemingly authorised transaction, in accordance with the SRF. The responsibility for losses arising from seemingly authorised transactions will be determined based on the following criteria: 

• Bank's Compliance: The Bank is expected to bear any loss if it fails to comply with its duties under the SRF, such as imposing a cooling-off period, providing real-time notification alerts, and having real-time fraud surveillance.
• Telecommunications Company’s Compliance: The telecommunications company is expected to bear any loss if the losses arise from its non-compliance with its duties under the SRF, such as connecting only to authorised aggregators, blocking unauthorised sender ID SMS, and implementing an anti-scam filter.
• Account Holder's Responsibility: If both the Bank and telecommunications company have complied with their respective duties under the SRF, you (together with your joint account holders) will have to bear the loss arising from seemingly authorised transactions.

Money Lock is a security feature that allows you to lock part or all the funds in your account(s), preventing unauthorised withdrawals.

Locked funds cannot be used for all transactions including GIRO, scheduled payments and account fees.

Locked funds will continue to earn interest at the prevailing interest rate of the account. 

You can lock your funds in your existing account(s) via Cyberbanking or BEA Singapore App. 

For security reason, please visit our branch during branch opening hours from Monday – Friday (9:00 a.m. – 3:30 p.m.).