The privacy and security of your account information are very important to Vanguard. To protect your information, our website uses the following security features:
- When you registered for our website, you provided personal information—including your taxpayer identification number and a Vanguard® account number—to authenticate your identity. The information you provide is based on the types of accounts you have at Vanguard. Once you log on to see your account information, everything you see is secure.
- You choose your own user name and password during the registration process. You are the only person who knows your password, and you can change it at any time.
- When you register, you are asked to answer three security questions. We use the answer to verify your identity if you forget your user name and need to ask us what it is. If you forget your password, you must reregister.
- To access your accounts through retirementplans.vanguard.com, your computer's web browser must support, at a minimum, Transport Layer Security (TLS) version 1.0. This technology provides strong security and privacy when you access account information, initiate online account transactions, or send secure messages.
- Vanguard passed an independent and rigorous audit to get an "extended validation" Secure Sockets Layer (SSL) certificate from Symantec, a leading internet security authority. This type of SSL certificate can help prevent "phishing" attacks when you use certain browsers by highlighting the web address bar in green and showing the real company name when you access trusted websites, such as retirementplans.vanguard.com.
- Secure areas of our website have built-in timers that terminate your access after extended periods of inactivity.
You share responsibility for maintaining the security of your personal account information on Vanguard's website. When you finish viewing your account information, you should log off from the site.
In addition, you should never reveal your user name or password to anyone. Because it is linked to a password, a user name alone cannot be used to log on to our website. Your user name will be disabled after five unsuccessful password attempts, and you will then need to reregister for access to the secure areas of our website.
If you suspect that someone knows your password, you should change it online. Log on using your user name and password, and then from the Security preferences tab on the My Profile page, click Update security information. Follow the steps to change your password.