A. Security standards
1. Access to programs

KWP-Klein Wertpapierhandel GmbH programs are very secure. The KWP-Klein Wertpapierhandel GmbH uses the most sophisticated security procedures. All transactions are being protected by a special security protocol which transmits any data at 128-bit encryption. For this KWP-Klein Wertpapierhandel GmbH uses the SSL encryption (Secure Socket Layer encoding) protocol as a security standard which is recognised all over the world.

2. How can I recognise that data are transmitted encrypted?

You can establish that you have a secure internet connection in two places:

  1. If the address begins with "https", for example: https://ssl.webpack.de/kwpse.com.
  2. If you can see a closed yellow lock in the bottom status bar of your browser.
3. How can I verify the security certificate on the sites of KWP-Klein Wertpapierhandel GmbH?

After calling the customer log-in always verify the correctness of the security certificate. When a safe internet connection has been established, this is shown in the lower right-hand corner of the status bar of your browser as a small yellow padlock. On double clicking, this symbol opens the dialogue window containing the properties and contents of the certificate.

Next click the tab "General" with Internet Explorer and the button "View" when using Netscape, Mozilla Firefox, Safarie or Google Chrome. You now obtain an overview of for whom and by whom the certificate has been issued and also of the expiry date. The following combinations are possible:

If the URL in your browser starts with https://ssl.webpack.de/kwpse.com "GlobalSign Organisation Validation CA-SHA-G2" should show up as the valid issuer. The security certificate is valid up to 20.01.2017; 18:57:34 clock.

4. How do I verify the electronic fingerprint?

Electronic fingerprinting lets you know for certain that you are truly connected to KWP-Klein Wertpapierhandel GmbH. The code comprises several digits and letters and will be replaced once every year. For verifying please proceed as follows:

For Internet Explorer Modzilla Firefox, Safarie or Google Crome: After calling the certificate, for the last entry under "Details" the thumbprint comprising several digits and letters must be identical to one of the following codes:

For https://ssl.webpack.de/kwpse.com sha1-Fingerprint: 97 06 13 a0 77 64 5e 49 d3 71 55 f7 e2 23 5f 15 18 d6 36 b1

In the case that the fingerprint does not correspond to the one mentioned above you must under no circumstances use the programs in the secured area!

5. Security of our server

Our server is located in one of the largest data center operators worldwide. Access into the space of the server is protected in several stages. In addition to a personal transponder card and the associated PIN a successful palm scan is required. In order to get to the server, another PIN is necessary since the computer is in a secured cabinet.

The operating system is a pure server software. Not required modules are not installed and therefore offer no opportunity to attack. Patch management is automated. All pending patches are viewed and recorded either immediately or next business day. To ensure maximum safety, not a local but an external firewall. This firewall is configured restrictive and will only allow port 80 and port 443.

B. How can I contribute to security?
1. Dealing with your persölichen data

If the security of a computer is doubtful don't use it. Programs may be installed in that computer which store or transfer your log-on data. In case you still would like to use PC’s other than your own, as for example in internet cafes, please make sure to observe the following points:

  1. Never leave the PC unattended as long as you are logged on
  2. End and exit the Online Banking session via the link "log off"
  3. Be sure to erase the cache of the browser
  4. Close down the browser
2. E-mail requests the entry of log-in data

The KWP-Klein Wertpapierhandel GmbH never sends any e-mails, which require you to enter your log-in/security data. In no case should you ever divulge your log-in details to third parties! These e-mails frequently contain links, which lead to alleged KWP-Klein Wertpapierhandel GmbH sites. Even the appearance of the alleged KWP-Klein Wertpapierhandel GmbH sites can be identical to those of our known sites.

Be sure never to call the log-in domain via links from e-mails, always only use the path known to you, i.e. https://ssl.webpack.de/kwpse.com - customer login.

3. Windows open suddenly when connecting to the internet

When connecting to the internet, windows can open unexpectedly which contain "security warnings" and the like. These advertising messages are sent by unknown companies via the windows news service. These windows have nothing in common with KWP-Klein Wertpapierhandel GmbH. Do not download any programs from these promotional sites, as they can contain viruses, Trojans or diallers. Diallers are programs which build a connection to the internet via expensive phone numbers.

4. Radio keyboards

On using radio keyboards data can be bugged effortless within a radius of approximately five metres. Often all that is needed is a keyboard receiver from the same manufacturer.

5. What do I have to observe when using a radio network?

What do I have to observe when using a radio network? Using a wireless LAN (Local Area Network) is associated with risks. If you use a wireless connection with your PC or Notebook always have the latest security standards in place. As a matter of principle, data can be listened into by everyone with the right technology. The encrypting technologies of the wireless LAN are, to date, usually not sufficient to guarantee a secure data transfer.

Questions and comments to the Data Protection Officer