Welcome to the China CITIC Bank International.

Additional text has been added to aid users who may be using screen readers to view this site. If you are reading this text on your screen then either, the style sheet (CSS) file has failed to load, in which case you should refresh your screen or, your browser may not support style sheets. Find out more about which browsers support style sheets on the World Wide Web Consortium website.

What follows is a few links to some of the important pages. If you wish to skip this you can

Online Security and Privacy
Be cautious of Trojan Horse Program

Trojan Horse Program could capture your PC screen, logging keystrokes history and remote control your computer. It steals information like your Login ID, password or any others personal data to process illegal action. If you found any unusual circumstance when using the i-banking service, Business Internet Banking service or Corporate Online Banking services, please immediately contact us and should also stop inputting any password or transaction.

Be cautious of Spyware

Spyware is a malicious program that is installed on the computer without user's acknowledgement or consent, with a threat to information leakage. This program often comes from the hidden components of "free program".

Such software claims to accelerate your internet speed and protect your computer from email virus. Once you have installed such software on your computer, user's information and internet activities will be redirected to unauthorized organizations that allow them to store and analyze your internet activities/ information.

What you can do to protect yourself ?
Install anti-virus or anti-spyware software programs onto your computer before you download other programs in your computer.
Do not download any freeware version of software onto the computer that will be used to access China CITIC Bank International i-banking services, Business Internet Banking service or Corporate Online Banking services.
Do not download any Point-to-Point (P2P) sharing software ( e.g. WinMX, Foxy, BitTorrent…etc ) onto the computer that will be used to access China CITIC Bank International i-banking services, Business Internet Banking service or Corporate Online Banking services.
Do not install Internet Accelerator program.
Do not visit China CITIC Bank International website while there is any software that has the ability to monitor the current internet session of your computer.
Uninstall any suspicious software that has the ability to track your internet sessions. You can safely uninstall such software by clicking Control Panel > Add/Remove Programs > highlight the application > select Remove.
Regularly update your anti-virus/ anti-spyware software to ensure that your computer is installed with the latest version.
Do not browse suspicious websites or click on the hyperlinks and attachments in suspicious emails/SMS messages.

Verify the genuineness of the website

There are some fraudulent websites or mobile application created by Internet fraudsters that mimics the look of a particular bank's website to capture your Usernames, PIN, other personal information or transaction details. Some of them will attract people to their sites through scam emails. Therefore, it is crucial to make sure that you are connecting with a genuine China CITIC Bank International website.

What you can do to protect yourself ?
Do not access China CITIC Bank International website, i-banking Service, Business Internet Banking service, Corporate Online Banking services and CITICmobile, or provide your personal information through any hyperlinks, QR code embedded in email, pop up window and search engine.
i-banking service, Business Internet Banking service, Corporate Online Banking services and CITICmobile should be accessed by entering the bank’s website address (www.cncbinternational.com for i-banking, Business Internet Banking service and Corporate Online Banking services; m.cncbinternational.com for CITICmobile) directly, or using bookmark or mobile application (App).
Add China CITIC Bank International i-banking site, Business Internet Banking service or Corporate Online Banking services to your list of favorite sites. Access i-banking, Business Internet Banking service or Corporate Online Banking services site from your list of favorite internet sites.
Check the security certificate that was issued to ibanking.cncbinternational.com, PBG_BB_BIB@cncbinternational.com for Business Internet Banking and corponline.cncbinternational.com for Corporate Online Banking. You can retrieve the security certificate by clicking the "padlock" icon at the top right of the Internet Explorer browser.
For Internet Explorer version 8 or above, please choose "Tools" on toolbar, click "Internet Options" and go to the tab "Advanced". Under the item "Security", make sure SSL 2.0 & TLS 1.0 are all activated.

Be cautious of scam emails

Please take note that the Bank observes a well-adopted practice of not seeking personal or confidential information by email. Fraudsters may send scam emails purported to be from China CITIC Bank International. Most of these emails appear to come from the lawful source of a bank. These emails will trick recipients to reveal their personal information such as your Online Banking User ID, password, credit card number, bank account number, etc. In addition, some of these emails will instruct the reader to visit the fraudulent website via a link embedded in email and request users to input their sensitive personal and account information.

In cases of email scam, the fraudsters hacked into the victim's email account, checked the victim's business correspondence with business partners. They sent an email to the victim using the same or similar email account of his business partner and claimed that the payment bank account had been changed who further requested the victim to deposit the payment for goods into the fraudster's designated bank account. If you receive any suspicious emails, you should confirm the identity of the purported business partners or the authenticity of the requests by means of telephone before remittance so as to prevent from being deceived.

What you can do to protect yourself ?
Beware that China CITIC Bank International will not send email to customers requesting for the account and personal information such as Login ID, Password, HKID, address, etc.
Beware that China CITIC Bank International will not send email to customers with embedded hyperlink or QR code which redirects to the i-banking services, Business Internet Banking service, Corporate Online Banking services or CITICmobile login page.
Do not disclose your sensitive personal and account information via email messages.
Never follow a link within an email to logon our i-banking services, Business Internet Banking service or Corporate Online Banking services.
Unsolicited emails from individuals purporting to be affiliated with the Bank proposing a private business opportunity or seeking cash transfers or account details should be ignored or reported to the Bank through our website.
If in doubt about any email or other communication that you receive which purports to be from the Bank or anyone purporting to be affiliated with the Bank, please contact the Bank through our website.

Security Measures Imposed by the Bank

We employ one of the highest levels of security to protect customer's accounts and personal data.

Here are some of the safeguards we've put in place :
Secure Socket Layer (SSL) 128-bit encryption
All information transmitted via China CITIC Bank International i-banking, Business Internet Banking service or Corporate Online Banking services is protected by VeriSign Secure Socket Layer (SSL) 128-bit encryption which could prevent unauthorized users from reading the information.
 
Personalized Login ID & Password
The only way to access your account via i-banking, Business Internet Banking service or Corporate Online Banking services is to enter a correct Login ID and Password. Each User ID is unique and multiple user logins are not allowed.
Following the 4th consecutive login failure caused by incorrect password, online access of the account will be suspended instantaneously.
 
Automatic Time out
To prevent any unauthorized access, i-banking service, Business Internet Banking service or Corporate Online Banking services will be automatically logoff after a period of inactivity.
 
Last Logon/ Improper Logout Information
To ensure highest internet security, we will provide you with Last Logon Information (last successful logon date & time) once you have logged on i-banking service, Business Internet Banking service or Corporate Online Banking services.
In case of improper logout (e.g. close the browser directly without clicking the "Logoff" button/ Internet disconnection while visiting i-banking website, etc), an alert message will be displayed in i-banking welcome page to alert user that he has not logout properly last time.
 
Use of Cookies
In order to improve our Internet services to you, we will occasionally use a "cookie" and/or other similar files or programs which may place certain information on your computer’s hard drive when you visit our website. Cookies are commonly used by websites to improve user experience and have not been known to transmit computer viruses or otherwise harm your computer. Many cookies last only through a single session, or visit. Others may have an expiration date, or may remain on your computer until you delete them.


We may use cookies to identify you after you have logged in by storing a temporary reference number in the cookie so that our web server can conduct a dialogue with you while simultaneously dealing with other customers. Your browser keeps this type of cookie until you log off or close down your browser when these types of cookie are normally deleted. No other information is stored in this type of cookie.


In addition to the information we collect from cookies, we also obtain information that you provide to us online when you are doing your online banking with us.


Cookies do not enable us to gather personal information about you unless you given the information to our server. Most Internet browser software allows the blocking of all cookies or enables you to receive a warning before a cookie is stored. You may vary the Internet browser settings in case you would like to prohibit the using of cookies. However, you may not have access into certain parts of this website after variation of cookies settings, including online banking services. For further information, please refer to your Internet browser software instruction or help screen. Alternatively, information on deleting or controlling cookies is available at www.allaboutcookies.org.



Securities Measures by Customers

Customers should read the Bank's Smart Tips for Online Security from time to time to ensure that adequate and appropriate measures have been taken.

To ensure highest security while using i-banking services, Business Internet Banking service or Corporate Online Banking services, customers are recommended to take a number of safeguard measures for their own protection.

We recommend our customers to :
Secure your Login ID and Password in a proper way
Use a combination of numbers, upper and lower case letters for your Login ID/ Password. Avoid using repetitive or consecutive digits in your password.
Make it a habit to change your password periodically. We recommend our customer to change the password at least once every 6 months.
Avoid using an easy-to-guess password. Do not associate your password with your personal data, such as your login ID, name, birthday or phone numbers.
Never disclose your login ID and password to any person or web site that you do not know/ cannot verify. Memorize your password and try not to write your password down anywhere.
Do not use the i-banking service, Business Internet Banking service, Corporate Online Banking services or CITICmobile through any public/shared computers or public Wi-Fi, such as those located at cyber cafes or public libraries.
Avoid using the same details that you use to access other services (e.g. ATM PIN, Phone Banking PIN, Email, etc.) to access China CITIC Bank International i-banking services, Business Internet Banking service or Corporate Online Banking.
Do not store your User ID/ Password in the browsers, in the computers or mobile phones in plain sight.
Keep the security token (if any) provided by your bank at a safe place.
 
Prevent unauthorized access to your computer
Install a personal firewall onto your computer.
Install and regularly update virus detection software, anti-spyware software and security patches.
 
Protect yourself when logging onto our i-banking Service, Business Internet Banking service or Corporate Online Banking Service
Always use the "Logout" button to exit instead of closing the window directly when you finish using our i-banking services, Business Internet Banking service or Corporate Online Banking services.
Always check the date and time of your last visit to our i-banking site, Business Internet Banking service or Corporate Online Banking services.
Do not leave your computer unattended before logout i-banking services, Business Internet Banking service or Corporate Online Banking services.
Please ensure that your entry of Login ID and password cannot be watched by someone standing around or behind you when you login.
Check your account balances and statements regularly to identify any unusual transactions.
 
Protect yourself when using SMS-based One Time Password for 2-factor authentication transaction:
Beware of any unusual login screen or process (e.g. a suspicious pop-up window or request for providing additional personal information).
Ensure the accuracy of the registered information (including the mobile phone number registered for SMS One Time Password authentication) from time to time, contact the bank immediately if any changes.
Ensure your mobile phone is switched on with satisfactory connection status and sufficient memory to receive SMS when receiving One Time Password. Please make sure your mobile device has turned off SMS forwarding function when receiving the SMS One Time Password.
Verify the SMS One Time Password ID showing on i-banking and your mobile phone for ensuring the transaction operating before entering the SMS transaction password.
Install and run anti-virus or anti-spyware software programs onto your mobile phone and regularly update with the latest version.
Do not store your login ID & password in your mobile.
Check the bank SMS message in a timely manner and verify your transaction records. If you have any doubt on the SMS received, contact us immediately and should stop inputting any password or transaction.
 
Protect yourself when logging onto our CITICmobile:
Please download the FREE CITICmobile Application from Apple Store or Google Play.
Install and update the latest security application, anti-virus application and anti-spyware application regularly on your mobile devices (smartphone or tablet)
Never use CITICmobile in a mobile device with any pirated hacked, fake and/or unauthorized applications or in which the software lockdown has been overridden or root access to its software operating system has been obtained (such as, but without limitation, a "jailbroken" or a "rooted" mobile device.
Make sure you are using supported versions of OS and applications of your mobile devices. Enable the auto-update feature to obtain and apply security patches regularly from trusted sources.
Set a passcode for your mobile device that is difficult to guess and activate the auto-lock function.
Disable any wireless network functions (e.g. Wi-Fi, Bluetooth, NFC) not in use.
Choose encrypted networks when using Wi-Fi and remove any unnecessary Wi-Fi connection settings.
 
Protect yourself when logging onto Touch Balance service:
Do not register other people's fingerprints as part of the Touch ID of your mobile device.
Once the Service is activated, any registered fingerprint(s) of the device can be used as an authentication mean to access the "Touch Balance" function.
Do not disclose the passcode of your mobile device to anyone.
When you change to a new mobile device, activate the Service on your new mobile device. The Service will be deactivated automatically on your previous mobile device.
Keep your mobile device properly and lock it with relatively complicated passcode.
Access the function in a secure place to prevent from exposing the account information to others, especially when using this Service in public area.
If you lose your mobile device with this activated Service, please contact us deactivate the Service immediately.
 
Security tips for using WeChat Pay
Please download the WeChat Application from App Store or Google Play.
Install and update the latest security application, anti-virus application and anti-spyware application regularly on your mobile devices (smartphone or tablet)
Never use WeChat Pay in a mobile device with any pirated hacked, fake and/or unauthorised applications or in which the software lockdown has been overridden or root access to its software operating system has been obtained (such as, but without limitation, a "jailbroken" or a "rooted" mobile device).
Please make sure you are using supported versions of OS and applications of your mobile devices. Enable the auto-update feature to obtain and apply security patches regularly from trusted sources.
Set a passcode for your mobile device that is difficult to guess and activate the auto-lock function.
Set your WeChat Pay payment password that is difficult to guess and do not disclose such payment password to anyone.
Disable any wireless network functions (e.g. Wi-Fi, Bluetooth, NFC) not in use.
Choose encrypted network when using Wi-Fi and remove any unnecessary Wi-Fi connection settings.
To prevent unauthorised access to your WeChat wallet, do not leave your mobile device unattended. Always log off properly when you are finished making WeChat Pay payment.
 
Protect yourself when logging onto our CITICpay:
Please download the FREE CITICpay Application from Apple Store or Google Play.
Don't install apps on your mobile handsets from mistrusted sources.
Use default browsers originally provided by the mobile devices rather than newly installed browsers downloaded from other sources.
Don't use any jailbroken or rooted mobile device.
Install and update the latest anti-virus and anti-spyware software regularly on your mobile handsets.
Don't store your Mobile PIN, i-banking Login ID and password on your mobile handset
Use trusted Wi-Fi networks or service providers.
Don't forward your One Time Password (OTP) and push notification to anyone.
Avoid sharing your mobile device with others and use your own mobile device to register CITICpay service.
Don't leave your mobile device unattended after logon to this app.
Always quit the app when you are finished CITICpay transactions with it.
Set up auto-lock and enable passcode lock.
 
Security tips for Security Device
Upon receipt of the "Security Device", please login to e-banking immediately and follow our instructions to activate the "Security Device".
Customers are required to input specific transaction information (e.g. un-registered account number) into the "Security Device" to generate a one-time Security Code for designated transactions.
Please keep your "Security Device" in a safe and secure place. You should not allow anyone to use your "Security Device" or leave it unattended.
 
Protect yourself when logging onto our CITICtoken:
Please download the FREE CITICtoken Application from Apple Store or Google Play.
Don't install apps on your mobile handsets from mistrusted sources.
Use default browsers originally provided by the mobile devices rather than newly installed browsers downloaded from other sources.
Don't use any jailbroken or rooted mobile device.
Install and update the latest anti-virus and anti-spyware software regularly on your mobile handsets.
Don't store your CITICtoken password, i-banking Login ID and password on your mobile handset
Use trusted Wi-Fi networks or service providers.
Don't forward your One Time Password (OTP) and push notification to anyone.
Avoid sharing your mobile device with others and use your own mobile device to register CITICtoken.
Don't leave your mobile device unattended after logon to this app.
Always quit the app when you are finished CITICtoken transactions with it.
Set up auto-lock and enable passcode lock.
 
Contact Us
If you find any suspicious activities in relation to your i-banking, Business Internet Banking service or Corporate Online Banking account or have further enquiry related to online security precaution, please contact our customer hotline at (852) 2287-6767, or send us email to ibanking@cncbinternational.com immediately.
 
Hong Kong Monetary Authority encourages the public to study the following public educational materials and security tips on e-banking services:
http://www.hkma.gov.hk/eng/key-functions/banking-stability/consumer-corner/strengthening-financial-consumer-protection/consumer-education-programme/
 
Last updated on 25 September 2017
Ways To Bank With Us

Be served by our professional staff at our branches, or opt for self-service banking via our automated channels — the choice is yours.

Careers

We offer a range of rewarding careers from trainee to management level.

See our job listings

CITIC Group

Tap into the vast resources and network of our parent bank China CITIC Bank and our ultimate shareholder, CITIC Group Corporation.

Essential links

China CITIC Bank International is:

Footer links and disclaimer messages: