Report any incidents, better safe than sorry

Always feel free to give our member services department a call if you feel your financial information may have been compromised, or about a lost or stolen card.



Phishing is sending an unsolicited and fraudulent message or “bait” in the form of an email posing as a trusted sender or legitimate company. Usually, this message will ask for a link to be clicked, attachment to be opened, or ask to send private information or funds. The email may have a "risk" associated with it, such as being charged for late payment, or termination of accounts.  Please forward any suspicious emails asking for personal banking information to info@compasscu.ca.

-Never click on links in an email from an untrusted sender

-Never enter sensitive information into pop-up windows

-Remember the credit union will never reach out to you by email

Malware and Viruses

Malware works in many different ways, but all with the intent to extract your information like website use patterns, personal passwords, and other information, all behind the scenes without your knowledge. Some common forms of malware include computer viruses and rootkits, spyware, trojans, adware and other damaging and unwanted software.

-It is recommended that all devices you are using to access online banking has antivirus protection

Mobile Devices

With the convenience of smartphones, we are able to do online banking anywhere. However, this gives more opportunities for your information to be compromised.

-Abstain from doing online banking on public internet connections

-Do not save sensitive information (saved PAN or PAC) on a mobile device as it is more likely to become lost/stolen compared to a personal PC

Browsing Etiquette

-Make sure the devices all devices and web browsers you are banking online with are up to date, as well as antivirus protection

-Log out off MemberDirect every time you are done a session

-Be wary off spoofed or fake "branded" websites that may trick you into providing sensitive information

-Do not use the same password for your PAC (Personal Access Code) for any other kind of account, whether its email, social media, or other forms of authentication