While credit card security has come a long way in recent years, as an individual, you still play a crucial role in protecting yourself. Guarding your personal data is key to preventing identity theft, and that includes being extra careful about who you share your credit card information with as well as the ways you choose to share it.

Some ways of communicating your information are riskier than others. So, let's break down the best ways to shield yourself depending on how you are communicating.

» MORE: How to protect yourself against credit card fraud

Did you know that email wasn't originally designed with strong data privacy in mind? This means that your email isn’t inherently secured unless it has been properly encrypted. While providers such as GMail and Outlook now offer certain levels of encryption, this does vary. In fact, most banks based in Singapore including DBS, UOB, HSBC and OCBC, do not recommend sending your credit card details via email.  

How to safeguard your information: Some hotels and booking websites may require you to verify your credit card details for verification. If you absolutely have to send such information via email, you should always use a password-protected PDF or opt to share it via other channels such as SMS. 

Your choice of email provider also matters. If you are using GMail, be sure to turn on Confidential Mode, which adds an extra layer of control by preventing recipients from forwarding, copying, downloading, or printing your email on top of allowing you to set an expiration date. Similarly, Microsoft Outlook provides a feature to encrypt individual messages.

» MORE: Financial scams to look out for

While accessing text messages is more challenging for hackers, any text containing sensitive information poses a risk as long as it's stored in an inbox or sent folder. If your phone or the recipient's phone is stolen, someone else may gain access to that information. 

What about messaging apps? Both WhatsApp and Telegram provide end-to-end encryption, although it’s notable that the latter only offers this for secret chats. Telegram also allows users to send self-destructing messages, which disappear after a fixed period. However, the same security threat applies: if someone gets hold of your phone (at the right time), they will be able to see your messages.

Advisories in Singapore, including MAS and CSA, warn against sharing personal financial information via text messages.

How to safeguard your information: One simple yet effective security measure is to enable your phone's screen lock feature, which activates when the phone is idle. This adds a layer of protection to your device and everything it contains. You can also choose to add a PIN to your Telegram account.

Going one step further, consider using a text message encryption app with a self-destruct feature. These apps automatically delete messages from both sender and receiver devices after a specified time, reducing the window of vulnerability. Signal is one such app available on both iPhones and Android devices.

» MORE: How to avoid being scammed

While sending credit card information through postal mail isn't common these days, it’s still used in some business and government settings. With this comes a risk of improper handling or interception before your mail can get into the hands of your intended recipient.

How to safeguard your information: When it comes to outgoing mail that contains sensitive information, such as to an insurance provider or financial institution, always make sure you have the right address and department before sending it out. Once you have made sure everything is correct, the safest option would be to drop it off directly at a SingPost outlet. 

As an additional precaution, we recommend making use of Singpost’s SmartPac or registered mail service, which will allow you to know for sure when your mail has reached its intended recipient.

» MORE: Protect yourself from credit card fraud while travelling

Identifying a secure website is usually straightforward: look for "https" at the beginning of the web address (URL). Often, a lock icon will be visible. Information you transmit through a secure website is encrypted, offering a level of safety during transfer. 

However, even with secure websites, your credit card information isn't entirely immune to theft. If your personal computer or a public computer is infected with spyware, your data could still be compromised. Additionally, if hackers target the company hosting the website, they might gain access to your information stored on the company's servers.

How to safeguard your information: Ensure the safety of your credit card information by sticking to established e-commerce and travel platforms in Singapore, such as Shopee, Klook and Agoda. If something looks fishy or too good to be true, it likely is. Avoid entering sensitive information on unverified websites.

One additional step would be to ensure your malware protection software is current. Be cautious and avoid clicking on unfamiliar links in emails or pop-up advertisements. Familiarise yourself with the signs of spyware on your computer. If you suspect an infection, use reputable anti-spyware software to scan for and remove any threats.

» MORE: 4 things to do immediately when your credit card details get stolen

Although fax is not too common nowadays, it’s still used by some healthcare and legal institutions, particularly ones that are based internationally. When traditional fax machines communicate over telephone lines, the risk of hacking is quite low. Anyone attempting to intercept the transmission would only encounter the characteristic fax screech.

However, when using an email-based fax service, your information faces the same vulnerabilities as an unencrypted email. Another point to consider with traditional phone-line faxes is who has access to the received document.

How to safeguard your information: To take precautions, always ask the recipient to be present at the machine before sending over your documents. That way, they are able to receive it immediately upon arrival, preventing interception by a third party. If the fax system is email-based, ask about the encryption details or consider making use of a secure upload instead.

To sum things up, you should always take extra precaution before sending out your credit card details. This starts with making sure that the party who has requested the information is legitimate. From there, consider the most secure way of getting that information to them. If the mode of communication is free for you to decide, consider using a password-protected document as the safest option. Following which, a disappearing message over an encrypted messaging service is the next best choice.  

Where possible, try to avoid sending out sensitive information by fax or mail, as the risk of third-party interception remains high. However, if that’s the recipient’s preferred mode of communication, make sure to follow the best practices highlighted above, such as making use of a tracked mailing service or requesting that the recipient be present at the fax machine.

» How credit card fraud happens in Singapore