Procurement Services Auxiliary Services

Best Practices for JPMorgan Cardholders

Tips to Keep Your Card and Account Secure

JPMorgan provides the tips below to help keep your Purdue purchasing card or travel card safe and accounts secure.

Keep your card and account secure

  • If your card is lost or stolen, call JPMorgan immediately.
  • Report suspicious activity to JPMorgan immediately.
  • If the JPMorgan fraud team calls you, return the call as soon as possible.
  • If you are suspicious about a caller, hang up and call the number on the back of your card.
  • Never give your card number to someone who calls you.
  • Never send your credit card number, three digit code or expiration date in an email. 
  • Do not share your card with anyone.
  • Do not leave your card in your desk.
  • Do not fax your card number or images of your card to a vendor.
  • Once you have contacted JPMorgan and received the fraud affidavit, complete and send the affidavit back promptly.

Monitor your account activity

  • Check your transactions against your receipts regularly online or on your statement, and report any unrecognized transactions immediately.
  • Make sure your monthly and single purchase limits are in line with what you actually spend.
  • Keep your statements and card receipts in a secure place.
  • Shred any documents that you no longer need or are required to keep.

Keep your card safe while shopping online

  • Make sure you are on a secure site when making purchases online: Check for the lock icon in the address bar or verify that the site is https.
  • Do not click on a link to make a purchase; manually type the URL.
  • When shopping online, the merchant should only ask for the following information:
    • Card number
    • Expiration date
    • Three or four digit security code
    • Billing/shipping address
  • Do not store your information on a website. If you are asked if the computer should remember the information, click "no."
  • Think twice about making purchases when using a public Wi-Fi hotspot. You are safer behind your organization's firewall.

Be aware of phishing

Phishing is a fraudulent attempt by individuals to gain private information about cardholders and their accounts, such as usernames and passwords, by masquerading as a trustworthy entity in an electronic communication. There are various methods of phishing such as email, phone calls or text messages which often direct users to enter details at a fake website whose look and feel are almost identical to the legitimate one.

JPMorgan will not send an email or text message to a cardholder that:

  • requires you to enter personal information directly into the email.
  • threatens to close your account if you do not take immediate action of providing personal information.
  • asks you to reply with personal information.
  • asks you to enter your user ID, password, or account number into an email or secure webpage.