CalPERS

Security Policy

CalPERS is committed to making sure that your personal information remains confidential. We have taken several steps to safeguard the integrity of our communications and computing infrastructure, including but not limited to password authentication, monitoring, auditing and Secure Socket Layer (SSL) encryption of your browser communications.

Security measures have been integrated into the design, implementation and day-to-day operations of the entire CalPERS business environment as part of our continuing commitment to risk management. We employ special security measures to protect your information, including username and password authentication, program "time-outs" and SSL encryption. In addition, we have enhanced this security by adding support for Personal Security Icons and Personal Messages that are shown to you during the log-in process. These items let you know that you are at the authentic CalPERS website and not an imposter site.

CalPERS websites and computer systems are for legal and authorized use only. Unauthorized access, attempted access, or use of this or any related State of California system is a violation of Section 502 of the California Penal Code and/or applicable federal law, and may be subject to prosecution. Individuals using this system without authority, or in excess of their authority, are subject to having their activities on the sites monitored and recorded beyond our normal monitoring and recording.

When you log in to our secure services on my|CalPERS, you are acknowledging that you have read and understand our security policy, and that you are the individual who is the subject, legal representative, or beneficiary of the CalPERS member account accessed.

About Encryption

Encryption is the electronic "scrambling" of information - kind of like a secret code. This protects information from being intercepted by a third party. CalPERS encrypts your password in our computer systems. Our Ask CalPERS, CalPERS eNews, and ePress Alerts email communications are also encrypted and CalPERS will not include confidential information in non-encrypted responses.

CalPERS On-Line and my|CalPERS require the use of an Internet browser with the ability to support 128-bit encryption. You can review our Site Requirements for additional details on optimum browser requirements and settings for our sites. You'll also find links to download browsers that will support this level of encryption.

Your Role in Security

Making sure your confidential information is secure is also an important responsibility for you. You're responsible for ensuring your personal password remains secure, so you should not reveal your password to anyone. If you believe an unauthorized person has gained access to your password, you should change it immediately.

As part of good security practices, you should change your password regularly and never walk away from your computer if you're in the middle of a session. You should also review our Privacy Policy for more information.

When you log in to my|CalPERS always check your Personal Security Icon and Personal Security Message to ensure that they are the ones you have chosen. These are known only to you and CalPERS and would not appear on an imposter site. If these items do not appear or are not the ones you chose, contact CalPERS for assistance. Never enter your password without verifying that these security items are valid.

Note: This Security Policy is subject to change without notice and reflects the current CalPERS business practices.


Additional Resources

Section 502, California Penal Code

Dated: 12-08-2011