Wells Fargo Funds Portal
Beginning of content

Website Security

Conducting online business safely is extremely important. We are committed to maintaining the security of your accounts and personal information. We take every step possible to safeguard and secure your personal information.

We've included tips below to help keep you safe while online and teach you about common attacks that exist. We have also listed security enhancements that we offer along with fraud prevention information available.

We want to empower you with some tips you can take to help you protect your computer and your personal information when you are online.

Keep your computer operating system up to date.
If your computer is more than five years old, its operating system (e.g., Windows 98, OS 7, etc.) may not offer the same level of protection as newer systems. System manufacturers provide frequent updates to help make your system more secure. Some manufacturers supply updates automatically through e-mail or via your Internet connection. You may also check their Web sites, including:

Use a current Web browser.
To provide our customers with the most secure online access to their accounts, Wells Fargo continually upgrades our online services. In certain cases, the software you use to connect to the Internet (i.e., your Web browser) may eventually become unsuitable for sensitive transactions. In order to maintain a high level of security, Wells Fargo Funds does not allow access to Online Account Access using browsers that do not meet our security criteria. You may need to upgrade to a supported browser.

Install a personal firewall.
Though most office networks include firewall protection, your home computer may benefit from this added level of security. Check to see if your operating system already includes a firewall prior to purchasing a separate one.

Activate a pop-up blocker.
Several free, publicly available programs exist that will block all pop-up windows from occurring while you are online. Perform an Internet search for "pop-up blocker" or look at the options provided by major search engines. You should confirm that these programs are from legitimate companies before downloading. Once you have installed a pop-up blocker, you should determine if it blocks information that you need to view or access. If this is the case, you should consider turning off the blocker when you are on Web sites you know use pop-windows to provide information you need or want to view.

Scan your computer for spyware regularly.
You can eliminate potentially risky pop-up windows by removing any spyware or adware installed on your computer. Spyware and adware are programs that look in on your Web viewing activity and potentially relay information to a disreputable source. Perform an Internet search for "spyware" or "adware" to find free spyware removal programs. You should confirm that these programs are from legitimate companies before downloading. As with a pop-up blocker, you will want to be sure that your removal program is not blocking, or removing, wanted items, and if it is, consider turning it off on some Web sites.

Use secure Web sites for transactions and shopping.
Be sure the Web page you are viewing offers encryption of your data. Often you will see a lock symbol in the lower right-hand corner of your browser window, or the Web address of the page you are viewing will begin with "https://...". The "s" indicates "secured" and means the Web page uses encryption. Wells Fargo Funds, for instance, provides 128-bit encryption – the highest level commercially available today.

Avoid downloading programs from unknown sources.
Downloads from unfamiliar sources may contain hidden programs or viruses that can compromise your computer's security.

Disconnect from the Internet when not in use.
Dedicated services such as DSL or high-speed cable provide a constant connection between your computer and the Internet. When not in use, disconnect from the Internet to avoid unwanted access to the information on your computer. Even if you have a firewall installed, this is an additional step you can take to help protect yourself.

We are committed to maintaining the security of your accounts and personal information. Over the past year, there have been many fraudulent e-mails circulating the Internet attempting to "steal" your personal information. In a process known as "phishing," these fraudulent e-mails circulate daily, change their language, and claim to be from a wide variety of financial institutions including Wells Fargo.

These fraudulent e-mails sometimes contain clever and compelling language that prompts recipients to click on links. The links lead to fraudulent Web sites that may look like legitimate Web sites and ask for personal information. Do not provide any information to these fraudulent Web sites. Should you question the authenticity of any e-mail content or links you receive that appear to be from Wells Fargo Funds, open a new Internet browser window and type www.wellsfargofunds.com, then click on the appropriate link such as Individual Investors, Investment Professionals, or Institutional Sales Professionals.

Identity theft and online fraud can occur when someone poses as a legitimate company to obtain sensitive personal data and illegally conducts transactions on your existing accounts. These "phishing" or "spoofing" schemes use a variety of methods, including fake e-mails, fake Web sites and suspicious pop-up windows.

Always keep in mind that Wells Fargo Funds will never require clients to send personal information to us via e-mail or in pop-up windows. Any unsolicited request for Wells Fargo Funds account information such as passwords, login IDs, and PIN numbers that you receive through e-mails, Web sites, or pop-up windows should be considered fraudulent and reported immediately.

Fake e-mails will often:

  • Appear to be from a legitimate source. While some e-mails are easy to identify as fraudulent due to misspellings, poor grammar, or poor formatting, others may appear to be from a legitimate address and trusted online source. However, you should not rely on the name or address in the "From" field, as these are easily altered.
  • Ask you for personal information. Fake e-mails often contain an overly generic greeting and may claim that your account will be suspended, that your information has expired, or that your personal information has been corrupted or lost, and that you must immediately resend or visit a Web site to confirm it.
  • Link to counterfeit Web sites. Fake e-mails may direct you to counterfeit Web sites carefully designed to look real, but which actually collect personal information for illegal use.
  • Link to real Web sites. In addition to links to counterfeit Web sites, some fake e-mails also include links to legitimate Web sites. The fraudsters do this in an attempt to make a fake e-mail appear real.
  • Contain fraudulent phone numbers. Fake e-mails often contain telephone numbers that are tied to the fraudsters. Never call a number featured on an e-mail you suspect is fraudulent, and be sure to double-check any numbers you do call.
  • Contain real phone numbers. Some of the telephone numbers listed in fake e-mails may be legitimate, connecting to actual companies. Just like with links, fraudsters include the real phone numbers in an effort to make the e-mail appear to be legitimate.

Trojan horses
Some fake e-mails may also contain a virus known as a "Trojan horse" that can record your keystrokes. The virus may live in an attachment or be accessed via a link in the e-mail.

Again, Wells Fargo Funds clients should keep in mind that we do not request personal information via e-mail. Never respond to unsolicited e-mails, open unknown attachments, or click on links from suspicious or unknown senders.

How is my e-mail address obtained?
E-mail addresses can be obtained from publicly available sources or through randomly generated lists. Therefore, if you receive a fake e-mail that appears to be from Wells Fargo Funds, this does not mean that your e-mail address, name, or any other information has been taken from the Wells Fargo Funds systems.

Counterfeit Web sites
Online thieves often direct you to fraudulent Web sites via e-mail and pop-up windows and try to collect your personal information. In many cases there is no easy way to determine that you are on a phony Web site because the URL will contain the name of the institution it is spoofing. However, if you type, or cut and paste, the URL into a new Web browser window and it does not take you to a legitimate Web site, or you get an error message, it was probably just a cover for a fake Web site.

Another way to detect a phony Web site is to consider how you arrived there. Generally, you were directed by a link in a fake e-mail requesting your account information. Again, Wells Fargo Funds will not request personal information from clients via e-mail and any unsolicited request should be considered fraudulent and reported immediately.

How can I help protect myself?
With a few simple steps, you can help to protect your Wells Fargo Funds accounts and personal information from fake e-mails and Web sites:

  • Delete suspicious e-mails without opening them. If you do open a suspicious e-mail, do not open any attachments or click on any links it may contain. Should you question the authenticity of any e-mail content or links you receive that appear to be from Wells Fargo Funds, open a new Internet browser window and type www.wellsfargofunds.com, then click on the appropriate link such as Individual Investors, Investment Professionals, or Institutional Sales Professionals.
  • Never provide sensitive account or personal information in response to an e-mail. If you have entered personal information, call Wells Fargo Funds immediately at 1-800-359-3379.
  • Install and regularly update virus protection, spyware removal, and SPAM-filtering software.
  • Keep your computer operating system and Web browser current with the most recent security updates and patches.
  • Read our online security tips for more information on how to keep your computer and software up to date.

What is Wells Fargo Funds doing to protect me?
To prevent identity theft and ensure that e-mail messages are authentic, whenever you click on a link in an e-mail from Wells Fargo Funds, you will first go to a page that will show a personalized word. This "SecureWord" is shown to you so that you know that the e-mail you received was authentic and that you are on the genuine Wells Fargo Funds Web site.

The Online Account Access areas allow different investors to securely access information and perform transactions online. In addition to using some of the most advanced technology available, the Wells Fargo Funds Web site employs numerous techniques to ensure the security of your account information.

  • Registering for any Account Access area is necessary prior to use. It is not automatically added to your account. You must first complete the online registration form. When you register online or with your account executive, you will create a unique password to use when accessing your account. It is important to safeguard this password at all times.
  • We will protect your account information by placing it on a secure area of our web site. We protect the integrity and privacy of your account information with some of the most advanced technologies available. Our systems use 256-bit Internet data encryption technology, an advanced security protocol known as the Secure Sockets Layer (SSL) protocol, personalized passwords, and other precautions. To help protect the security of your accounts, do not share your password with anyone.
  • We restrict access to your non-public personal information to our employees who need to know that information to provide products and services to you and others for purposes needed to support our web site services to you. Furthermore, we maintain physical, electronic, and procedural safeguards to protect your non-public personal information from unauthorized third party use.
  • For your security, Online Account Access areas will limit each session to 15 minutes. After 15 minutes you will automatically be logged out. You will need to log in with a valid login ID and password in order to regain access to your account.
  • In order to take full advantage of the secure account access areas on the Wells Fargo Funds Web sites, your browser is required to support 128-bit encryption. This level of encryption is the highest available at this time.

To ensure the best user experience for our site, we require one of the browsers below or any other compatible browser that supports frames, JavaScript, cookies, 128-bit Encryption using Secure Sockets Layer protocol (SSL), and Cascading Style Sheets. Use of older or non-compatible browsers, or disabling any of the features listed above, may reduce site functionality.

Should you have questions about this information, please contact a representative at 1-800-359-3379.

(Last updated: 3-22-17)

We take your online safety and security very seriously. Because you have entrusted Wells Fargo Funds with your investments, you have also entrusted us with your personal information. It's our job not only to help you achieve your investing goals, but also to take every step possible to safeguard and secure your personal data.

We have enhanced our online systems to further safeguard your personal information, increase account-related communication, and provide additional information to you when you view your accounts online.

While you may not see many of the enhancements that have been made, others are more noticeable. These enhancements include:

Display of Last Successful Log In
You will notice your last log in date and time in the upper-right corner of your online session. This serves not only as a reminder of your last log in, but helps to indicate if there has been unauthorized access to your account.

E-mail Notifications
You will receive e-mail notifications for transactions you perform online, changes to passwords or other security related information, password and log in locks due to failed log in attempts, and other online activities. This is in addition to any eDocument notifications, paper statements, or other letters from us that you may receive via U.S. Mail. It is very important to keep your e-mail address updated to ensure you receive these ongoing and timely communications.

Password Restrictions
We have changed the number of times that a password can be changed within a given time period. In addition, many clients have sent feedback regarding our somewhat difficult password format requirements. While they may be a bit restrictive and difficult for you to remember, they are designed to help safeguard your personal information.

No SSN/EIN Displayed
We have removed any references to your Social Security number or Employer Identification number, so they will never be displayed in your online session.

Security Testing and Monitoring
Our online systems are constantly tested and monitored to ensure that your information is never compromised.

Ongoing Safeguards
We continue to follow the procedures and policies that keep your information secure. These include allowing redemptions only to pre-authorized bank accounts or your home address, confirming address changes with letters to old and new addresses, and many more operational controls that you may never see.

We truly appreciate your ongoing investment with Wells Fargo Funds and your use of our Web site. If you have feedback at any time, contact us through our secure e-mail form.