Dark Web Monitoring

Fulda Area Credit Union now uses dark web monitoring for debit card numbers.  This means if your debit card number(s) shows up for sale on the dark web, we can take steps to immediately close the card and potentially stop any fraud before it occurs.

The scan is done daily and we will receive a list of any compromised card numbers.  We can receive a dark web notification up to 6 months prior to notifications we receive from Visa.

Someone from the credit union will contact any members whose cards show up on the dark web monitoring list and ask you to call us at 507-425-2544.  This will be a legitimate call and this new way of monitoring is for your protection.  Your card will be processed as lost or stolen and a new card will be ordered at no cost.

This does NOT mean that your account has been hacked.


We work hard to keep our customers up-to-date on the latest financial news.
Click the links below for useful information.

Note: These links are provided only as a convenience. We do not manage the content of these sites. The privacy and security policies of external websites will differ from those of fuldaareacreditunion.org.

www.equifax.com (Credit Reporting Agency)
www.experian.com (Credit Reporting Agency)

Regulation D

What is Regulation D?

Regulation D is a Federal regulation that limits the number of covered transactions members can make from their Share Savings or Money Market accounts to six (6) per month. Withdrawal or transfer transactions included in this limit are:

  • Overdraft Protection Transfers

  • Electronic Funds Transfers/Automatic Withdrawals (EFT or ACH)

  • Debit Card Transactions

  • Home Banking Transactions

  • Phone Banking Transactions

  • Telephone Transactions

  • Facsimile Transactions

What transactions are not covered by Regulation D?

The following are not subject to the limitations of Regulation D:

  • Transactions made in person at any Fulda Area Credit Union branch

  • Transactions made at an ATM

  • Transactions made to pay a loan you have with Fulda Area Credit Union

  • Transactions made by mail or night drop

  • Transactions made from a Fulda Area Credit Union Share Draft (checking) account

  • Withdrawals made by telephone via check that is mailed to the depositor

  • Transfers made into the account

What can I do if I've reached the limit of 6 transactions for the month?

You can complete the transaction in person, by mail, by night drop, or at an ATM.

What can I do if I have a merchant that automatically withdraws from my Share Savings or Money Market?

If you have a checking account, you can contact the merchant to have the payment automatically withdrawn from your checking account or you can use FACUpay to pay the merchant automatically. 

If you don't have a checking account, you can allow a merchant to automatically withdraw from your Share Savings and/or Money Market account. However, if you have reached the limit of 6 transactions for the month and an automatic withdrawal is submitted for payment, it will not be honored and you will be subject to a non-sufficient funds fee.

What happens if I have reached the limit of 6 transactions and I need my overdraft protection from my Share Savings and/or Money Market account to cover a payment submitted to my Share Draft (checking) account?

Since overdraft protection transfers from your Share Savings and/or Money Market are included in the Regulation D limit of 6 per month, the transfer will not occur if you have reached your limit and you will be subject to a non-sufficient funds fee.

If you have overdraft protection from a line of credit and funds are available, the transfer will occur as transfers from a line of credit are not subject to the limitation.

Phishing and Vishing

Phishing and Vishing are criminally fraudulent processes used by scammers to acquire your sensitive personal information. Fulda Area Credit Union, the NCUA, or any other legitimate organization will never ask you to provide your personal information - as we already have this information on file.

If you are concerned that Phishing or Vishing may have affected you, contact the credit union immediately.

What is Phishing?

Phishing is the act of attempting to acquire personal information such as passwords and credit or debit card details by masquerading as a trustworthy entity such as a credit union, bank, or credit card company.

Criminals will use email, voice mail (vishing), or text messages on cell phones (Short Message Service or smishing) to trick recipients into disclosing personal and financial data.

The credit union will NEVER contact you and ask you to verify personal information via telephone, email, or a website.

How do you protect yourself from phishing attacks?

-NEVER respond to an email, voicemail, or text asking you to verify or update your personal information.

-Never click on links in unsolicited emails or texts you receive.

-Delete any unsolicited emails or text messages - don't even open them.

-Never tell anyone your PIN and never write it down.

-Guard your PIN from being seen when you complete a transaction at an ATM or in a store.

-Protect your passwords. Do not write them down or enter them online unless you initiated the transaction.

-Never give out your personal or financial information on the phone or online unless you initiated contact.

-Check your credit report at least once annually. You are entitled to a free copy from the three major credit reporting agencies each year. Stagger the reports and obtain one from each reporting agency every four months. Go to www.annualcreditreport.com to request your free credit report.

-At home, use spam blockers, firewalls, virus protection, and adware and malware destroyers.

-Update your Operating System whenever security patches are available.

-If you're unsure if a message came from the credit union, contact the credit union at a phone number you know and trust or locate in the phone book. Do not use the phone number provided in the email or text.

-Check the URL address shown before logging in. If it is not the credit union's URL address, do not login.

What is Vishing?

Vishing - The voice counterpart to Phishing is called "Voice Phishing" or just Vishing. Instead of being directed by email to a website, you are asked to make a telephone call. The call triggers a voice response system that asks for your credit card or debit card number. Sometimes email blasts are performed to direct you to use a phone number instead of a website to respond to.

Cold calling is an automated dialing program that relentlessly dials a large number of telephone numbers in the hope of finding voice mailboxes, private exchanges, or computer modems to connect to leaving messages for a response call.


  • Avoid calling the number provided in the "Vishing" email, voice message, or text. Instead, call the organization using a phone number you know or locate the organization's phone number in the phone book.

  • If you receive a "Vishing" phone call, hang up immediately.

  • Do not automatically trust a phone number based on its area code.

  • Never give out any information.


Stop.Think.Connect.™ is a national public awareness campaign aimed at increasing the understanding of cyber threats and empowering the American public to be safer and more secure online.

Cyber threats affecting you, your family, and members of your community include:

  • Identity Theft

  • Fraud

  • Phishing

  • Cyber Bullying

  • Cyber Ethics

  • Cyber Predators

Visit www.dhs.gov/stopthinkconnect for more information the Stop.Think.Connect. Campaign.