The Internet allows you to handle many important financial transactions with tremendous ease, and from just about anywhere. But this financial freedom also presents another opportunity for fraudulent persons to try to access your accounts. Thus, it’s important for both OppenheimerFunds and you to take steps to help safeguard your information.

Identity theft and fraud are crimes that occur when a person deceptively gets a hold of another individual’s personal information and then uses that information to steal money or to commit other crimes.

A common challenge for financial institutions is ensuring that only the true account owners are transacting on an account or obtaining account-specific information. With so many recent headlines regarding large-scale privacy incidents, foreign lottery scams, and “phishing” attempts (an online scam involving fraudulent email messages asking for confidential information such as passwords or account numbers), there is an increasing number of risks to both investors and the companies entrusted to protect both their money and their personal data.

There are specific steps OppenheimerFunds takes to help prevent fraud, and steps you should take to protect yourself:

OppenheimerFunds Privacy Measures

  • We secure all transactions using SSL and 256-bit encryption.
  • Password requirements: for your protection, we require password complexities in order to prevent unauthorized individuals gaining access to your account. Your password to the site [or specific 529 site] must be 8-20 characters and include a number, both an upper- and lowercase letter, and no spaces.
  • Cybersecurity efforts: We recognize that protecting our systems infrastructure and the data it retains requires constant vigilance and action. Our information security framework is built upon regulatory requirements, industry standards, comprehensive internal guidelines, and other closely guarded controls that are designed to maintain the confidentiality, integrity, and availability of the critical data that we maintain on our systems.
  • Two-factor authentication: this functionality works to recognize the computer device you are using to log onto our websites. We provide you with a 4-digit PIN code that needs to be entered before logging into our websites. As a result, we will know the device trying to access our site is authorized by the investor and will be remembered for subsequent logins.
  • We do not send any personal account information in any non-secure emails.
  • We will never send you an unsolicited email that requests your personal information.
  • Read about how we help guard your privacy.

OppenheimerFunds will NOT send you an email requesting personal information unless you initiated correspondence.  Even then, we will request that you to submit that information only via our secure link on our website at [or specific 529 site] or by contacting our Client Relations representatives via phone to discuss. If you ever get an email that appears to be from OppenheimerFunds and is requesting any of your personal information via any other means, please do not respond; instead contact us at

Steps you should take to protect yourself

  • Read all account statements and confirmations in a timely fashion. By enrolling in electronic delivery, we will notify you the same day a confirmation or statement is available, allowing you to access those documents on our website. If you did not enroll in electronic delivery, or if you receive a confirmation of an address change which you did not initiate, please contact us immediately.
  • Contact us immediately about any potential inaccuracies on your confirmation or statement.
  • Don’t share your passwords.
  • Change your password frequently.
  • Do not use the same password for multiple accounts.

If you suspect that you may be a victim of identity theft, immediately

  1. File a police report with your local police department and make note of the case number.
  2. Contact Us to start the process of securing your OppenheimerFunds accounts (be sure to include the police report case number, approximately when the theft occurred, and a brief explanation of what personal information may have been compromised).
  3. File a complaint with the Federal Trade Commission.
  4. If you suspect that you’ve received a fraudulent email, please forward it to us immediately at (Please note:  this email address is exclusively for messages related to suspected email fraud. Do not use this email address to send us general questions about your account(s).  For general inquiries, here’s how to contact us.)

For more information, or to notify federal entities about potential identity theft, visit the following websites