Last updated: 12/12/2022
- Staying Safe Online
- Protect your personal information
- Use unique passwords
- Protect your device
- Avoid phishing attacks
- Set 2-factor authentication
- Use secure networks
- Report suspicious behaviour
Staying Safe Online
Walmart takes strong measures to protect the privacy and security of your personal information, but you may want to take additional steps to protect your own personal information and your privacy online. Below please find some useful cyber safety best practices:
Protect your personal information | Use unique passwords |
Protect your device | Avoid phishing attacks |
Set 2-factor authentication | Use secure networks |
Report suspicious behaviour | |
Protect your personal information
Sharing any personal information that can identify you (e.g., your full name, personal email address, phone number, name of your workplace, any social media profile, etc.) could be used maliciously. Take care to manage your information when networking, posting on message boards or blogging. If you participate in online social networks or on blogs, be careful about your contacts and the information you share. Connect only to people you trust. Do not post information about yourself you would not want shared with strangers.
Use unique passwords
Using the same password to log in to multiple accounts, like your Walmart account, social media profiles, and email accounts, increases your security risk. It is like using the same key to lock your home, car and office – if someone gains access to one, all of them could be compromised.
Choose strong passwords and protect your information using these tips:
Do...
- Create a password using a string of at least eight letters, numbers and special characters
- Use one password for your computer login and different passwords for online accounts
- Be very careful about responding to an email, phone call, fax or letter from anyone who asks for your password(s)
- Change your password periodically
- Consider using a password manager that:
supports two-factor authentication
prompts you to change old passwords
flags weak or reused passwords
notifies you about compromised websites
integrates with your phone, computer, tablet, and other devices
Don't...
- Use your address, birth date, phone number, common words or your pet's name as your password
- Share your passwords with anyone
- Write down any password near your computer where someone could see it
- Carry your password in your purse or wallet
- Give your password or credit card number via email
Protect your device
When you are not using your computer, laptop, tablet, or phone, lock your screen to keep others from getting into your device. For added security, set your device to automatically lock when it goes to sleep.
There are a few additional actions you can take to drastically reduce the risk of exposing sensitive or personal information:
- Use a PIN or passphrase to protect your device
- Disable features not in use, such as GPS, Bluetooth, or Wi-Fi
- Avoid joining unknown, unsecured, or public Wi-Fi networks
- Delete all information stored on a device prior to discarding it
- Avoid opening files, clicking links, or calling numbers contained in unsolicited text messages or emails
- Maintain up-to-date software, including operating systems and applications
- Check privacy policies and user reviews on applications before downloading to ensure they are reliably sourced
- Do not use “Remember Me” features on websites and mobile applications – always type in your username and passphrase or password to log in
- Encrypt personal or sensitive data and messages
- Understand the risks, keep track of your devices (including of cables, chargers and peripherals), and maintain situational awareness
- Defend against hackers with two-factor authentication
Avoid phishing attacks
Be wary of requests for personal information
Don’t reply to suspicious emails, instant messages, or pop-up windows that ask for personal information, like passwords, bank account or credit card numbers, or even your birth date. Even if the message comes from a website you trust, like your bank, never click on the link or send a reply message. It is better to go directly to their website or app to log in to your account.
Remember, Walmart will not send messages requesting that you send passwords or financial information over email.
Watch out for impersonators
If someone you know emails you, but the message seems odd, their account may have been hacked. Don’t reply to the message or click on any links unless you can confirm the email is legitimate.
Look out for things like:
- Urgent requests for money
- The person claiming to be stranded in another country
- The person saying their phone was stolen and cannot be called
Always validate suspicious URLs or links
Phishing is an attempt to trick you into revealing critical personal information, like a password. It can take many forms, so it is important to learn how to spot suspicious emails and websites. For example, a hacker might create a login page that looks legitimate but is actually fake, and once your password is revealed, the hacker could access your account or infect your machine.
To avoid getting phished:
- Never click on questionable links
- Always double-check the URL to make sure you’re entering your data into a legitimate website or app
- Before submitting any information, make sure the site’s URL begins with “https”
Set 2-factor authentication
What is 2-factor authentication?
2-factor authentication is an extra layer of security for your Walmart.ca account. In addition to using your chosen password upon login to your account, a one-time code will be sent to your mobile phone number which you can use to complete your login. The code will remain active for 30 minutes. If the code expires, please restart your login attempt and a new code will be sent to you.
How can I enable 2-factor authentication on my account?
Sign in to your Walmart.ca account and go to "Profile settings" under "My account." Verify the primary mobile phone number saved in your account by entering the one-time code that will be sent to it. Once verified, select "Enable" for 2-factor authentication and enter a new one-time code that will be sent to your primary mobile phone number.
The next time you sign in to your account, you’ll be asked to enter a one-time code that will be sent to your phone number in addition to your chosen password for added security. The code will remain active for 30 minutes. If the code expires, please restart your login attempt and a new code will be sent to you.
Use secure networks
Be careful about using public or free Wi-Fi, even those requiring a password. These networks may not be encrypted, so when you connect to a public network, anyone in the vicinity may be able to monitor your Internet activity, such as the websites you visit and the information you type into sites. If public or free Wi-Fi is your only option, the Chrome browser will let you know in the address bar if your connection to a website is secure.
Report suspicious behaviour
Please report any of the following experiences to Customer Experience:
- Spamming
- Impersonation of any person or entity
- Account takeover