Skip to content

Privacy and Security


"Phishing" or "brand spoofing" is a scam where a perpetrator sends authentic-looking emails, appearing to come from legitimate companies, in an effort to phish for personal and financial information. The emails direct recipients to click on links that re-direct them to fraudulent or "spoofed" websites. Once on the fraudulent site, the email recipient is asked to enter personal and/or financial information that is later used to commit fraud.

If you receive such an email claiming to be from TD Bank Group and that you believe to be fraudulent, do not respond and do not open or click on any links or open attachments contained within the email. Please notify us by visiting our online reporting centre and by forwarding a copy of the email to us at

Delete the email immediately after notifying us.

Our commitment

TD Bank Group will not ask you to provide personal information, or login information such as usernames, passwords, PINs or account numbers, through unsolicited email.