stay safe online
Spot unsafe links and avoid phishing
Phishing is when you’re contacted unexpectedly and asked for personal information, to take an action, open an attachment or click on a link. Learn about Uniform Resource Locator (URLs) so that you can spot the primary domain where a link will take you.

- Spotting unsafe links
- Spotting a phishing email
- Helpful tips
- More resources
How website links (URLs) are structured
A URL (Uniform Resource Locator), or web address, is a unique identifier used to find a resource on the internet.
A general guide to the components that make up a URL:
- The scheme (or the "https") is the first part of a URLThe “s” in “https” indicates that it’s a secure connection. The scheme is followed by a colon and two forward slashes.
- The top-level domain is the last part of the domain and can be country-specificIn “https://cp.sanlam.co.za”, the “.co” represents a company and the “.za” is for South Africa.
- The second-level domain is the part between the scheme and top-level domainIt’s usually the business’s name. On “https://cp.sanlam.co.za”, it’s “sanlam”.
- The subdomain is an extension of a domain nameIt’s located between the scheme and top-level domain and is commonly used to indicate different content, like “blog” or “shop”. In “https://cp.sanlam.co.za”, it’s the “cp” and directs you to a login screen rather than the general website.
Examples of URL destinations
- https://cp.sanlam.co.za - the destination is sanlam.co.za
- https://google.google-fake.com - the destination is google-fake.com
- https://verify.microsft.really.com/microsoft.com - the destination is really.com and NOT microsoft.com


spotting a fake email
How to spot a fake or phishing email
Unsafe links give hackers access to your personal information. Hackers use phishing techniques to prey on emotions, clouding judgment.
FAKE Dimensions
- Feeling:Does the message try to tap into your emotions, like curiosity or fear? Does it try to create a false sense of urgency to pressure you?
- Action:Does the message prompt you to open a link or attachment? Does it ask for personal information?
- Know:Secure your device, don’t share it. Keep your contact details updated on Sanlam Online to get SMS or email notifications for login and password reset activity.
- Expect:Were you expecting this email? Even if you know the sender, their account may have been compromised. Verify the email if you're unsure, especially if it involves payments or your financial and personal information.
tips
Avoid becoming a victim
Malicious third parties use all sorts of tricks (phishing links or calls impersonating trusted institutions) to get your information.
How to safeguard your personal information:
- We’ll never ask you for your account login details over the phone or in messagesNever give your login username and password to anyone
- Reduce your digital footprintVerify a website before sharing your email and personal information
- Think before opening links or sharing information over the phoneScammers often pose as legitimate companies to try access your accounts
If you ever doubt you’re speaking with a Sanlam representative over the phone, end the call and dial 0860 726 526.

