ACU_BCorp_Tagline_RGB_FullColour ACU_Digital-_RGB_Asterisk-only
Service status
Sign in
Search

Secure your business payments with CAFT MFA

Protect your business and your transactions with an extra layer of security. CAFT Multi-Factor Authentication (MFA) helps ensure that your online payment processing is safe, simple and reliable.

Responding to a security concern

If you have come to this page because your business or an employee's computer system has been compromised, or you have noticed unusual activity in your CAFT account, take these steps immediately: 

  1. Check the CAFT Activity Log and History File information.
  2. Change your CAFT password immediately.
  3. Contact commercialservices@acu.ca.
  4. Follow all other security procedures of your company.

Multifactor authentication

Multifactor Authentication (MFA) is key to helping prevent client losses to cyberfraud crimes, like Phishing and Site Spoofing. MFA adds layers of security to deter illegitimate access to online accounts, even if fraudsters have obtained an account holder’s login credentials.

2025_PWS-3.0_Lg-text_CC-w-gradient_400-x-400_blue-green_5 2025_PWS-3.0_Lg-text_slice_400-x-400_8

MFA is required by all CAFT users. It requires a separate device — a mobile phone (preferred) or tablet — and an authenticator app, which is used to verify users’ identities before they can log into the system. Microsoft and Google Authenticator apps are free, safe and secure.

CAFT accounts are set up through our Commercial Services team.

CAFT users are provided with a User Guide that contains all setup and user instructions. Please contact us if you require a new User Guide.

img-007

Info for CAFT users

User Responsibilities User contact

CAFT user responsibilities

As a CAFT user, you have a vital role in maintaining the security and integrity of your financial transactions. Ensure you:

  • Safeguard your passwords and User IDs.
  • Manage CAFT transactions diligently.
  • Verify file totals before processing.
  • Release files promptly.
  • Regularly review CAFT email notifications.
  • Monitor the Activity Log and History File.
  • Verify all NAFT reports.
  • Confirm account settlements with the settlement register (AFTR0010).
  • Keep your financial institution informed of any changes to Originator information.
  • Report any unusual activity to your financial institution immediately.

CAFT User Contact

Direct all questions and issues to CommercialServices@acu.ca.

If you’ve been locked out of your CAFT accountwe’ll need to unlock your account and reset your password. Contact CommercialServices@acu.ca

Security is a share responsibility

Never use an internet search to navigate to your CAFT login page or any other site where you make financial transactions or access personal information. Instead, enter the full URL provided to you. Once you’re there, bookmark the page and use the bookmark going forward.

Always safeguard your user IDs and passwords. Do not communicate or keep a copy of your usernames and/or passwords for any of your financial services (or other secure logins) in your email account or on your computer.

Never respond to an email that asks for your login credentials or asks you to make changes to login or banking information. Even if the appears to be from a legitimate sender, call them to verify.

Avoid logging into secure accounts when using public or shared computers or devices, or public wi-fi.

Protecting your accounts is a shared responsibility. Learn more about how ACU helps prevent fraud and how you can stay vigilant.

2025_PWS-3.0__CTA_CC-w-gradient_400px-x300px_green_4

Have questions? we're here to help.

Whether you're looking for more information or need guidance on your next financial move, our team is ready to support you. Reach out and let us know how we can assist.

Contact us