Email Encryption

BB&T protects your confidential information by encrypting all email messages and promoting the use of secure passwords.

Confidential information includes Social Security numbers, driver's license numbers, account numbers, medical information, personal identification numbers and other information that may be considered confidential based on its sensitivity or personal nature.

Secure messages through Cisco Registered Envelope Service

Cisco Registered Envelope Service (CRES) is a web-based email program hosted by Cisco IronPort Systems, an industry-leading email security provider. CRES enables BB&T to send messages protected by strong digital encryption, and then allows you to reply to us securely.

CRES protects your confidential information in the following ways:

  • Electronic encryption – All messages are transmitted by a secure encrypted connection between your web browser and CRES. Any information shared through this connection cannot be viewed by others.
  • Secure passwords – Your information is protected by a password created by you and known only to you. You'll create this password the first time you receive a secure message from BB&T via CRES. We recommend that your password contains at least eight characters and be a mixture of uppercase and lowercase letters, numbers and special characters such as @, #, $, % and &. They should not be based on personal information or words found in a dictionary.

CRES messages from BB&T

CRES can be used with any email program and any web browser that supports secure browsing. Only messages that contain confidential information are sent through CRES. Normal email correspondence will continue to be delivered as standard email.

Each CRES message you receive from BB&T contains a number of components designed to help identify messages as legitimate:

  • Because CRES is hosted by Cisco, you'll receive a Cisco secure email notification.
  • The email address of the BB&T sender will be clearly displayed at the top of the message. You can email the sender with non-confidential information to confirm they sent you a secure email. If you're unable to confirm the legitimacy of an email, delete it. When in doubt, consider calling the sender to determine an alternate method of communication.
  • Links contained in CRES messages will take you directly to the CRES logon page. You'll never be asked to provide information other than your name, email address and password in a CRES message. If you receive an email asking for any other information—or if the links in the email direct you to a site other than the CRES logon page—delete the email.

Additional information(opens in a new tab) on CRES is available from Cisco.

Viewing, sending and replying to email through CRES

Follow these steps to start viewing, sending and replying to messages through CRES:

  1. Click the "securedoc.html" link in the secure message notification.
  2. Complete the registration form to create your account.

This registration won't expire, and you'll be able to receive CRES secure messages from additional senders as well.

Once you've accessed a CRES message, you can securely reply directly to the original sender.

You can also send new email through CRES to someone at BB&T, but you must first have received a secure message notification and registered through the Cisco application.

A few words about passwords

If you're prompted to enter a password the first time you receive a secure message from BB&T, it may be that you've previously registered with CRES after receiving an email from another sender. Because CRES is hosted by Cisco, your CRES password would be the same when accessing messages from BB&T or other senders using the service.

You can reset your password by using the security questions you selected when you created your account. Simply click the "Forgot password" link and follow the instructions. You may also contact CRES support for assistance in resetting your password.

Need help?

If you're having trouble logging into the site, viewing and sending messages, or resetting your password, CRES support is available to help. You can:

Related topics

Fraudulent Emails  (Article)

Stay on guard for fake emails and websites designed to steal your financial information.

Identity Theft  (Article)

Minimize your risk of identity theft by knowing the warning signs and learning ways to protect yourself, both online and offline.

Phishing  (Article)

Protect yourself from scams that could trick you into providing confidential information, and learn what to do if you do get "phished."

Protecting Your Internet Activities and Electronic Data  (Article)

With more financial activity occurring online than ever before, it's essential to know how to reduce the risks to your data.

Branch Banking and Trust Company, Member FDIC.

New York City residents: Translation or other language access services may be available. When calling our office regarding collection activity, if you speak a language other than English and need verbal translation services, be sure to inform the representative. A description and translation of commonly-used debt collection terms is available in multiple languages at

Branch Banking and Trust Company is now Truist Bank. Learn more.

BB&T and SunTrust have merged to become Truist. Both institutions will continue to offer independent product lines for a period of time. This may include differing underwriting guidelines, product features, terms, fees and pricing. Our friendly teammates at your local SunTrust branches will be happy to walk you through their respective products. You can also learn more by contacting them at 800-SUNTRUST or

BB&T Complete Client Protection

about Truist Bank