Security of card payments
In view of increasing frequency of fraud against card holders during online payments, we urge holders to pay additional addition during card use.
Avoid fraud by keeping safe your cards and token secret information
Due to the frequent fraud occurrence, we remind you to pay attention to the fact that when receiving a money payment, you should never share or enter the CVC / CVV number from the card or authorize the transaction.
Also, do not send photos of the payment card, token serial number or one-time password. The IBAN number is the only information that other person needs to know in order to pay you money.
One-time password (OTP) you should enter exclusively on the RBA application/site!
Disclosure of information
During online payments card holders need to take account of the following: any request, made orally or in writing, to send a copy of the card ( fornt and/or back), PIN or any other card data such as card number, valid thru date or verification code, such a request may be an attempt of card abuse.
In addition to disclosing card data, holders should be aware that they can fall victim to online fraud also by sharing their personal information (ID card number, passport number, personal ID No.(OIB), etc.).
Phishing means the use of unsolicited e-mails or browser pop-up windows to obtain customers personal information (ID card number, passport number, OIB, et.) and credit card data (card number, valid thru date, verification code).
Vishing is a novel form of phising and refers to unauthorised attempts to obtain personal information on clients and credit cards in telephone call.
E-mails and phone calls
Our recommendation to our clients is never to respond to e-mails or telephone calls with requests for personal information or credit card data. No bank or a number, secret PIN code, card expiration date or card verification code from the back of the card. Particular caution is warranted when opnening any attachments and/or downloading ANY web content.
• Do not ever respond.
• Clients can check and report any suspicious transaction by calling the RBA Contact centre (072 62 62 62). One of the options available to our clinets for keeping track of the charges made to their credit or debit cards are Internet banking or the mDIREKT Account Balance service, which sends a text (SMS) message with their account (current account/multi-currency current account/giro account) balances and changes, as well as the mDIREKT Credit Crds service to receive real time text messages on each transaction made with their personal or additional RBA card.
Raiffeisenbank Austria d.d. is constantly working on security of each aspect of its card business:
• each RBA card issued features integrated chip technology,
• all POS terminals and ATMs support chip technology,
• RBA was the first in Croatia to introduce SMS notification of each transaction made.
PIN is a secret code known only to the card holder and they must never reveal it in any way (in conversation, by telephone or e-mail). It is worth noting that, according to the regulation in place, not even the issuing bank knows the PIN and has not right to request the holder to disclose their PIN.
It is precisely for the reason of security that RBA recommends debit and credit card holders to treat any information concerning cards with caution and to keep PINs, passwords, card verification codes and other such information to themselves. Also, in the case that such information is stored anywhere, it should not be kept near the card. Cuation is also recommended during transactions; we advise any transactions to be made by the card holer in person.
The bank´s security systems are at maximum level, but each holder is responsible for day - to - day protection of their card information and PIN, and for paying particular attention to the security of the websites that collect their information.
RBA web pages also feature a segment on the Security of online payments, intended to provide any information necessary for customer protection and fraud prevention. It is important to make card holders aware of the need to abide by the bank´s security recommendations and to take any autonomous action in line with such recommendations for sake of their own security.