Security of card payments

In view of increasing frequency of fraud against card holders during online payments, we urge holders to pay additional addition during card use.


  • Disclosure of information

    Disclosure of information

    During online payments card holders need to take account of the following: any request, made orally or in writing, to send a copy of the card ( fornt and/or back), PIN or any other card data such as card number, valid thru date or verification code, such a request may be an attempt of card abuse.

    In addition to disclosing card data, holders should be aware that they can fall victim to online fraud also by sharing their personal information (ID card number, passport number, personal ID No(OIB), etc.).

  • Phishing


    Phishing means the use of unsolicited e-mails or browser pop-up windows to obtain customers personal information (ID card number, passport number, OIB , et.) and credit card data (card number, valid thru date, verification code).

  • Vhishing


    Vishing is a novel form of phising and refers to unauthorised attempts to obtain personal information on clients and credit cards in telephone call.

  • E-mails and phone calls

    E-mails and phone calls

    Our recommendation to our clients is never to respond to e-mails or telephone calls with requests for personal information or credit card data. No bank or a number, secret PIN code, card expiration date or card verification code from the back of the card. Particular caution is warranted when opnening any attachments and/or downloading ANY web content.

    • Do not ever respond.

    • Clients can check and report any suspicious transaction by calling the RBA Contact centre (072 62 62 62). One of the options available to our clinets for keeping track of the charges made to their credit or debit cards are iDIREKT Internet banking or the mDIREKT Account Balance service, which sends a text (SMS) message with their account (current account/foreign currency account/giro account) balances and changes, as well as the mDIREKT Credit Crds service to receive real time text messages on each transaction made with their personal or additional RBA card.

  • Security


    Raiffeisenbank Austria d.d. is constantly working on security of each aspect of its card business:

    • monitoring card transactions and cards issued by RBA, as well as cards issued by other banks, made at RBA POS terminals and ATMs,
    • each RBA card issued features integrated chip technology,

    • all POS terminals and ATMs support chip technology,
    • RBA was the first in Croatia to introduce SMS notification of each transaction made.

  • Our recommendations

    Our recommendations

    PIN is a secret code known only to the card holder and they must never reveal it in any way (in conversation, by telephone or e-mail). It is worth noting that, according to the regulation in place, not even the issuing bank knows the PIN and has not right to request the holder to disclose their PIN.

    It is precisely for the reason of security that RBA recommends debit and credit card holders to treat any information concerning cards with caution and to keep PINs, passwords, card verification codes and other such information to themselves. Also, in the case that such information is stored anywhere, it should not be kept near the card. Cuation is also recommended during transactions; we advise any transactions to be made by the card holer in person.

    The bank´s security systems are at maximum level, but each holder is responsible for day - to - day protection of their card information and PIN, and for paying particular attention to the security of the websites that collect their information.

    RBA web pages also feature a segment on the Security of online payments, intended to provide any information necessary for customer protection and fraud prevention. It is important to make card holders aware of the need to abide by the bank´s security recommendations and to take any autonomous action in line with such recommendations for sake of their own security.