Safe online banking

In addition to the features of your computer, online connection and netbank, your own actions have an impact on the security of your online banking services. Online banking is safe when you ensure that the data security of your computer is up to date and act in a responsible manner:

  • Keep the firewall on your computer always on
  • Regularly update the anti-virus software on your computer
  • Be vigilant during an online connection
  • Be careful when using and storing your access codes
  • Read the instructions on how to use access codes and the agreement terms and conditions.

Our responsibilities and obligations as a service provider

As a service provider, it is our responsibility to protect our Netbank with the best possible solutions. These include TLS encryption and a system of one-time codes. We monitor the development of data security threats and solutions continuously and take them into account in our data protection solutions.
This data protection site utilises the electronic guidebooks, such as the Information Security Guide, of the Ministry of Transport and Communications as a source of additional information. Their site has links to F-Secure's virus scanners. We cannot guarantee that the information on the source sites is up to date.

Contact us

Nordea's information security solutions

Netbank and access codes allow Nordea to offer secure banking services. On this page we describe the most important data security solutions in banking services used with Nordea’s access codes.
By keeping the data security of computers and telephones up-to-date and by being vigilant, you can influence the protection of your data and the validity of your transactions.

Netbank sessions

Session time-out
A Netbank session will automatically close after 15 minutes if you do not use Netbank. If it takes more than 15 minutes to fill in a card application, for example, the session is interrupted and you have to fill in the information again. You can postpone the time-out by moving from one page to another in Netbank, for example. Time-out prevents the unauthorised use of connections that are accidentally left open.

Encrypted connection
The connection between the bank and the customer’s computer is securely encrypted by using TLS (Transport Layer Security) encryption, which is a commonly used connection encryption method. It prevents third parties from viewing the information you send and receive.
NB! In a secure connection, the address in the browser's address field begins with the letters https://.
The connection is not secure if the address begins with http://.

Netbank sessions are controlled with cookies. At the beginning of a session, a cookie known only by the bank is saved in the cache memory of your browser. Together with the TLS encryption, cookies prevent third parties from viewing your information. When you exit Netbank by clicking the Log out button, cookies are deleted from the cache memory of your browser.

Third party solutions

Never use your access codes in a service provided by a third party

There are or will be services on the market provided by third parties where you log in to Netbank from the service provider's site. In these services, logging in to Netbank has been integrated into the service provider's site. After logging in, the program run by the service controls the Netbank connection and you do not see the normal Netbank front page. Instead, you see a text asking you to wait until the transfer is complete or something similar. 

This means that you can no longer control your Netbank.
Using these services constitutes a significant data security risk. Normally in these services a third party controls the use of Netbank instead of the customer. You may find it difficult to tell the difference between these services and malware.
If another account holder's account has been linked to your Netbank, the information retrieved by an external service provider may include another person's account information which is protected by bank secrecy. 

This type of data transfer always requires the express consent of the account holder.
Because the use of Netbank is based on personal access codes, you must ensure that an external operator cannot use Netbank on your behalf even after logging into Netbank. These activities are comparable to disclosing your access codes to a third party which is forbidden in the terms and conditions of our Netbank agreement.

Use of Netbank access codes approved by Nordea

  • E-identification is used in the services provided by public authorities and pension insurance companies, where you key in your Netbank access codes in Nordea's e-identification site. After identification, you return to the third party's site.
  • E-payment is used to pay for online shopping. You key in your Netbank access codes to Nordea's e-payment site and check the invoice from your screen. After you have provided your confirmation code, payment is debited to your account. You can then return to the online store's site, if you wish.
  • Netbank is a service offered by Nordea, where customers can bank online. Customers log in to Netbank via In Netbank, they can control their transactions and they themselves exit Netbank.

Contact us

When you want to report misuse, ask questions or give feedback on data security issues, do as follows:

Notification of misuse

Misuse carried out with stolen access codes or card data is an offence that must be reported to the police. Immediately report the misuse to us as well so that we can close your access codes or card.

Reporting phishing e-mails

You can report phishing e-mails to us.

Card security

If your card gets lost or stolen, block it immediately by calling the card blocking service.

Read more

Report an attempted online hoax

If you suspect a netbank scam contact Nordea immediately.

Read more

Protect your device

You can improve web security by making sure that your Internet browser, antivirus software and firewall software are regularly updated.

Read more

Beware of malware

If you receive an e-mail which asks you to give data on your banking details, you must delete it and not reply to it under any circumstances.

Read more