Skip to main content

Security

The security of your data is important to us! We advise you to be cautious, because there are many phishing e-mails, text messages and fraudulent telephone calls going around.
Coop Pank complies with internationally recognised security principles and we deal with the detection of fraud and prevention every day, and involve various experts in this. If you have any suspicions or questions, please contact us. Please inform the police and the bank immediately if you have already fallen victim to similar fraud.

REPORT A PHISHING WEBSITE

Recommendations for secure transactions

  • Make sure that you’re asked to enter your PIN1 when logging into the bank, not PIN2.
  • If possible, avoid using devices that are not yours (a public computer, Internet kiosk, friend’s device) for banking transactions. If you cannot avoid this, you must be particularly careful and not leave the computer unattended after you’ve logged into the Internet Bank.
  • Avoid using the Internet bank from an unprotected public network. If possible, create a wireless connection with your mobile phone instead.
  • Set reasonable limits for cash withdrawal, transfers and card transactions.
  • When setting up automatic payments, choose the lowest necessary payment limit both in the Internet bank or when entering into a contract at a branch.
  • If you use a link in an e-mail or text message to log into the Internet bank, make sure that you have been directed to the official website of Coop Bank before you log in. The web address looks like this: https://www.cooppank.ee.
  • Check the authorisations given for Internet bank use from time to time if you have authorised someone else to use the services of the Internet bank on your behalf.
  • Make sure that the invoice you’re paying is correct. Check that you make the payment for a product or service to the right provider. You should pay attention to the country code in the IBAN and if possible, compare the IBAN to the IBAN of the payments previously made to the same service provider.
  • When making online payments, use a bank link instead of entering credit card data in the case of Estonian online shops and service providers. Use the help of a well-known payment intermediary (such as PayPal) when buying from elsewhere in the world – this gives an additional security guarantee when you buy from an unknown e-service provider or online shop.
  • Choose well-known service providers and online shops when buying on the Internet.
  • If possible, avoid entering credit card details on the websites of unknown online shops.
  • If possible, don’t make online purchases on devices that are not yours (a public computer, Internet kiosk, friend’s device). If you cannot avoid this, you must be particularly careful and not leave the computer unattended after you’ve logged into the Internet Bank.
  • An online shop should never ask you for the codes you need to log into your home bank. Never enter your bank login codes on the website of any other service provider or online shop!
  • Be careful when making purchases on Black Friday and Cyber Monday. Extremely good offers from unknown sellers may catch you off guard on these special shopping days and you may fall victim to fraud.
  • Never post photos of your own or someone else’s card on the Internet or in social media.
  • Never let your card out of your sight.
  • When paying by card, make sure that nobody can see you enter the PIN. Hide the PIN keypad with your hand if necessary.
  • Make sure that the amount is correct before you make a contactless payment.
  • Never keep the PIN of a bankcard in your wallet and never ever attach it to your card.
  • Immediately inform the bank if your card was lost or stolen. If you close your card immediately, it is less likely that someone can gain unauthorised access to the money in your bank account.
  • Check the payment terminal before you make a card payment. You should be cautious if you see weird devices attached to it – they may be used to copy the data of your card.
  • Set reasonable limits on contactless payments if you activate these payments with your card. Deactivate this option if you don’t want to make contactless payments.
  • The PIN is personal and should be kept in secret! Never share it with anyone else or keep it in the wallet with your card.
  • When you withdraw cash, make sure that nobody can see you enter the PIN in the ATM. Hide the PIN keypad with your hand if necessary.
  • Keep an eye on your bank account! Regularly monitor your account statement in the Internet bank to make sure nobody has withdrawn cash from your account without your knowledge.
  • Make sure that you put your card back in your wallet after using it in an ATM.
  • If you notice anything unusual attached to an ATM, such as traces of glue by the card slot or that the shape of the keypad is unusual, don’t insert your card and immediately contact the bank.
  • Immediately inform the bank if your card was lost or stolen. If you close your card immediately, it is less likely that someone can gain unauthorised access to the money in your bank account.
  • If possible, configure your phone in such a way that its contents can be deleted from a distance if it’s lost.
  • Protect your phone with a PIN or password. Use a configuration that does not display the PIN on the screen when entered.
  • Don’t choose your own or a family member’s date of birth or another number that’s easy to guess as the phone PIN.
  • If you used the bank’s mobile app and your phone was lost or stolen, inform the bank about this as well.
  • Turn off WiFi, Bluetooth and NFC is you’re not using them. In addition to improving security, it also extends battery life.
  • Update your phone software regularly and always install the newest security updates.
  • The PINs of Mobile-ID and Smart-ID may only be entered in the respective application on your phone!
  • Always make sure when using Mobile-ID and Smart-ID that the check code displayed on the screen matches the code displayed on the website of the Internet or mobile bank before you confirm it.
  • Always make sure which transaction you’re confirming when using Mobile-ID and Smart-ID: the name of the service and a short description of the transaction are displayed on the screen.
  • Never enter your PIN if you haven’t initiated a transaction, but receive a notification asking for your Mobile-ID and Smart-ID password! It’s probably an attempt at fraud or another user has made a mistake when entering their username.
  • You can view and, if necessary, close your effective Smart-ID transactions on the Smart-ID self-service portal. It would be good to keep an eye on your Smart-ID contracts from time to time. You should contact the Certification Centre or the police if you find suspicious contracts.
  • Call the ID card helpline on 1777 if your ID card is lost or stolen (or if you suspect this). First of all, stop your certificates, as this prevents anyone from using your card electronically. Close the card for good if you’re convinced that you’ve lost it.
  • If you use Mobile-ID, immediately call the ID card helpline on 1777 if your phone is lost or stolen. First of all, stop your certificates, as this prevents anyone from using your Mobile-ID. Close your Mobile-ID for good if you’re convinced that you’ve lost your phone.
  • Don’t choose your own or a family member’s date of birth or another number that’s easy to guess as the PIN of your ID card, Mobile-ID or Smart-ID.
  • Don’t keep the ID card and its PINs in the same drawer or wallet.
  • Don’t keep the Mobile-ID or Smart-ID PINs among the contacts on your phone in a format that makes them easy to find.
  • Make sure that your devices that are connected to the Internet (computers, smart phones, tablets, vacuum cleaners, security cameras) always have the most up-to-date software. Don’t ignore device reminders to download new software and don’t postpone the updates your device asks you to make.
  • Use antivirus software if possible (especially on Windows computers). If you’re already using it, make sure that the software is automatically updated. As a rule, antivirus software is updated several times a day!
  • Create separate user accounts without administrator rights for daily use on your computers. Perform your everyday tasks as an ordinary user – this reduces the risk that someone will hack your computer and misuse your data. Following this rule is particularly important if there are less experienced computer users in your household (especially children and elderly people).
  • Check the origin of the software you install on your computer: only download commercial software from the manufacturer’s official website. Only trust freeware with a public source code. Avoid intermediaries whose link to the manufacturer is unclear.