ID tools and security

Code cards are expired

Code cards are expired from 01.09.2019!

To continue using the Internet Bank, please choose another authentication tool.

If you do not have any other authentication tool yet please call us 1633.

  • You will need your smart phone and the current Internet Bank login tool.
  • Download a free “Smart-ID” app.
  • Create a “Smart-ID” account on your phone.
  • Activate it with your current login tool.
  • If your have only a code card, please activate Smart-ID account at the nearest bank‘s branch.

Download “Smart-ID” now:

Smart-ID for iOS    Smart-ID for Android

  • Book a consultation in the Internet Bank – choose the preferred time and Swedbank branch.
  • When going to the bank, have with you a valid personal identification document, i.e. passport or ID card.

As of September 1, 2019, the code cards are no longer valid and can no longer be used to connect to the Internet Bank and App.

  • If the code card is the only means of verifying your login and banking transactions, you need to start using another login method - Smart-ID, PIN generator or another.
  • Call us 1884 and register for a consultation regarding the change of an authentication tool at the bank’s branch convenient for you.
  • When you go to the bank, take your valid identity document - passport or ID card.
Sign up for a consultation

What is Smart-ID?

“Smart-ID” is a free application, which will make it easier and faster for you to login to Swedbank Internet Bank and Bank application, to confirm money transfers and other operations, and to sign various contracts.

In order to use “Smart-ID”, you will not necessarily have to be subscribed to a mobile communication operator. “Smart-ID” will operate wherever Wi-Fi or/and mobile internet is.

In order to use “Smart-ID”, you will need:

  • A smart phone with “Android 4.1” (or later version) or „iOS 8.0” (or later version);
  • Mobile internet or wireless internet connection.
Smart-ID instructions

“Smart-ID Basic”

  • If you create a “Smart-ID” account by using a code card or a code generator, “Smart-ID Basic” account will be created for you.
  • You can use electronic services of the banks: login, confirmation of various operations, confirmation of various service contracts.

“Smart-ID”

  • If you create a “Smart-ID” account in a bank branch with the help of a consultant or by using the M-signature, “Smart-ID” account will be created for you.
  • You can use not only electronic services of the banks: login, confirmation of various operations, confirmation of various service contracts, and also signing of various documents. This ID tool has the same legal power, as the signature made with your hand.

The Estonian company “SK ID Solution AS” – a long-term Swedbank cooperation partner in the Baltic States and the developer of “Smart-ID” has been rendering certification services and issuing safe electronic signatures for 15 years.

More about “SK ID Solution AS”:

“Smart-ID” support:

How to use Smart-ID: watch and learn

How to login to the Internet Bank with “Smart-ID”?
How to perform payments in the Internet Bank with “Smart-ID”?
How to login to Swedbank app with “Smart-ID”?
How to perform payments in Swedbank app with “Smart-ID”?
What to do if you have forgotten your PIN code?
FAQ

Smart-ID and smart devices

You can download Smart-ID app and create your electronic signature in any smart device (telephone, tablet, etc.) with Android (version 4.1 or later) or iOS (version 8.0 or later) operating system.

Yes, you can create your Smart-ID account in several different smart devices. Account registration (sign up) in different devices will have to be carried out anew. If you delete Smart-ID account in one device, it will not stop functioning in other devices.

You can create different PIN codes or use the same for the accounts in different devices.

You will see the request to check the control code and enter the required PIN code in all devices in which you have Smart-ID account. When you enter your PIN code in one device, the request to enter PIN code in other devices will automatically close.

This is subject to the characteristics of a smart device. Devices with Android OS usually allow the use of different user accounts. Meanwhile, devices with iOS do not have this function.

Not necessarily. E. g. you can have Smart-ID in your phone and connect to internet bank using any other device. You just need to enter PIN code in the device with Smart-ID account.

Account registration and validity

To start using electronic services provided by Swedbank, a person has to be resident of the Republic of Lithuania. Foreign citizens also have to have any type of residence permit specifying personal identification code allocated in the Republic of Lithuania.

Your Smart-ID account is valid for 3 years. When approaching the expiration date, you will have to delete the account and sign up again. Service provider SK ID Solutions will notify you in advance by sending an SMS or by e-mail.

To use the available Smart-ID also in Swedbank, you should first login to Swedbank internet bank with the identification tool you have (PIN code generator or M-signature) and enable the use of Smart-ID.

On the menu select as follows: My bank -> Settings -> Settings. Hit the button Enable Smart-ID.

Delete your account in Smart-ID: open Smart-ID app and hit “Delete account” on the top left corner.

First, download the “Smart-ID” app to your new smartphone. Then activate your “Smart-ID” account on the new smartphone by using “Smart-ID” of the old device. Delete the app from the old device only after having activated it on your new smartphone.

Yes, using Smart-ID has no effect on other forms of identification allowed by Swedbank. You can use the identification tool provided by the bank as an additional one. It may also be useful to have it when creating a new Smart-ID account (e. g. when forgetting your Smart-ID PIN code or losing a device, used for Smart-ID registration).

Using Smart-ID

Swedbank clients can use Smart-ID:

  • to connect to internet bank and bank app;
  • confirm payments and agreements;
  • identify themselves when connecting to the website of the third parties if these websites provide the possibility to connect via Swedbank internet bank.

When using Smart-ID transactions daily and monthly limits in the Agreement of Electronic Services shall be applicable. You can change the limits via internet bank or in any Swedbank branch.

The registration and use of Smart-ID, when connecting to Swedbank e-banking, is free of charge.

You can use Smart-ID anywhere you go where wireless internet is available. One Smart-ID request uses only as many as 5 KB of internet data.

No, SIM card is not needed. To use Smart-ID you only need wireless or mobile internet.

PIN codes

You can try entering PIN codes three times in succession. When you enter the wrong PIN code the third time, Smart-ID account is blocked for 3 hours. After 3 hours you can try again.

If you enter the wrong PIN code three times in succession for the second time, Smart-ID account will be blocked for 24 hours.

If you enter the wrong PIN code three times in succession one day later, Smart-ID account will be finally blocked.

Delete Smart-ID account and create a new one with new PIN codes.

You can delete your Smart-ID account in Smart-ID app by selecting the appropriate item and hitting on the top left corner menu.

If you fail to create an account in Smart-ID, please address the provider of Smart-ID service, , SK ID Solutions. Contact information: https://www.smart-id.com.

Should you have any question or face interference while connecting to Swedbank e-banking through Smart-ID, contact us.

The advantages of Smart-ID in comparison to other forms of identification

Smart-ID is an alternative to a PIN code generator – it is only much more comfortable and free of charge.

Smart-ID is in your smart phone, and you always have your phone with you. Thus to connect to the Internet Bank you no longer have to look for your PIN code generator.

Besides, you sign up to Smart-ID and can use it for Swedbank e-banking at no cost.

Smart-ID is an alternative to mobile-ID, but itt does not require you to have a SIM card, it operates via Wi-Fi or mobile internet.

You do not have to go to any specific place to start using Smart-ID. You simply need to download Smart-ID app to your smart device and sign up with the available identification tool. You sign up to Smart-ID and can use it for Swedbank e-banking at no cost.

Security

In such case, call the service provider SK ID Solutions, you will find the number on the website https://www.smart-id.com and ask them to block your Smart-ID account. You can also notify the bank of the loss. Upon your request from a client the service of internet bank will be blocked. The access will be unblocked on the basis of your request or request of the person’s authorised by you only at Swedbank branch.

We recommend installing Smart-ID in personal devices. In this way you will be sure that the users of the device will not accidentally block your account.

Detailed information on safety which guarantees technological principle of Smart-ID functioning can be found on
https://www.smart-id.com (see Help -> Security and Private keys).

Please also follow general safety principles:

  • do not disclose your PIN codes to anyone;
  • make sure that your smart devices are secured with passwords;
  • do not forget to regularly update the OS in your device.

What is PIN code generator?

PIN code generator is an electronic device, which generates single-use codes to be used for login and confirmation of various operations in the Internet Bank and Swedbank app.

PIN code generator is issued at the price of EUR 8.69.

Users of Swedbank Youth Programme and Senior Programme as well as users of the Basic Payment Account Service can get PIN code generators free of charge.

What is the personal identification card?

Electronic personal identification card (or e-ID card) is a secure and reliable method of identification.

This login tool can be used only in computers – mobile devices are not equipped for this purpose. Your computer must be additionally prepared for the use of the personal identification card/USB.

In order to use this identification measures, you will have to obtain a card terminal. Fees are available here.

How to obtain:

How to prepare your computer:

What is mobile signature?

You can also login to Swedbank Internet Bank and app and confirm operations with a mobile signature. In order to use it, you‘ll need a mobile phone with a special SIM card. Your mobile signature will be secured by two sPIN codes known solely to you. You‘ll have to enter these codes into your mobile phone – it is more secure than entering them into an internet page.

You can get mobile signature and receive more information on its price and conditions from your mobile network operator:

How to log-in with mobile signature?

Select “MobileSignature” when loggin in the internet bank or app.

  1. Enter your permanent user ID code in the box “User ID”.
  2. Enter your mobile phone number in the box “Phone number”, for example, 6XXXXXXX.

Enter your sPIN code

  1. Make sure that the code displayed in your Internet Bank or App log in screen coincides with the code displayed on the mobile phone, and confirm it.
  2. Enter the sPIN code of your mobile signature in the mobile phone.

You can use biometrics - fingerprint, iris or face recognition - in the Swedbank app. Therefore, you will be able to:

  • login;
  • confirm payments (10 payments in a row);
  • Check your account balance instantly.

As a reminder, to use biometrics in the Swedbank app, first enable this feature on your phone or tablet.

What to do in case of losing login details?

If you lost your internet bank login codes or suspect that your login details could have been accessed by unauthorised persons, immediately call us at any time of the day or night. The Bank will block your access to your internet bank account immediately preventing access to money held on your account. You can call us to have your internet bank account blocked 24/7:

  • For private clients: call 1884 (or +370 5 268 4444)
  • For business clients: call 1633 (or +370 5 268 4422)

The Bank will also automatically block access to internet bank in case incorrect login details are entered for five times (user ID or code from a PIN code generator). To have your internet bank unblocked, call 1884/ 1633 (on working days, 8:00 - 20:00; on Saturday, 9:00 - 16:00).

Protect your internet bank login codes

  • Under no circumstances, disclose your secret internet bank access credentials to other persons, including your family members, friends or bank employees.
  • If you want your family members to be able to manage, control and dispose funds on your account(s), or that the employees of your company are able to manage funds in your company’s account(s), request the bank to grant the right to them to log in to your internet bank in their own name and by using their own credentials, while you are free to revoke this right at any time.
  • Remember, that all internet bank login data (user ID, PIN codes, passwords, etc.) is the key protecting access to your money.
  • Do not write down your ID number and do not keep it in the same place with other identification tools.
  • Never send your internet bank login data by email.
  • Never disclose your internet bank login data to the callers.
  • The employees of the company should have personal authentication tools issued in their name to log in to the Internet Bank. Sharing one authentication tool is strictly forbidden.
  • Your Smart-ID or PIN code generator codes should not coincide with any part of your phone number. Avoid PIN similar to dates or ID number.
  • Change your PIN codes immediately, if you suspect that your internet bank login data could have been accessed by other persons.

Suspicious emails or calls. Stay alert!

If you receive a suspicious call or email from alleged 'bank employee' or 'officer' requesting you to disclose secret login details – under no circumstances disclose such information. Neither bank employees nor representatives of law enforcement or other institutions ever address residents requesting them to disclose their internet bank details (user ID, PIN codes, etc.). This strategy is frequently used by fraudsters trying to obtain necessary information and steal the money held in the account. Also, stay alert and do not open suspicious emails with potentially data stealing viruses attached. Make sure you log in to the internet bank service by using the correct address (https://www.swedbank.lt).

Please note:

  • Never disclose your secret login information, unless you are initiating the call with the bank.
  • Immediately inform the bank about any suspicious emails or calls.
  • Do not click on the links and do not open files attached to suspicious emails.
  • Remember – the bank never sends emails requesting for the user ID, PIN codes, or links to the websites where your details need to be entered.
  • The bank never sends emails requesting you to install additional software to improve internet bank possibilities.

If you find yourself in a similar situation, inform us about the incident by email phishing@swedbank.lt or by calling 1884 (calling from abroad +370 5 268 4444) - for private clients or 1633 (calling from abroad +370 5 268 4422) - for business clients.

Closing browsing session

If when logged in to internet bank, no activity takes places for 5 minutes, the login session is terminated. You will be asked to re-enter your login details. Time limits are used for security reasons, if a user forgets to log off from his/her account after finishing using internet bank.

Session certificate

The whole flow of internet bank data is encrypted.

Certificate of internet bank page

Before entering your login details, make sure that Swedbank internet bank address is shown in the address field of the browser, which starts https:// You will also see the symbol in the browser window.

IT vulnerability reports

It is important for us at Swedbank that our customers can feel safe and secure when doing business with us. We have therefore a structured approach to security in all of our development and management of systems and constantly strive to achieve the highest possible security and quality. Despite this, an error may slip by. If you have found a security flaw, we would like to hear more about it to be able to correct the problem as soon as possible.

How do you report?

Send an email to us at responsible-disclosure@swedbank.com. We prefer that you use our public PGP key to protect the information you send over. Make sure to have included the following information:

  • Detailed description of the vulnerability containing such info as URL and type of vulnerability.
  • The necessary information that we need in order to reproduce the problem.
  • If applicable, a screenshot of the vulnerability you have found.
  • Contact information, name, email, phone number, and your public PGP key (if you have one).

Personal data which you provided will be processed by Swedbank, AB for the purpose of informing you of the handling and rectification of your identified IT security deficiencies and, if necessary, of contacting you regarding the clarification of the information you provided. More information about how Swedbank, AB processes personal data is available in the Principles of processing Personal data published on www.swedbank.lt.

What can you report?

You can report security flaws that you have found in any of our services. Examples of security flaws are cross-site scripting, flaws in encryption or flaws with security implications in logic controls. The reporting service is not for other logical errors, errors in texts, questions about our services, questions about the security of our services or similar.

What can you expect of Swedbank?

We will confirm that we have received your description, continuously keep you updated while we process the issue, and inform you when the issue is fixed. Claims for compensation as a condition for sending in a vulnerability is not accepted.

What is required of you?

It is important for both us and our clients' security that you follow good practice, i.e. that:

  • You do not use the vulnerability to access or attempt to access information that does not belong to you;
  • You do not use the vulnerability to remove or modify information;
  • You do not affect the availability of our services through denial of service attacks;
  • You give us an opportunity to fix the reported vulnerability before going public with it.

Can you file a report anonymously?

Yes, but then we cannot respond back and keep you updated on the status.

PGP key

PGP key
Key ID: 0x0AD6CCAF
Fingerprint: 2D14 4030 6D4B 68C3 F286 3AC6 333B E8E4 0AD6 CCAF

When using internet bank on your computer, follow the safety recommendations given below:

  • Install antivirus software and select automatic update (at least one automatic update per day).
  • Install local firewall. It should be configured to prevent connection to your computer from internet.
  • Download security upgrades of all software on a regular basis.
  • Use the latest version of your browser and operating system available.
  • Activate automatic software updates.

When using internet bank on mobile devices (phones, tablets), follow the safety requirements given below:

  • Download apps only from reliable e-shops, such as App Store, Google Play, and Windows Phone Apps – Microsoft store.
  • Do no 'crack' your mobile device to evade restrictions set by the mobile communication provider or device manufacturer. Such actions will remove protection installed into your device.
  • Use the latest version of your browser and operating system available.

Browse safely

  • Be careful with suspicious files. Do not open attachments received from unknown senders, unless you are confident that doing this is safe. Besides, be careful when opening files received from your known senders – their computers can also be infected with virus or spyware. Viruses are usually found in the files ending .exe, .com, .bat, .vb, .vbs, .js, .scr and .pif. Microsoft Office documents can also contain viruses, therefore it is always advisable to be careful before opening them and choose 'No' option, when asked by Word program if you want to run a macro (program script).
  • Once you finish internet bank session, log off (by clicking 'Logoff') and close the browser.

Check computer safety

To check if your computer is free of virus, you can use free internet virus scan programs:

Agreement of Electronic Services

When signing the agreement, you can:

  • choose the accounts you want to see on your internet bank. If you choose 'All accounts' option, without any additional amendment to the agreement, you will see also the accounts that will be opened in the future;
  • set profiles and transaction limits for your accounts (e.g. see account information, but restrict the possibility to make payments, set daily and monthly limits for transactions smaller than allowed by the bank, etc.);
  • entitle the other users to log in to your internet bank in their own name and by using their identification tools and set appropriate profiles and transaction limits for your accounts.

Business clients can assign different user's rights to their employees specifying the accounts allowed to be managed on internet bank and set appropriate profile for each account, individually. Further information about profiles applied to business clients is available here. Double acceptance – additional option for payments exceeding the client's set limit. Such payments require additional confirmation by the other user with the appropriate rights.

Business clients having the user rights administration right and using qualified electronic signature, can administer user rights in corporate internet bank as well. Information about the functionality and its possibilities is available here.

Transaction limits

Transaction limits for the client and account are set according to you and your business needs.

Client’s daily and monthly limits specify the total amount of funds to be transferred by all users from all the accounts of the client via all E-Channels over the respective period.

Daily and monthly transaction limits for an account could be set for every additional user individually and specifies the amount that a specific user can transfer from the specified account via the established Electronic channel during the respective period.

Transaction limits can be changed in internet bank (the maximum limit you can choose is EUR 10 000) or in a branch of Swedbank (make sure you have an ID card with you and have the right to represent the client, in case of company's representative, before arriving to the branch).

In corporate internet bank, transaction limits per account can be changed by the users with the appropriate user rights administration right.

'Notification Centre' service

By ordering the 'Notification Centre' service, you will receive information messages about the completed transactions and changes on your bank accounts. It is an excellent tool to control money flows. Business clients can also order this service for their employees.

Information about the charges for the 'Notification Centre' service is available here.

If you have subscribed to messages about transactions, you will be sent a message for transactions that occur on any of your accounts. These messages are purely informative; they are not meant to confirm (do not have probative force of) a transaction (including but not limited to a payment order) made on your account. Only information provided in an account statement about transactions made on the account has probative force.

Monitor your account balance

Monitor money movement on your personal and company's accounts on a regular basis. If you notice anything suspicious, immediately contact the bank by calling 1884 (for private clients) or 1633 (for business clients).

Shop in electronic shops safely

When shopping in electronic shops, be prudent with your personal and financial data. We recommend always following these safety tips:

  • Shop in reliable shops only. Buying goods and services at well-known Lithuanian and foreign online shops with good reputation is always safest shopping. Be more critical about unknown sellers, do research on their activities. Internet address of a trustworthy online shop starts with https:// and the beginning of the browser field is coloured green.
  • Be careful about discounts. You found a high-quality product for a very low price? Before making a payment, make sure that the company offering the product does exist and is trustworthy. Do not use links to discounts of online shops in advertisements placed on social networks.
  • Safe shopping by card. When shopping in foreign online shops, payment by card is the most frequent payment option. In such event you will have to enter your payment card details. Security of payments is certified by special logos, such as '3D Secure', 'Verified by Visa' and 'MasterCard SecureCode', which are used in online shops. If an online shop participates also in 3D Secure program, you may be redirected to internet bank and requested to confirm payment by logging in to internet bank. Information about the operation of Secure internet shopping program is available here.
  • Safe payment via electronic banking system. When shopping in Lithuanian online shops, usually you will be redirected to Swedbank internet bank account. You will recognise it from Swedbank logo and internet bank address: https://ib.swedbank.lt/banklink. It shows that payment is made directly via bank systems. Upon entering login details, ready-made payment form will automatically open on the website.
  • Paying agents. If online shop redirects you to paying agent's webpage, be careful and pay attention where you enter your internet bank login details. If you enter your internet bank account details on the website of the paying agent, not of the bank, these details become known to the third party. In some cases, the agent makes payment from your internet bank account. In such event, the Bank cannot guarantee data transfer safety or its protection.

If you have any suspicion that you encountered electronic fraudsters, inform us by calling 1884 (for private clients) or 1633 (for business clients).

You have doubts regarding the security? Notify us!

Contact us 24/7 via 1884 for private customers (+370 5 268 4444 - for calls from abroad) or 1633 for corporate customers (+370 5 268 4422 – for calls from abroad), if:

  • you have noticed suspicious operations on your account;
  • you suspect that third persons have received access to your Internet Bank;
  • you have faced fraudulent actions aimed at obtaining login data from you or misappropriate your funds.

Warning about emerging cases of fraud we announce on our knowledge platform and the Internet Bank login window. If you have noticed suspicious operations on your account, we can contact you personally. But you have to remember that bank employees contacting you by phone never ask to provide login data, passwords, PIN codes or other secret information. Bank employees may ask for certain login data only in cases, when you personally contact them via the phone numbers shown above and only for personal identification purposes.