In case of any doubts as to the authenticity of the certificate, please check for the following:

• certificate issued for www.online.citibank.pl
• certificate issued by fgbrdc-cxix09-pa7050.eurdmz.dmzroot.net
• certificate valid from 12.11.2020 to 24.10.2021
• owner: Citigroup Inc.
• fingerprint (SHA1) cb11290b66fb52968d5604e59fa6f83866132007

If the information provided on the certificate varies from this stated above, please contact Citibank Online (technical support) on (+48 22) 692 24 84.

Make sure your anti-virus protection software and firewall are active.

If you spot any unusual or suspicious activity, immediately inform us of this fact (+48 22) 692 24 84.

Do not access electronic banking using unknown and improperly secured connections (e.g. public Wi-Fi networks).

The “Confirm Transaction” service is based on a two-way communication with the Bank and is designed to monitor your transactions to detect any unauthorized use. The service is available to all Citi Handlowy customers. The service users will be immediately informed of any transactions identified as suspicious.

In reply to our SMS:

• enter 1 to confirm the transaction;
• enter 2 to question the transaction.

SMS will be sent from +48 607 521 371 and we will ask you for no additional information to be provided other than "1" or "2". By replying to our SMS you can confirm whether the transaction we are asking you about was made by you. The cost of the return SMS according to the rates of your phone operator.

In order to use the "Confirm the transaction" service, please make sure we have your up-to-date contact details. You can verify your contact details after you have logged on to Citibank Online.

When making a transaction such as a transfer to a new payee, or card linkage to an eligible currency account, you receive a text message. The message contains, i.a. the title of the operation, the date and time of the operation, and a 6-digit verification code which the customer should use to confirm the transaction. For Citibank Online transactions, the password should be entered in a separate pop-up window.

Before you confirm the transaction, please make sure that it was ordered by you and check the transaction details.

For selected operations, the text message also contains four last digits of the number of the bank account to which a transfer is to be made. In such a case, they should be verified against the last digits of the account in Citibank Online or Citi Mobile and, above all, against the original number of the bank account (specified on an invoice or another document).

For security reasons, each one-time password has a limited validity in order to prevent any unauthorized use.

3D Secure

3D secure is an additional security used by VISA and MasterCard in the case of payments made with payment cards online.

When paying with your card online at merchants which support the 3D Secure service, you receive from the Bank a free text message containing an 8-digit code. The transaction may be executed only when you enter the 8-digit code received in the message.

Each 3D Secure code has short validity to prevent any unauthorized use.

“Citi” instead of a number in the header of selected text messages from Citi Handlowy

All Citi Alert and one-time password text messages sent to clients have “Citi” in the message header instead of the number. The change aims at making it easier for our clients to identify the text messages sent by Citi Handlowy.

Please remember that we will never ask you in a text message to:

• provide your login credentials, including your password;
• provide any of your sensitive data, e.g. your PESEL number, your mother’s maiden name or date of birth;
• install an additional software, including antivirus one;
• install any safety certificates.

In order to provide you with the best customer experience, we sometimes send emails or SMS messages with links to our offers. To find out whether an email or SMS you received is from Citi Handlowy, click here.

For enhanced safety reasons, please always read the text messages carefully and make sure their content complies with your transaction order details, including in particular the payee’s account number and transaction amount.

Automatic Session Timeout

As a security measure, your online banking session will automatically "time out" after 8 minutes of inactivity. This security feature is intended to prevent third parties from unauthorized access to your accounts.

Daily Payment Limits

Daily sum of transaction made in Citibank Online cannot exceed the limit set by the account holder.

Personal Data Change SMS

For safety reasons, any change in your personal data, such as postal address, e-mail address, mobile phone number, date of birth, or your mother’s maiden name, will be confirmed via SMS or e-mail. This communication will also warn you in case someone else would have tried to make changes in your personal data. We would like to remind you that you can also update your e-mail address and postal address via Citibank Online.

Your Activity Monitoring for Enhanced Security

For enhanced security of your transactions and funds deposited with us, all your account activities are monitored. Therefore, sometimes your transaction may be denied or delayed, of which you will be immediately informed.

Please note that on that occasion we will never ask you to provide any additional one time password or install an additional application, or we will never send you a link, asking you to use it to log on to our transactional platform.