Security guidelines and recommendations
Follow these principles in order to minimise the possibility of misuse of your finances.
Never share your personal security credentials with anyone, and always pay attention to where you enter them. When using Mike online banking on the web, only enter your login details on https://bezpecnost.csas.cz or https://george.csas.cz.
Always check in your browser’s address bar that your connection is secured with a valid certificate.
For mobile apps, only enter your details in official apps of Česká spořitelna. Download them exclusively from trusted stores such as Google Play, the App Store or AppGallery – and always check who the app developer is. You’ll find this information on the app’s download page in the official store. For Česká spořitelna apps, the developer will always be Česká spořitelna. Avoid downloading from unknown websites.
If you already have the George app installed, it’s easy to recognise. Each time you open it and log in, the welcome screen will display a greeting and your name.
You can find more information on how to recognise a genuine app on the Česká spořitelna website dedicated to the security.
Desktop apps should also be installed only from the official Windows Store or Mac App Store, or from installation packages provided by the manufacturer.
Regularly update your operating system and internet browser. Always use the original operating system, keep it updated and avoid modifications that allow full admin access such as rooting or jailbreaking. Do not buy or use devices that have been modified this way.
Install antivirus software on your computer and mobile device, and keep it up to date. Don’t disable the personal firewall that protects you when you go online.
Be cautious when using QR codes to download apps. Česká spořitelna also uses QR codes in its campaigns (for example, the George investment campaign). If you use QR codes, always make sure they come from a trusted source and lead to an official app store (Google Play, the App Store or AppGallery). Česká spořitelna apps are only ever available from these official stores. You can find more information on safe use of QR codes on the the Česká spořitelna website dedicated to the security.
Never log in or verify your identity with Bank IDentity on publicly accessible devices (such as computers in internet cafés), on devices you don’t know, or on devices that might allow someone else to access your online or electronic banking apps.
Always use trusted Wi-Fi networks or your mobile data connection. On open Wi-Fi networks, your communication may be intercepted and your personal security credentials redirected or misused.
- Your Bank IDentity password should be unique and different from your email or any other service password. You should also change it regularly.
To make your password strong, use at least 12 characters and include a mix of numbers, letters and special symbols (e.g. ! *).
Choose a PIN that’s easy for you to remember but hard for others to guess. Never share your PIN and change it regularly.
Ignore messages (SMS, emails, chat apps such as WhatsApp and others) received from unknown senders or with suspicious subject lines or content. Never open their attachments or click on any links they contain.
When browsing the internet, avoid links to suspicious or unknown servers (for example, those offering illegal software or adult content), as well as links found in suspicious messages.
Use spam protection in your email inbox. We also recommend using additional security tools such as anti-spyware and anti-adware.
Regularly review your most recent logins and verifications with your Bank IDentity.
After logging in to George on your computer, click the profile icon in the top right corner and select My Bank IDentity.
Under the Login and management history section, you’ll see a list of your most recent Bank ID logins.
- When using third-party services (such as initiating a payment order indirectly, receiving account information, or others), always check whose services you’re using and whether you really want to perform the intended action. You’ll find a list of third-party services you’re connected to in the Third-party management section of the My Bank IDentity app.
Always review the context and timing of your actions against the summary screen in the service you’re using.
Never confirm anything you’re not doing yourself, and never share your personal security credentials or authentication factors with third parties. Be just as careful when using Bank IDentity as a means of electronic identification. You can find a list of these uses of Bank ID in the My Bank IDentity app - https://bezpecnost.csas.cz/ssp.
When shopping online, be careful and always check who you’re buying from. Read reviews and pay attention to warnings from other users.
Check the terms and conditions for delivery times – some merchants may state delivery periods of up to 180 working days.
If you’re paying by card, consider whether you want the e-shop to remember your card details. For safer shopping – especially with unfamiliar e-shops or when buying from a merchant for the first time – use a one-time virtual card.
Follow the latest security updates on the Security and Data Protection page. Here we highlight current threats and explain different types of fraud and attacks.
If you suspect misuse of your online or mobile banking, please let us know. Call us directly through George or on our helpline 277 207 207 (from abroad dial +420 956 777 901), or email us at csas@csas.cz.
If you’ve received a suspicious message (SMS, email or chat message on apps such as WhatsApp and others) that appears to have been sent by Česká spořitelna, please forward it to us at podvody@csas.cz (previously phishing@csas.cz).