We use the latest technology and security measures to protect your assets and be the best banking service partner possible.
We use multi-layer security measures to make you feel secure in using LHV services.
We abide by the following security principles
We have no reason to ask, by phone or e-mail, for your bank card number or CVC code, usernames, passwords or to enter your PIN codes. If you do receive such a request, the chances are it is fraudulent.
What can you do?
- If you are asked for your card number, passwords or codes by phone, end the call immediately and notify LHV.
- Even if the LHV number is shown as the caller’s number but the call seems suspicious, hang up and call us yourself using the number 6 800 400.
- If you suspect the call to be fraudulent, ask the caller to communicate in Estonian or ask exactly who they wish to talk to. As a rule, in the case of a fraudulent call, the caller does not actually know whose number they are currently calling.
When doing your banking on the Internet, be careful and attentive and do your utmost to recognise scams.
What can you do?
- LHV never forwards links to its homepage to its customers via SMS messages. If you have received a fake SMS message or a suspicious e-mail, let LHV know by writing to info@lhv.ee or security@lhv.ee.
- When logging into the internet bank, always make sure you are on LHV’s official banking channel: check that the address is correct, the links are functional, the page has the proper appearance and there is a green padlock symbol on the address bar. LHV internet bank's homepage address always starts with https://www.lhv.ee/ or https://api.lhv.eu/psd2...
- Remember that the Smart-ID and mobile-ID PIN2 codes are only used for signing agreements and confirming payments. LHV will never ask you for the PIN2 when you are entering the internet bank.
- Check whether you have set appropriate limits for the internet bank. Do not leave the limits too high, because you can always increase them when needed.
Visit the Estonian Banking Association information security page for additional advice on executing secure banking transactions.
We use encrypted data communications to guarantee more secure exchange of information between client and bank. We use TLS protocol version 1.2 or later in all our services.
We identify internet bank users through a unique username and strong customer authentication – an ID card, mobile-ID, smart ID or PIN calculator. You can log in to the internet bank using a user name and password, but the password cannot be used for signing transactions.
What can you do?
- Keep your username and password only to yourself. Remember that LHV will never ask you for your password or PIN codes by email or over the phone.
- When using mobile-ID and Smart-ID, always make sure that the control code displayed on your device matches the code shown in the internet bank or mobile app.
- Mobile-ID and Smart-ID PIN codes may be entered only into the corresponding app on your mobile phone. Never enter mobile-ID and smart-ID PIN codes on websites, such as in the internet bank!
- Always use the PIN1 code to log in to the internet bank. If you are asked for the PIN2 code for logging in, abort the login attempt and report the incident to LHV Bank.
- Enter PIN calculator codes only if you are using bank services. Never share these codes with anyone else.
The security of your assets and data is the most important thing for us. We kindly ask you to keep your data up to date so we can be a better banking service partner for you. This way we can ensure the security of your accounts, prevent malicious activity, report suspicious-seeming transactions and thereby protect you from financial losses. Banks are also bound by legislation related to prevention of money laundering and terrorism financing.
What can you do?
- Make sure your contact details are correct. Always update your information in the mobile bank and internet bank at least once a year. That gives us a possibility to contact you quickly if need be. For example, we may need to double-check data on a payment or make sure that you are the one who is using your bank card in a foreign country.
- Verify your e-mail address. We will send you an email asking you to confirm your email address. This way we can be sure that the email address belongs to you and you will always receive important information.
Read more
Read the Principles of Processing Customer Data.
If you notice a transfer on your account that you did not make, report it to LHV Bank immediately. This will prevent misuse of your account.
What can you do?
- If any suspicious transactions have been executed on your account, let us know about it immediately by calling LHV Pank customer service on 6 800 400 or by writing us an email at info@lhv.ee.
- Keep your contact details on the internet bank up to date so we can get in touch with you quickly if needed.
You can use the mobile app to set limits on transactions with your bank cards and configure other card functions.
What can you do?
- For convenient use of the app without logging in each time, configure your display screen auto-lock.
- Use the app to set limits on your cards. Keep limits low by default, which is the most secure. When you are making a larger purchase, you can go online and change the limit in the app without coming to a bank office.
- You can also set limits on contactless payments online, or disable contactless payments.
If our fraud prevention solution discover that your means of authentication might be misused, we will temporarily block its use to ensure the security of your bank account. You can continue to use other means of authentication and our bank services.
For example, if we temporarily block your PIN calculator due to suspicion of an intrusion, you can still log in and use bank services with Smart-ID.
What can you do?
- Never share your username or password with anyone else.
- Always use a unique password for bank services. Don’t use the same password in different services.
- Be careful and change your password regularly, e.g. every six months.
To send files to LHV Bank securely, we recommend encrypting them using DigiDoc4 software.
To do so, choose as the addressee “AS LHV Pank: Turvaline infoedastus” (AS LHV Pank: secure data transfer) and then encrypt the document. Read more.
We consider it important to educate LHV staff on the topic of information security. We administer regular training and keep our staff continually up to date with new cyber risks affecting their field of work.
We are devoted to offering our clients service that is as secure and trustworthy as possible. We are grateful for any information that helps us increase security even further. We have the utmost respect for the actions of ethical and conscientious security specialists as they help us to make our services even more secure.
If you have discovered a vulnerability or flaw in any of our services that should be patched to make the service more secure, let us know at security@lhv.ee. Add the website address where you found the vulnerability and describe briefly its nature.
If you decide to scan our services for security vulnerabilities, please do so in a manner that does not interfere with the functioning of our bank services. We appreciate it greatly if you notify us of such activities in advance at security@lhv.ee.
We engage in cooperation with ethical security specialists who abide by the principles of responsible disclosure and respect them highly for that.
Report a malicious site
If you have been sent a link on behalf of LHV that seems suspicious, please forward it to us.
Thank you!