Being the pioneer in its sector by presenting Internet Banking for the first time in Turkey, security is considered as one of the most important issues of our Bank. We took a number of precautions against the operations beyond our control while we were creating our security infrastructure.
We secure your proceedings with Mobile Approval Code
If you do not use any of our advanced security tools, you are required to enter the 4- digit Mobile Approval Code that is sent to your mobile phone to complete particular transactions. We assure that you finalize your operations by entering One Time Mobile Approval Code correctly, sent to your private mobile phone via SMS.
We enable you to limit your transactions performed via our Internet Branch
You can choose the transactions to be performed via our Internet Branch, which means you can use the most appropriate option according to your security conception. In other words:
- You can choose to realize money transfer/EFT only to accounts that you had previously informed us. In this way you can prevent any involuntary transfer to other accounts. Whenever you desire, you can add any other Money transfer/EFT account via our Call Center and Branches.
- If you desire, you can only perform inquiry operations.
- If you desire, you can completely cancel Money transfer operations to 3rd parties.
- If you are certain of your personal information and your computer’s security, you can realize money transfer to unlimited accounts via our Internet Branch, without using any restrictions mentioned above.
You can update operation safety options on our Internet Branch or from our other Branches.
We let you control your transaction limit requiring money transfer
We ensure that you control your own limits for money transfer, EFT, donation, topping-up your mobile phone and chance games. As long as not exceeding our Bank limits, you may raise your limit in accordance with your needs or you may lower your limit to minimum level when you do not use these transactions.
We confirm your identity in money transfer
We require you to enter your Customer/Commercial PIN again for the operations which are subjected to money outflow to the third parties like EFT or Money Transfer. In this way money outflow from your account is under your control only.
We inform you via SMS upon completing your operation
If you use SMS Notification System, an SMS will be sent by our system automatically to inform you at the very moment the transaction is completed such as Money Transfer or EFT. You can realize the definitions for the SMS Warning System at Internet Branch.
We enable you to carry your Internet Branch key in your pocket
We enable you to increase your security level with Mobile Key and i-key; a private device generates One Time Password. Mobile Key and i-key, which you can even carry in your pocket, increases protection against malicious software such as key logger, screen logger and Trojan, by generating different passwords in each single time. Even if you have your personal information and 6-digit Customer/Commercial PIN are stolen unintentionally, in order to login, it is required the numbers generated randomly each single time by i-key. As a result you will have an extra protection by using Mobile Key and i-key in Internet Banking.
We protect you with a Security Circle
We present an extra protection to our customers using Internet Explorer web browser on Windows operating system through small software application called Security Circle, while entering their passwords and pins. Security Circle is a small scaled and freeware application helping to minimize key logger or Trojan attacks upon entering information into these fields. If you have not installed Security Circle program into your computer yet, and if you use Internet Explorer on the Windows operating system, you will receive a warning message on the Customer Number and Password inquiry field at the homepage of Internet Branch concerning that you have not installed the Security Circle yet and then you can easily install the software by clicking on the message.
Security Circle rather takes a tiny space in your hard disk and it does not affect the speed of your computer or your connection speed and it will not bother you by opening popup windows. Software is activated only when you want to log into Internet Branch and will reduce the risk of malicious users stealing your information entered into “password” and “PIN” fields to the minimum.
We control our virtual entrance very tightly
We utilize two-stage entrance system during the login to our Internet Branch. At the first stage, we require your customer number, given by our bank, and the password decided by you. If this information is entered correctly, the system passes to the second stage where the answers of personally defined questions and your Internet Banking Password are required. At the same time in this level, we show you a greeting message designated by you. By this way, you notice that you are on our Bank’s website, not on a fake site.
We inform you
If your personal information such as password, PIN and answers of the security questions are entered incorrectly once or twice, we show you a warning message on our Internet Branch home page, and we show detailed information about the incorrect answers, date and IP numbers of the computer of the incorrect accesses.
If your Customer/Commercial PIN is entered incorrectly 3 times in a row during your login, your Customer/Commercial PIN will be blocked automatically. We ask you to define a new Customer/Commercial PIN by contacting our Telephone Branch or using Instant PIN.
We enable you to determine if there is suspicious usage of your account by showing you your last login date and hour information.
We present ourselves
Against all kind of fake site risks, we confirm that you are really in our Bank’s web area by sending a greeting message, designated by you. Keep your greeting message secret as you keep your password, pin and other personal information. If you have not designated a greeting message, you will be required to create a greeting message when you login to our Internet Branch. You can change your greeting message on our Internet Branch.
We offer you to control the time
If you wish, we enable you to define login days and hours to our website and block logins the rest of the time. We offer our customers, especially who have limited internet connection in areas such as schools or offices, an automatic security shield for their times out of their offices. If you want to control the time, you can change these kinds of options from our Internet Branch.
We recognize your computer
If you are using a static IP, we prevent other login request from undefined IPs or IP ranges, except the ones you have defined. You can adjust this setting from Security menu.
We use virtual keyboard in PIN entrances
We provide a virtual keyboard during your login to our Internet Branch or in fields where a PIN is required in our Internet Branch. By this way, we protect your most important personal information, your password, against malicious software such as key-logger.
We receive your information from secure hall
While transmitting your personal information to our Bank, we are using an encryption system of international standards. Your encrypted information with 128 byte SSL technology is transmitted to our bank under the protection of this algorithm.
We use a secure log-in Our Internet Branch does not use a standard http log-in, but a secure https log-in. During your visit on https protocol, a padlock icon appears in your browser. By double clicking on this icon, you are supposed to see our Bank’s URL address www.isbank.com.tr in “issued to” field.
We update our technology
We always update our technology and support of our current utilized technology by the means of security patches. While your information is stored in the system using several firewalls, our system is scanned regularly against the latest viruses.
We are checking the time
In case you leave our Internet Branch open without having any operation for 10 minutes, we request your approval whether you would like to continue or not by a pop up window before ending your session.