Security at N26

Online banking and mobile banking require a high level of security. People want to know "Is N26 safe?" and "Is N26 legit?" This page helps address those questions.

Advantages of N26

Deposit protection

Every N26 bank account is guaranteed by the Compensation Scheme of German Banks up to €100.000.

Security procedures

Our three-tier security procedure protects your N26 bank account and all your transactions. Your account can only be paired to one smartphone at a time, you must log in to your account using your password or fingerprint, and you must verify all online and offline transactions with your PIN.

Realtime account notifications

You’ll receive instant push notifications after all account activity, so you always know where your money is going, and when. You don’t need to wait a few days to see a transaction or wait until the end of a billing period to see all your transactions.

Customized security settings

You can customize your N26 Mastercard permissions and restrictions. With a few taps, you can change:

  • Whether it can be used for payments abroad
  • Whether it can be used for online payments
  • Whether it can be used for withdrawing cash

If you’ve misplaced your card, or you want to restrict all your card’s functions, you can block and unblock the card with a simple tap. If you report that your Mastercard has been stolen, it will be blocked right away and we’ll send you a new one immediately.

N26 Bug Bounty Program

The N26 Bug Bounty Program offers cash rewards to encourage security researchers to inform us about bugs or vulnerabilities, so that we can fix them long before any damage is done.

N26 Bug Bounty Program

Tips for secure online banking

Phishing – be cautious about emails and fake internet sites

Phishing is when someone attempts to get your password or login credentials through deceptive emails, text messages or fake websites. For example, you might receive a link that redirects to a fake website, which then asks for sensitive personal information. The fake site often looks like a real bank or other well-known site. If someone gets your personal information, it can be used to log into the real site, like your bank account.

We recommend that you avoid clicking on links in emails or text messages that seem suspicious. Neither N26 nor any other reputable bank will ever ask you for your password, PIN (personal identification number) or TAN (transaction authentication number) by email or text message. If you’re ever in doubt, please contact customer support before you proceed.

We also recommend that you double check how you’ve typed a web address. Criminals often operate websites named for well-known sites, but with small typos. The sites often look like the originals, and are solely designed to capture your password, TAN, PIN, or other sensitive information.

It’s also important not to enter personal information on a website that starts with a normal http:// -address. Instead, always look for a secure https:// -address in your browser window. Secure sites also have a small lock symbol next to the site name in your browser. All N26 websites and web services use a secure connection, from our homepage to our online banking pages

Update your software

Keep your computer up to date with anti-virus programs and a firewall, which help prevent the installation of malicious programs (known as Malware or Trojans) on your computer. Such programs are designed to collect information and re-use it for potentially criminal purposes.

Pharming – an extension of Phishing

Classic phishing involves having you click on a link. This has been further developed into a method called pharming. Malicious software can change the settings on a computer in a way that can redirect web traffic to a fake site, even when you enter the correct website address. Criminals then collect sensitive information from the fake site. Protect your computer, as we’ve recommended, with up-to-date anti-virus software and by activating your firewall.

Don’t write down your password and PIN

A secure password should ideally contain capital and small letters, numbers and at least one “special character” (like !@#$%). It should also be at least 8 characters long. Please don’t store your password or PIN for N26 (or any other financial institution) directly on your computer. In case your computer was misplaced or fell into a hacker’s hands, your password could be compromised and reused.

Avoid Computers with public access

For security purposes, avoid using “public access” computers (like those in internet cafes, hostels or copy shops) for secure transactions. These computers are particularly susceptible to malware.

Private and public WiFi

Be sure that the WiFi you use for any bank connection is secured with “WPA 2” security. The former WEP (Wired Equivalent Privacy) standard is outdated and is no longer considered secure. Without using the newest standard, cyber criminals could intercept your internet connection and compromise your personal data. If you use public WiFi networks, there’s a higher risk that your online banking data could be compromised. Alternatively, you can use mobile banking without WiFi using your phone’s cell service.

Stay alert

Regularly check your account’s activity. Respond immediately if you notice any unusual account movements. If you still use a traditional bank, you can call customer service to block your account, or outside of business hours, call 116 116. Note that traditional banks often charge a fee to block your account.

With the N26 app, you can track your account’s movements in real time and receive a push notification for each transaction. You can block (or unblock) your account at any time, right in the app.

Tips for secure mobile banking

The term “mobile banking” includes bank transactions carried out via a mobile browser or using mobile apps. One in seven smartphone users in Germany has already activated banking services on their smartphone.

Mobile banking apps fall into two different categories. The first includes mobile apps specific to particular banks, such as the Sparkasse group or Deutsche Bank. In most of these, the mobile apps provided by the banks are lagging behind users’ expectations.

The second category consists of modern banking apps, which you can use to manage your bank account in real time. The disadvantage here is that you have to share the access details for your bank account with the app provider. Especially with a banking app that provides complete access to your bank account, you should make sure you read users’ reviews of the app before you start to use it.

The N26 mobile app combines the security of a German bank account with the very latest mobile banking functionality. As far as security is concerned, there are no major differences between the security requirements for mobile banking and those for online banking. Nevertheless, you should still take into account our additional recommendations so that you can access your mobile banking services securely.

Lock your screen

We recommend making your smartphone more secure by adding a lock code, pattern or fingerprint. This helps make your banking app more secure, especially if you lose your smartphone.

Update your mobile operating system

We recommend that you regularly update the software on your smartphone. Manufacturers frequently issue software updates to protect against new safety defects.

Update your mobile banking apps update

Make sure you download banking apps, and any other apps for that matter, only from the official manufacturers’ stores (such as the App Store or Play Store). Be suspicious of any new unfamiliar apps. They can contain malware and facilitate access to sensitive details.

Be careful with WiFi and Bluetooth

We recommend that you disable publicly accessible WiFi connections and your device’s Bluetooth function before you make a mobile connection to your bank. Even if you’re using a private WiFi network, you should check that it’s secured by the WPA2 system.

Protect your passwords, PINs and TANs

Never save any bank-related passwords, usernames, PINs or TANs on your smartphone. If your phone is lost or becomes infected with malware, this will increase your risk of falling prey to cyber criminals.

Questions? Check our Support Center

You can find even more answers in our Support Center.