How to stay safe online

Do not click on links in suspicious emails. Access Internet banking directly on the Bank’s website. Never use links from emails or from other websites because they are probably unreliable. Visit known web pages by entering the URL directly into the browser.

If the online banking service interface seems unusual, contains grammatical errors or strange characters (instead of diacritics), stop your work and contact the customer support.

You are right. Be careful with emails from companies and persons asking for your personal data or their update/confirmation. Do not call the numbers listed in suspicious emails. Furthermore, do not give your personal data over the phone, if you are not sure the phone call is legal.
Banks regularly contact their clients via email or phone, but a bank will never ask for:

• data for accessing services or transaction authorization,
• data on your transaction account (account number, limit, balance etc.),
• PIN for authentication of the card user and authorization of payment transactions,
• effecting transactions or entry of data in relation to transaction accounts and payment cards via applications which are not official applications of the Bank,
• re-authentication / authorization necessary to continue using blocked services.
  

Do business with known and trusted companies that have a good reputation. Business websites (e.g. online stores) must always have a privacy policy explicitly stating that personal data will not be disclosed to third parties.
Do not use mobile banking on devices whose safety features have been modified to enable access to privileged processes (so-called rooted or jailbroken devices).

Check if the web address entered in your Internet browser begins with https:// instead of the usual http:// since this means the traffic is encrypted. Furthermore, double-click the lock icon   on the status bar or the address bar in the browser to display the digital certificate for a website. Make sure that the digital certificate was issued by a globally accepted certifier. The name on the digital certificate under Issued for should match the name of the website which you are currently visiting. If you suspect that a website is not the one it should be, leave the website immediately, report it and do not follow the instructions it contains.