New security demands for online shopping

From the 1st of January 2021 we have new security demands when you pay online and in mobile apps (strong customer authentication).
Now, you need to have BankID or our code-app to be able to shop online. Online shops and apps that are not set up for the new rules may be declined.


What does this mean for you?
  • You need to identify yourself using your BankID or the code-app when you shop online or in mobile apps. 
  • You can no longer identify yourself using a text message service when shopping online. This solution does not satisfy the new regulations, and the option will no longer be available from 10 January 2021.
  • If the online shop, app or vending machine you are purchasing from do not adhere to the new regulations, your payment may be declined.
Closeup young man hands holding credit card and using cell, smart phone for online shopping or reporting lost card, fraudulent transaction

Don’t have a Norwegian national
identity number or BankID?

We have a solution for you! Bring your valid identification and your D-number to us. We can set you up with the code-app without a BankID, so that you can use this when shopping online.

Get started with the code-app

The code-app is the easiest and fastest way to identify yourself when shopping online. When using the code-app you will automatically receive a notification on your phone, which you can easily approve with your finger or face-ID. Then you are done – without having to remember a single code or password!

Why new security demands?

The new regulations are being implemented to reduce the risk of fraud. We as a bank need to make sure that the person using the card to pay is the owner of the card. The requirements are part of the EU’s new revised directive on payment services (PSD2).

What is strong customer authentication?

When you pay with a card online, we as a bank need to know that the person using the card is also the person that owns the card. For this reason, you need to confirm your identity in a secure manner. This is done through strong customer authentication.

Strong customer authentication means that we use several independent criteria to identify you. For example, BankID uses your personal identity number or D-number + single-use security code + personal password.

From 1 January 2021, we are required to decline payments to European online shopping sites that do not adhere to the requirements for strong customer authentication.


Terms and conditions (in Norwegian)