Frequently asked questions

You will find all the important information related to the world of banking identity and BankID services on this page

Concepts of the world of banking identity

What is banking identity?

Banking identity is a digital verification of a user's identity that is simple, secure, free and works from anywhere. Clients of some banks can use this method, as well as to log in to their online banking, to log in to state authorities (NIA service) and newly also to private companies (BankID service) – thanks to this solution, they can verify themselves and communicate online (and soon also sign contracts or applications). Everyone with online banking already has their own banking identity.

What is BankID?

BankID is a banking identity for private companies and their clients. It is provided by Bankovní identita, a. s., whose shareholders are ten largest banks operating on the Czech market.

What is the difference between banking identity and BankID and NIA?
  • A banking identity is the name of a method—specifically, digital authentication of a user's identity.

  • BankID is the use of banking identity for the private sector – e.g. electricity and gas providers, mobile operators, insurance companies, etc. can integrate it into their systems.

  • NIA (National Identity Authority) is the use of banking identity for the state sector (so-called eGovernment services) – citizens can use it, for example, to log in to the Citizen's Portal.

  • E-identity is an electronic identity in general that serves to uniquely identify a person in the online world.

What is the difference between BankID and electronic ID card?

The eObčanka reader is required to use the electronic ID card and is usable only within the online services of the state. With a banking identity, you only need access to online banking (username and password, fingerprint, electronic key, SMS code, etc.) to verify your identity (including access to online offices).

Banking identity security

Is it save to use a bank identity?

Yes, the use of banking identity is very secure, as it is provided by the banks themselves. The operation of these systems is highly regulated at national and also European level and under constant supervision. Private companies (when using BankID) will never see the user's password or other credentials. So you don't have to worry that if they are hacked, your password to log in to the bank could be stolen. As part of the login, the user provides data to a third party (company) based on his verified consent to the bank. The verification itself takes place in the user's bank environment (e.g. mobile key, password entry, etc.). In addition, the user himself decides which personal data he wants to share and to which he does not provide access and can withdraw these consents at any time.

What is the level of guarantee of the banking identity?

The European eIDAS Regulation recognizes 3 levels of assurance (trust) of means of identification, namely low, substantial and high. Simply put, these are the levels of how much a service provider can trust a way to verify identity. A banking identity has a significant level of guarantee – it is a so-called 2-factor authentication (name, password and authorization are entered via SMS code or biometric data, fingerprint, etc.).

Will the user know somewhere to which entities he has provided his banking identity?

All such information is available to the client in the online banking of his bank. There he clearly sees which third parties he has provided with his banking identity and to what extent.

Can I revoke my consent to share my personal data?

Yes, the client can revoke their consent to sharing at any time and thus cancel the data sharing.

Will the use of BankID not result in leakage of the client's personal data?

The transfer of personal data is technically very similar to sending money from a bank to a company's account. You log in to the banking environment and instruct the bank to send your personal data to the company, exactly and only those that you confirm. The bank does not see for what purpose it is doing this, and the company never gets to the account. They are separate systems.

Why should a bank hve an access to, for example, drivers' personal cards and other systems?

Similar to the previous question. Banks do not have access to any such information, they only verify the identity of the person.

My BankID or bank identity does not work, what should I do?

Please contact your bank.

I suspect misuse of BankID or bank identity, what should I do?

Please contact your bank immediately, as well as, for example, if you lose your payment card.

Using BankID Services

Who pays for the service and how much?

Citizens have the use of BankID completely free of charge. Companies pay for the use of BankID services according to the scope (for details, see the Price List of Services), specifically, companies can use identity verification, electronic signature (we are going to), login or combine services.

What are the advantages of BankID for me as a citizen?

Thanks to BankID, you can communicate with private companies (e.g. gas, electricity suppliers, telephone operators, insurance companies, etc.). You can verify yourself, you will automatically pre-fill forms on their website or applications, you do not have to remember a lot of passwords, just those for your online banking. There is also going to be the possibility of signing documents electronically.
It is a free and secure service that will save you time and, moreover, you can handle everything from anywhere.

What are the advantages of BankID for companies?

The main advantages are the possibility of identifying current and potential customers and regular updating of data. They have constantly updated data about their clients and at the same time, thanks to the simplicity and speed of verification, they can easily sign a contract with a new customer. They don't have to print anything, archive anything, store papers, solve everything digitally. BankID is a unique service and thanks to its connection, companies get a contactless identification process for 95% of all banking clients from the 10 largest banks on the Czech market.

The level of security of personal data is very high, banks invest tens of millions of crowns in security. Ensuring this level of security would be very costly and mostly unrealistic for private companies. In the overall view, using BankID will save them a lot of money and, above all, speed up business processes. More details in this section.

How can I get a BankID?

You have a BankID automatically if you have online banking with one of the participating banks. There is no need to reinstall anything, remember additional logins, etc. Only in some cases is it necessary to activate your banking identity, e.g. if the account was set up by a CZK payment. In these cases, please contact your bank directly.

How does a BankID authentication work?

It's very easy. You choose to log in with BankID on the website of the company that uses BankID. You will then be redirected to your bank's website, where you will only agree to transfer the data to this company. You'll then be redirected back to your business's website, where you'll already be verified. Only you and your bank can see the login information, the company itself does not see it and does not have access to it.

I am a company and I want to offer my customers the BankID service, what does this mean for me?

It's nothing complicated – you can find out how to get it in this section. You will also find all the other details there. If necessary, do not hesitate to write us an e-mail and we can discuss everything.

What exactly is the BankID security for companies?

Businesses get with BankID user login and authentication (their identities) that is comparable in security to banks. In addition, businesses can choose the level of encryption themselves. For example, banks require stronger security mechanisms than, say, smaller e-shops. In addition, companies using BankID do not have to deal with their customers' login data at all.

If I, as a business, pay for BankID services, will my customers' data be up to date?

For those who use a banking identity, yes. Data refresh is a part of the BankID functions, thanks to which there is no need to worry about the data becoming outdated. Plus, it's all done without the need to share passwords and credentials.

BankID SIGN service

What is BankID SIGN service?

It is a guaranteed signature of a contract or document in PDF format. The service is designed for businesses that need to verify the identity of the signer when signing in an online environment. In the case of such a signature, it is possible to retrospectively prove the identity of the person who signed the document.

How does digital signing work?

The company displays the document to the user to sign. The user checks the document and clicks 'sign with BankID SIGN'. He chooses the bank through which he wants to sign and makes an identification – that is, confirms his identity. In the next step, the user confirms their consent to the signature of the document, BankID adds the user's digital signature to the document, and it's done. This whole process takes a few seconds. From the customer's point of view, the use of BankID SIGN is similar to confirming payments in electronic banking.

Where can I, as a user (private person), use BankID SIGN?

The service is intended for companies, citizens/users can encounter it, for example, when negotiating a new product. Anyone with a banking identity can take advantage of the option to sign a document via BankID SIGN. Users do not need to request a digital signature, and e-signing is free of charge.

Signature via BankID SIGN must be enabled by the counterparty – the company that uses The BankID services.

What is the condition for using bankID SIGN for businesses?

The BankID SIGN service can be used by all companies that have the BankID service up and running. All you have to do is activate it in the Developer Portal. To use the service, the company needs a technical solution that can provide all the steps needed to electronically sign the document. This solution can be owned by the company or from its vendor a signature solution that Bank ID supports.

What are the main benefits of BankID SIGN for businesses?

The main advantages include saving time. While in the manual way of acquiring customers, the client must come in person to the branch and then read and sign the forms, which on average takes half an hour, digitally with the help of BankID SIGN the time is reduced to about 5 minutes. Other advantages are security and simplicity, speed of implementation, proven method, greater number of clients and higher success rate in acquiring clients.

What is the difference between a guaranteed and a qualified signature?

An advanced electronic signature is uniquely connected to the signatory and allows you to demonstrably associate the signer with the signed document.

A qualified electronic signature is also uniquely associated with the signatory and allows you to demonstrably associate the signer with the signed document, but it must be created by a qualified electronic signature creation device such as smart cards or USB tokens. It is an electronic signature with the highest degree of trust that is required for signing in a relationship with the government. In most private law cases, a guaranteed electronic signature such as that provided by BankID SIGN is sufficient.

What is the difference between BankID and BankID SIGN?

BankID is used to unequivocally prove the identity of a person in the online space. BankID SIGN is a service providing an advanced electronic signature of a person who has proven himself using a banking identity. In other words, companies can verify the identity of their clients thanks to the BankID service and sign a contract or other document with clients thanks to BankID SIGN.

Other questions

I have an account with several banks, will I have to choose one identity?

No, you can freely log in with any identity. It is up to you which bank you choose in a particular case. In practice, it looks like that for a company that uses BankID, you click on "BankID" when you log in and there you choose which of your banking identities to log in.

What if I don't want to use a banking identity?

If you choose not to share your personal information, the data will not leave your bank. They are not stored by the BankID operator itself and their transmission and security are ensured by state-of-the-art of the OpenID Connect protocol. In addition, everything is reinforced with encryption designed for the financial sector (FAPI). Several independent security audits of BankID systems are planned to test the security of the system beyond the current tests.

Is there any experience with service abroad?

Similar projects, based on cooperation between banks and the state, have been successfully facilitating the day-to-day activities of people in different countries for several years, such as Norway, Denmark, Sweden, Belgium, Canada, India, the UAE or New Zealand. Banking identity is a working and proven concept there. In Norway, for example, 90% of active residents use electronic identification and signing via banking identity.

Is it true that when using a banking identity, a data box is set up for the user?

This information is misleading. An amendment to the Act on Electronic Acts is currently being prepared, which should come into force on 1 January 2022. According to this regulation, the state automatically establishes a data box when the user uses any means of electronic identification within the National Identity Authority (NIA), i.e. vis-à-vis the state. However, if the user uses a banking identity outside the NIA system, i.e. if he uses the services of Banking Identity, a. s., the data box will not be automatically set up for him.

Why does not banking identity work for a long time already, when in many foreign countries it does?

Countries approach digitalisation in different ways, depending on a number of factors, such as the level of digitalisation of banking, the approach of the state, the relationship of the population to innovation, etc. The Scandinavian countries are the furthest away, for example, in Norway, 98% of adults aged 20 to 54 use banking identity after many years of development, with an average of 184× per year. They started in Belgium only a few years ago and already bankID is actively used by over 30% of the population and more than 150 companies.

On the other hand, other countries are still waiting for the widespread use of banking identity, if they go this way – for example, Slovakia. The time of a breakthrough in online identity verification in the Czech Republic has now come, and a big thanks goes to the Czech Banking Association and individual banks. It is important for us that the banks have come together and decided to contribute to the digitalisation of the country and help develop the level of service to citizens.

If a person has one login to a number of services, is there not a risk of its theft much more than if he uses a number of different names and passwords?

The user uses BankID to a secure login to online banking, so if he follows the basic security rules, the risk is really minimal. Such passwords should be as complicated as possible (composed of uppercase and lowercase letters, numbers and special characters) and should be changed at least 1× a year. It is necessary to enter online banking from your computer or phone and avoid publicly used wifi, watch your bank's domain and do not click on suspicious and unknown applications. We also recommend that you watch out for suspicious e-mails and prompts written in bad Czech. It is also important to regularly update the operating system and browser and use antivirus. In case of suspicion, you need to contact your bank immediately. In addition, the transfer of data between banks and Bankovní identita, a. s. works in the same way as entering a payment order, which is nowadays a completely common operation. The client notifies the bank to send personal data to the company, and the bank subsequently authorizes his order. At the same time, it also authorizes that the handover will be through BankID. Bankovní identita, a. s., but will not hold any personal data of clients.

How is it possible to identify EU citizens if they do not have an electronically readable document?

Unfortunately, foreigners who do not have an electronically readable personal document cannot now use a banking identity because they cannot be registered in the NIA (National Identity Authority), which serves for identification and eGoverment services, i.e. towards state services. The Ministry of the Interior is dealing with the solution of the situation.

Is banking identity a national solution or is it part of a European or global standard such as SEPA or SWIFT?

It is a solution available for anyone who has an account in one of the Czech banks that have joined the banking identity service. The vision for the future is European interconnection, but for now we are focusing primarily on the digitization of the Czech Republic.

Where can banking identity be used?

For state services, such as driver point status, filing a tax return, retirement account status, etc.
Since June also for private companies thanks to BankID.
The list is accessible on the www.bankid.cz/en/for-companies and will be constantly expanded and updated.
Companies are working intensively on the introduction of a banking identity and adapting their digital services accordingly. Therefore, the full deployment of banking identity will take a few years.