Ensure that your connection is secure and check the certificate
Always enter the address for the online bank (www.op.fi) in your browser’s address bar personally whenever logging into the online bank. Do not click links in emails or SMSes. Do not log into the online bank from the results page of a search engine (such as Bing or Google).
Check the browser’s address bar to make sure that you are at the right address, and that the address is protected. Click on the padlock in the address bar to view the website’s digital certificate. Check the following information:
- The website's certificate has been issued to OP Financial Group (such as OP Osuuskunta).
- On the genuine OP website, the address in the address bar and certificate is www.op.fi or op.fi. In the OP Identity Provider Service, the address saml-idp.op.fi. See the bottom of this page for a full list of addresses for services provided by OP.
- The certificate is valid
- The issuer/publisher of the certificate is Symantec, Entrust or DigiCert
The example image is from a Google Chrome browser on desktop (to view the certificate’s details, click Certificate):
Please note that the padlock icon and its content may differ, depending on your browser.
See the list of supported browsers
OP eServices is protected with the HTTPS connection, which encrypts data sent across the network in such a way that no unauthorised party can see your confidential information. Supported browsers automatically use the TLS encryption that protects HTTPS traffic.
If you are using a smartphone or tablet, we recommend using the handy OP-mobile or OP Business mobile apps for your banking and insurance services.
Make sure that your user ID and password are secure
Your user IDs are personal. Never give or borrow them to anyone else. The bank will never call you to ask for your bank user ID.
OP eServices user IDs consist of the following elements:
- username
- password
- Mobile key
- key code list
- the phone number linked to your user ID to use for further confirmation
Transactions you perform with your user ID are confirmed as follows:
- Mobile key confirmation request in OP-mobile or OP Business mobile
- SMS for further confirmation
Please note that an SMS for further confirmation is not always sent. SMSes for further confirmation and Mobile key confirmation requests are always sent in real time when you are using your user ID. Check that the information in the SMS or confirmation request matches the transaction you are performing at the time. If the transaction requires further confirmation, you may also receive an SMS about this when using Mobile key.
If any of the information does not match, is wrong, or you are not using your user ID at the time, do not confirm the transaction.
OP’s SMSes requesting further confirmation will always be sent from number +358407118180 and they are signed by OP.
Learn more about confirming transactions with Mobile key
Set usage limits on your accounts and cards
Setting limits will help you to protect your funds if your card or user IDs fall into the wrong hands. You can set different limits on your accounts and cards on OP-mobile or op.fi, including how much money can be withdrawn from your account at a time or during 24 hours.