General Security
With the Berenberg Desktop Security App we offer you the possibility to authenticate your logins and payments in the Berenberg Wealth Management Portal securely and quickly from your computer. To do this, we use state-of-the-art technology that meets the high security requirements of your assets.
Protect access to the Desktop Security App with a password or PIN of your choice.
Activation of the Berenberg Desktop Security App:
After entering your user name and the initial login password to the Berenberg Wealth Management Portal at my.berenberg.de, you will be asked to set up a new password by entering it twice.
You will then be prompted to register the Berenberg Desktop Security App. Open the Desktop App and select "Enter activation code". You will now be asked to enter your user name and activation code first. You will then receive an e-mail to verify your identity to the e-mail address you have provided us with. In the e-mail you will find a confirmation code generated for you. Please use this code for the final activation of the Berenberg Desktop Security App.
Authentication of the login procedure:
Once you have entered your username and password at my.berenberg.de, you will be asked to unlock access using your Berenberg Desktop Security App. Open the Desktop App and select your Berenberg ID. Now you can confirm your access or deny it.
Authentication of payments:
Enter your payment in the Berenberg Wealth Management Portal and then check the data you have maintained. You will now be asked to release the payment via the Berenberg Desktop Security App. To do this, open the app and select your corresponding Berenberg ID. The app will now display the basic data of the payment to be authorized. You can confirm or reject this.
Prerequisites for use: You are using a Windows operating software which is at least Windows 7 or newer.
As part of the EU Payment Services Directive PSD2 (2-FA) for online portals, Berenberg offers the two-factor authentications procedure.
Berenberg uses the most sophisticated security procedures. All transactions are being protected by a special security protocol which transmits any data at 2048-bit encryption. For this Berenberg uses the SSL encryption (Secure Socket Layer encoding) protocol as a security standard which is recognised all over the world.
You can establish that you have a secure internet connection in two places:
- if the address begins with "https", for example www.berenberg.de
- if you can see a closed yellow lock in the bottom status bar of your browser.
After calling the customer log-in always verify the correctness of the security certificate. When a safe internet connection has been established, this is shown in the lower right-hand corner of the status bar of your browser as a small yellow padlock. On double clicking, this symbol opens the dialogue window containing the properties and contents of the certificate.Next click the tab "General“ with Internet Explorer and the button "View" when using Netscape or Mozilla Firefox.You now obtain an overview of for whom and by whom the certificate has been issued and also of the expiry date. The following combinations are possible:
If the URL in your browser starts with www.berenberg.de ; GeoTrust Inc should show up as the valid issuer. The security certificate is valid up to 23.01.2020
The combination of a firewall and a virus scanner are useful tools which are employed for the protection of PC’s. You are strongly advised to regularly update your virus scanner in order to be able to detect also newer viruses.
Electronic fingerprinting lets you know for certain that you are truly connected to Berenberg. The code comprises several digits and letters and will be replaced once every year. For verifying please proceed as follows: For Internet Explorer: After calling the certificate, for the last entry under "Details" the thumbprint comprising several digits and letters must be identical to one of the following codes:
For https://www.berenberg.de:
SHA1-Fingerprint: 2b 6e f1 41 40 9b 88 34 22 85 fb 63 77 89 60 60 63 ae db 8bFor https://banking.berenberg.de
SHA1-Fingerprint: 25 10 15 47 4e 62 41 ac e7 02 bf fb ef 21 fc 91 7b 1a 2d 4fFor https://portal.berenberg.de
SHA1-Fingerprint: 36 ea 97 86 42 a8 23 e9 91 7c ef 95 2f dd 25 90 be 69 29 8fFor Netscape or Mozilla Firefox: After double clicking the padlock you get to the fingerprint via the button “View?. In the case that the fingerprint does not correspond to the one mentioned above you must under no circumstances use the programs in the secured area!
If the security of a computer is doubtful don’t use it. Programs may be installed in that computer which store or transfer your log-on data. In case you still would like to use PC’s other than your own, as for example in internet cafes, please make sure to observe the following points:
- never leave the PC unattended as long as you are logged on;
- end and exit the Online Banking session via the link "log off";
- be sure to erase the cache of the browser;
- close down the browser.
Berenberg never sends any e-mails, which require you to enter your log-in/security data. In no case should you ever divulge your log-in details to third parties! These e-mails frequently contain links, which lead to alleged Berenberg sites. Even the appearance of the alleged Berenberg sites can be identical to those of our known sites.Be sure never to call the log-in domain via links from e-mails, always only use the path known to you, i.e. www.berenberg.de - customer login.
When connecting to the internet, windows can open unexpectedly which contain "security warnings" and the like. These advertising messages are sent by unknown companies via the windows news service. These windows have nothing in common with Berenberg. Do not download any programs from these promotional sites, as they can contain viruses, Trojans or diallers. Diallers are programs which build a connection to the internet via expensive phone numbers.
On using radio keyboards data can be bugged effortless within a radius of approximately five metres. Often all that is needed is a keyboard receiver from the same manufacturer.
Using a wireless LAN (Local Area Network) is associated with risks. If you use a wireless connection with your PC or Notebook always have the latest security standards in place. As a matter of principle, data can be listened into by everyone with the right technology. The encrypting technologies of the wireless LAN are, to date, usually not sufficient to guarantee a secure data transfer.
Our server is located in one of the world’s largest IT centres. Access to the server room is controlled in multiple layers of security and requires a personal transponder card, PIN and palm scan. Once inside, accessing the server itself takes another PIN, since the server is in a locked cabinet.The operating system is pure server software. No unnecessary modules are installed, so they can offer no avenue of attack.Patch management is automated. All incoming patches are examined, and then installed either immediately or on the next business day.In order to ensure the highest security, we do not use a local firewall, but an external one. This firewall is restrictively configured and automatically leaves Ports 80 and 443 closed.
Security in online banking
When starting Berenberg Online Banking always ensure that you enter the following Internet address into your browser: http://www.berenberg.de.
The button "Login" then gets you to the overview of various Berenberg Online Offers. Now your browser creates a secure internet site (this site always starts with "https"); and the URL is: https://my.berenberg.de.
After calling the customer log-in always verify the correctness of the security certificate. When a safe internet connection has been established, this is shown in the lower right-hand corner of the status bar of your browser as a small yellow padlock. On double clicking, this symbol opens the dialogue window containing the properties and contents of the certificate.
Next click the tab "General“ with Internet Explorer and the button "View" when using Netscape or Mozilla Firefox.
You now obtain an overview of for whom and by whom the certificate has been issued and also of the expiry date. The following combinations are possible:
If the URL in your browser starts with https://www.berenberg.de GeoTrust Inc should show up as the valid issuer. The security certificate is valid up to 18.11.2021.
If the URL in your browser starts with https://my.berenberg.de COMODO should show up as the valid issuer. The security certificate is valid up to 21.01.2021.
If the URL in your browser starts with https://portal.berenberg.de GeoTrust should show up as the valid issuer. The security certificate is valid up to 12.05.2022.In the case that the security certificate does not correspond to the one mentioned above you must under no circumstances start Berenberg Online Banking or must interrupt the connection to Berenberg Online Banking immediately!
To increase security in online banking, we recommend the following:
If possible, do not log into Internet Banking via a computer you do not own or know (e.g. in an Internet café).
Make sure that you do not make your access data (customer ID, user ID and PIN) accessible to any other person.
Change your PIN regularly and do not use combinations such as dates of birth or number sequences. Do not use the same PIN for several online portals (e-mail account, other accounts).
Do not carry out any online transactions if you suspect that your PC is infected by a Trojan horse or a virus.
Clear your caches regularly.
Use individual agreements such as a personal transfer limit.
Install a good anti-virus programme.
Check your account transactions regularly.
Always use the 'Logout' button to exit the Online Banking application.
The password for accessing one of our online portals should meet standard security requirements. This means, for example, the use of upper and lower case letters as well as numbers and special characters.