As part of the EU Payment Services Directive PSD2 (2-FA) for online portals, Berenberg offers the two-factor authentications procedure with Chip TAN.
Guide Online Banking Two-Factor Authentication (2-FA)

After calling the customer log-in always verify the correctness of the security certificate. When a safe internet connection has been established, this is shown in the lower right-hand corner of the status bar of your browser as a small yellow padlock. On double clicking, this symbol opens the dialogue window containing the properties and contents of the certificate.

Next click the tab "General“ with Internet Explorer and the button "View" when using Netscape or Mozilla Firefox.

You now obtain an overview of for whom and by whom the certificate has been issued and also of the expiry date. The following combinations are possible:

If the URL in your browser starts with https://www.berenberg.de  GeoTrust Inc should show up as the valid issuer. The security certificate is valid up to ‎23.01.2020

Berenberg uses the most sophisticated security procedures. All transactions are being protected by a special security protocol which transmits any data at 2048-bit encryption. For this Berenberg uses the SSL encryption (Secure Socket Layer encoding) protocol as a security standard which is recognised all over the world.

On using radio keyboards data can be bugged effortless within a radius of approximately five metres. Often all that is needed is a keyboard receiver from the same manufacturer. 

Electronic fingerprinting lets you know for certain that you are truly connected to Berenberg. The code comprises several digits and letters and will be replaced once every year. For verifying please proceed as follows:

For Internet Explorer: After calling the certificate, for the last entry under "Details" the thumbprint comprising several digits and letters must be identical to one of the following codes:

For https://www.berenberg.de:
SHA1-Fingerprint: ‎2b 6e f1 41 40 9b 88 34 22 85 fb 63 77 89 60 60 63 ae db 8b

For https://banking.berenberg.de
SHA1-Fingerprint: 25 10 15 47 4e 62 41 ac e7 02 bf fb ef 21 fc 91 7b 1a 2d 4f

For https://portal.berenberg.de
SHA1-Fingerprint: 36 ea 97 86 42 a8 23 e9 91 7c ef 95 2f dd 25 90 be 69 29 8f

For Netscape or Mozilla Firefox: After double clicking the padlock you get to the fingerprint via the button “View?.

In the case that the fingerprint does not correspond to the one mentioned above you must under no circumstances use the programs in the secured area!

The combination of a firewall and a virus scanner are useful tools which are employed for the protection of PC’s. You are strongly advised to regularly update your virus scanner in order to be able to detect also newer viruses.

If the security of a computer is doubtful don’t use it. Programs may be installed in that computer which store or transfer your log-on data. In case you still would like to use PC’s other than your own, as for example in internet cafes, please make sure to observe the following points:

  • never leave the PC unattended as long as you are logged on;
  • end and exit the Online Banking session via the link "log off";
  • be sure to erase the cache of the browser;
  • close down the browser.

Berenberg never sends any e-mails, which require you to enter your log-in/security data. In no case should you ever divulge your log-in details to third parties! These e-mails frequently contain links, which lead to alleged Berenberg sites. Even the appearance of the alleged Berenberg sites can be identical to those of our known sites.
Be sure never to call the log-in domain via links from e-mails, always only use the path known to you, i.e. www.berenberg.de - customer login.

When connecting to the internet, windows can open unexpectedly which contain "security warnings" and the like. These advertising messages are sent by unknown companies via the windows news service. These windows have nothing in common with Berenberg. Do not download any programs from these promotional sites, as they can contain viruses, Trojans or diallers. Diallers are programs which build a connection to the internet via expensive phone numbers.

You can establish that you have a secure internet connection in two places:

  • if the address begins with "https", for example https://www.berenberg.de
  • if you can see a closed yellow lock in the bottom status bar of your browser. 

Using a wireless LAN (Local Area Network) is associated with risks. If you use a wireless connection with your PC or Notebook always have the latest security standards in place. As a matter of principle, data can be listened into by everyone with the right technology. The encrypting technologies of the wireless LAN are, to date, usually not sufficient to guarantee a secure data transfer.

Our server is located in one of the world’s largest IT centres. Access to the server room is controlled in multiple layers of security and requires a personal transponder card, PIN and palm scan. Once inside, accessing the server itself takes another PIN, since the server is in a locked cabinet.
The operating system is pure server software. No unnecessary modules are installed, so they can offer no avenue of attack.
Patch management is automated. All incoming patches are examined, and then installed either immediately or on the next business day.
In order to ensure the highest security, we do not use a local firewall, but an external one. This firewall is restrictively configured and automatically leaves Ports 80 and 443 closed.

With the Berenberg Desktop Security App we offer you the possibility to authenticate your logins and payments in the Berenberg Wealth Management Portal securely and quickly from your computer. To do this, we use state-of-the-art technology that meets the high security requirements of your assets.

 

Protect access to the Desktop Security App with a password or PIN of your choice.

 

Activation of the Berenberg Desktop Security App:

After entering your user name and the initial login password to the Berenberg Wealth Management Portal at www.my.berenberg.de, you will be asked to set up a new password by entering it twice.

 

You will then be prompted to register the Berenberg Desktop Security App. Open the Desktop App and select "Enter activation code". You will now be asked to enter your user name and activation code first. You will then receive an e-mail to verify your identity to the e-mail address you have provided us with. In the e-mail you will find a confirmation code generated for you. Please use this code for the final activation of the Berenberg Desktop Security App.

 

 

Authentication of the login procedure:

Once you have entered your username and password at www.my.berenberg.de, you will be asked to unlock access using your Berenberg Desktop Security App. Open the Desktop App and select your Berenberg ID. Now you can confirm your access or deny it.

 

 

Authentication of payments:

Enter your payment in the Berenberg Wealth Management Portal and then check the data you have maintained. You will now be asked to release the payment via the Berenberg Desktop Security App. To do this, open the app and select your corresponding Berenberg ID. The app will now display the basic data of the payment to be authorized. You can confirm or reject this.

 

 

Prerequisites for use:

You are using a Windows operating software which is at least Windows 7 or newer.


App Download

When starting Berenberg Online Banking always ensure that you enter the following Internet address into your browser: http://www.berenberg.de.

The button "Customer Log-in" then gets you to the overview of various Berenberg Online Offers. Now your browser creates a secure internet site (this site always starts with "https"); and the URL is:
https://www.berenberg.de/kunden-login.html?L=1.

Via the button "Berenberg Online Banking (Payments)" you get to log-on. The secure URL of the log-on site is: https://banking.berenberg.de 

After calling the customer log-in always verify the correctness of the security certificate. When a safe internet connection has been established, this is shown in the lower right-hand corner of the status bar of your browser as a small yellow padlock. On double clicking, this symbol opens the dialogue window containing the properties and contents of the certificate.

Next click the tab "General“ with Internet Explorer and the button "View" when using Netscape or Mozilla Firefox.

You now obtain an overview of for whom and by whom the certificate has been issued and also of the expiry date. The following combinations are possible:

If the URL in your browser starts with https://www.berenberg.de  GeoTrust Inc should show up as the valid issuer. The security certificate is valid up to 12.03.2018. 

If the URL in your browser starts with https://banking.berenberg.de  TeleSec ServerPass should show up as the valid issuer. The security certificate is valid up to 29.06.2018.

If the URL in your browser starts with https://portal.berenberg.de  TeleSec ServerPass should show up as the valid issuer. The security certificate is valid up to 31.10.2019.

In the case that the security certificate does not correspond to the one mentioned above you must under no circumstances start Berenberg Online Banking or must interrupt the connection to Berenberg Online Banking immediately!