Safe and sound with Santander online
We're completely committed to protecting you when you use this website.
Online and Mobile Banking commitment
Be assured that your money is safe when you bank online.
There is protection provided by the Payment Services Regulations 2017. In the unlikely event funds are taken from your account as a result of fraud, we'll refund you and restore your account to the state it would have been in had the unauthorised payment transaction not taken place.
There are some circumstances in which this protection is not available. For example, if you've acted fraudulently, or you haven’t taken reasonable steps to keep your information safe.
Protecting you with technology
The information on our website is split into 2 area types: 'freely accessible' areas and 'secure' areas. We don't mind who visits the freely accessible areas and we don't check on who does. None of your personal information is kept there, just general information about our products and services that anyone can have access to.
As you may know, internet security technology is very good these days. In line with the industry standard, we're using two-factor authentication to check it's you when logging on and using Online Banking. Any information sent between you and Santander when using the Santander online service uses strong industry-standard security technology.
Your security details
The secure areas are where we keep personal information, which is why you have to enter a Passcode/Password and Security Number before we can give you access. For example, you'll use the secure areas of our site when you access your accounts online or apply online for an account.
You can identify secure areas by looking at the address at the top of your browser. A secure area's web address will begin https:// rather than the usual http:// and you can also tell this by the padlock symbol that's found next to the web address in some browsers.
On top of this, any information you submit online is protected by data encryption. Your browser scrambles the information, which is later unscrambled when it gets to us. It cannot be read along the way.
You may come across the term 128-bit SSL (Secure Socket Layer) technology. This is the way the data is scrambled and unscrambled again at each end. The latest browsers have this built-in, and it is automatically enabled unless you turn it off.
To prevent problems viewing secure sites like ours, it's always a good idea to have the latest version of your browser installed. For more help, contact us to speak to our technical support line.
Changing your security details
When you access your account online for the first time, we ask you to change your allocated Security Number to a more memorable number.
You can change your Passcode/Password and Registration/Security Number at any time by logging on to Online Banking, clicking 'My details & settings' and choosing an option from the 'Change security settings' page.
When changing your Passcode/Password, use longer words or phrases to make it strong and unique, and you should include numbers to make it even more secure. Bear in mind that you should never use the same Passcode/Password more than once.
To be more precise you must choose:
- a personal Passcode/Password made up of letters and digits only. It must be between 8 and 16 characters long
- a Registration/Security Number exactly 5 digits long.
Make your security details harder to guess
- Don’t choose a code that includes repeated characters, e.g. 1111aaaa.
- Don’t include sequential characters, e.g. 23456789.
- Make your Personal ID and Passcode/Password different.
If someone finds out your codes
If you think someone may know your security codes, you should change them immediately. Please visit our Online Banking guide to learn how to change your Security Number.
Alternatively, you can contact us
Our website's secure areas
We only request and display personal information about you and your accounts and dealings from secure areas of our site.
The same security measures, including data encryption and passwords, apply to all our online application and transactional processes. In addition, these services are protected by firewalls. This technology monitors and prevents any unauthorised access to our computer systems (where personal data is kept), which means unauthorised people cannot access account and personal details.
Our golden rules for safe Online Banking
To help you keep your Online Banking activity more secure, we recommend you follow some sensible rules.
Your security details
Keep your Passcode and Security Number safe at all times, and avoid writing them down.
Never tell anyone what they are, even if you share a joint account with them. Don't even tell a Santander employee. While we might ask you to confirm certain characters from your Passcode to identify yourself when you contact us, we’ll never ask you to tell us the entire thing.
Your home computer or device
- Try to keep your computer or device secure using anti-virus software and firewalls. You may want to research and compare anti-virus software packages from leading and reputable brands (such as McAfee and Norton) to make sure you get one that's right for you.
- Install the latest security updates to your system software as they become available. By keeping them up to date, you’ll have the latest protection for the most recently found viruses.
- Always access the Santander Online Banking service by typing in the exact address (santander.co.uk/logon).
- We also recommend downloading Trusteer Rapport. Rapport works alongside your existing anti-virus and firewall software to give you the more protection, even if your computer has a virus.
- Avoid sending your account or personal details by email because there’s a risk it could be intercepted on the way.
- Don't reply to, or use links within emails asking for your personal Passcode or Security Number. Nobody needs to know them except you, not even us.
- Be wary of ‘spam’ emails, especially those offering you the chance to make money and those pressuring you to take urgent action or to reset passwords or security details. Spam emails are, at best, a nuisance (the electronic equivalent of junk mail) and at worst, sent by unscrupulous people trying to defraud you.
Here are some simple ways to check if an email is genuine or not.
- Is it from a person or company you recognise?
- When you hover over the sender's name or button, does the embedded link match the company? On a mobile device you'll need to hold down and a pop-up will show you the link.
- Is the company's name spelt correctly, and does the email have poor spelling, grammar, or layout?
- Is there a sense of urgency or pressure for you to act with time-sensitive deals?
Using other computers or devices
- When you access your accounts or apply online be extra vigilant and be aware of who can see your screen.
- Never leave the computer or device alone while you are logged on to Online Banking.
- If you use a computer in an internet cafe or use a public Wi-Fi (wireless) internet connection, always make sure you log off successfully when you have finished and close down your internet browser once you've logged off. Simply disconnecting from the internet itself isn't enough. Learn more about how to avoid the risks when using a public computer
- Never save a password on a shared computer.
- Online Banking customers are recommended to use programs to wipe their hard drives before they sell or give away their computer or device.
- If you get an email that claims to be from us asking you to click a link or provide personal information about your account, don't click on it or offer any details. Please forward these emails to firstname.lastname@example.org and run a virus scan on your machine.
- Check your statement regularly. If you spot anything unusual, please get in touch
- If you have any problems, our team is here to help. Please contact us for more information. Or you can visit your nearest branch
If you've been inactive in Online Banking for 5 minutes, we'll automatically log you off for your protection.