Holvi processes all personal data in line with the General Data Protection Regulation 2016/679 (“GDPR”). This means all personal data is processed legally, fairly, and transparently. Only necessary and relevant personal data is processed – always with the purpose of providing the best possible service for current and future customers.
Regulation and licensing
Holvi Payment Services Ltd is regulated and licensed to operate across the EEA as an Authorised Payment Institution by the:
- Financial Supervisory Authority of Finland (FIN-FSA)
- German Financial Supervisory Authority (BaFin)
- Federal Ministry of Finance Bundesministerium der Finanzen (BMF)
Your money is safe and sound
Holvi safeguards customer funds in accordance with the Payment Services Directive (PSD2). In the unlikely event of Holvi’s insolvency, customer funds would remain unaffected.
With our push notifications, you’ll be notified about all card activities. If you notice a card payment that you haven’t made, you can react immediately and block your card using the Holvi app.
Total card control
With Holvi you have full control. Lock and unlock your card whenever necessary, using your Holvi app. That way you can react quickly in case you lose your card or it gets stolen.
Account security is our top priority.
Customer data security
All data is encrypted during transit and when at rest on our cloud infrastructure. Encryption is done using industry-standard encryption algorithms.
3D Secure 2
Holvi uses 3D Secure 2 (3DS2) as an additional authentication step to verify online payments. 3DS2 uses biometrics to confirm your identity directly in the Holvi app.
Holvi user authentication
A user can only access the Holvi application after proper token-based authentication is completed. The Holvi application and user activities are tracked and logged in dedicated databases.
Secure cloud infrastructure
All mission-critical systems are hosted on modern and secure cloud technologies. This technology allows us to set up multi-layer defences and increases the audibility of all actions and changes.
Independent security team
Our security team works on maintaining Holvi’s security daily. Additionally, Holvi uses a bug bounty program for external application security testing. This global research community further helps to protect the application.
Holvi account supports Multi-Factor Authentication (MFA). MFA uses a combination of passwords, codes, and biometrics (e.g. fingerprint) to verify transactions.
24/7 information monitoring
The Holvi infrastructure is monitored 24/7. We also use automated alerts that allow us to act quickly on any potential issue.
What you can do for extra security
Why does Holvi sometimes have to block accounts?
We’re subject to strict regulations that may require us to take action due to security reasons.
How Holvi keeps your account safe – And how you can help
In this article, we share what you can do as a user to ensure extra security for your account.