at Holvi

It is our mission to ease the distractions of financial admin – AND eliminate all concerns regarding accounts and money security.

Our security measures

Did you know… Holvi means ‘vault’ in Finnish? And we mean it. Holvi has implemented various technical and organizational measures to keep your money, account, and business information safe.

Read more about Holvi’s security measures below:


Customer privacy

Holvi processes all personal data in line with the General Data Protection Regulation 2016/679 (“GDPR”). This means all personal data is processed legally, fairly, and transparently. Only necessary and relevant personal data is processed – always with the purpose of providing the best possible service for current and future customers.


Regulation and licensing

Holvi Payment Services Ltd is regulated and licensed to operate across the EEA as an Authorised Payment Institution by the:

  • Financial Supervisory Authority of Finland (FIN-FSA)
  • German Financial Supervisory Authority (BaFin)
  • Federal Ministry of Finance Bundesministerium der Finanzen (BMF)

Your money is safe and sound

Holvi safeguards customer funds in accordance with the Payment Services Directive (PSD2). In the unlikely event of Holvi’s insolvency, customer funds would remain unaffected. 


Security notifications

With our push notifications, you’ll be notified about all card activities. If you notice a card payment that you haven’t made, you can react immediately and block your card using the Holvi app.

Total card control

With Holvi you have full control. Lock and unlock your card whenever necessary, using your Holvi app. That way you can react quickly in case you lose your card or it gets stolen.


Account security is our top priority.

Customer data security

All data is encrypted during transit and when at rest on our cloud infrastructure. Encryption is done using industry-standard encryption algorithms.

3D Secure 2

Holvi uses 3D Secure 2 (3DS2) as an additional authentication step to verify online payments. 3DS2 uses biometrics to confirm your identity directly in the Holvi app.

Holvi user authentication

A user can only access the Holvi application after proper token-based authentication is completed. The Holvi application and user activities are tracked and logged in dedicated databases.

Secure cloud infrastructure

All mission-critical systems are hosted on modern and secure cloud technologies. This technology allows us to set up multi-layer defences and increases the audibility of all actions and changes.

Independent security team

Our security team works on maintaining Holvi’s security daily. Additionally, Holvi uses a bug bounty program for external application security testing. This global research community further helps to protect the application.

Multi-Factor Authentication

Holvi account supports Multi-Factor Authentication (MFA). MFA uses a combination of passwords, codes, and biometrics (e.g. fingerprint) to verify transactions.

24/7 information monitoring

The Holvi infrastructure is monitored 24/7. We also use automated alerts that allow us to act quickly on any potential issue.

What you can do for extra security

Why does Holvi sometimes have to block accounts?

We’re subject to strict regulations that may require us to take action due to security reasons.

How Holvi keeps your account safe – And how you can help

In this article, we share what you can do as a user to ensure extra security for your account.

Contact us

For any security-related inquiry contact us by this email,