SmartBank

SmartBank

Download the new SmartBank app from Google Play or App Store.

Google Play     App Store


Simple things make us smile more often and enjoy each day. It's much easier to have everything at hand and have more time for you and your passions. See with your own eyes how it would be like to have an entire bank inside your pocket. If we would tell you that you can access those services you need quickly and comfortably, directly from your mobile phone?

We offer you the easiest way to have all the benefits of a bank branch in a single Application. Choose OTPdirekt - SmartBank from OTP Bank. You enjoy a secure service and you benefit from fees up to 50% lower than those at the bank's counter.

You benefit from an extended working schedule than the bank's counters

Fees are lower up to 50% than bank counters for SmartBank operations

You can create / view / liquidate deposits in lei or EUR. You benefit from an interest bonus of 0.20% for deposits in lei.

What advantages do you have with OTPdirekt - SmartBank?

  • You benefit from an extended working schedule than the bank's counters;

  • Fees are lower up to 50% than bank counters for SmartBank operations;

  • You can create / view / liquidate deposits in lei or EUR and you benefit from an interest bonus of 0.20%, 0.10% respectively;
  • You pay for telephone and utility bills, transfers between your own accounts (in lei or in foreign currency) and you can make payments in lei to beneficiaries with accounts with any other bank in Romania and in foreign currency to those with accounts with OTP Bank;

  • You can quickly find your nearest ATM or Territorial Unit;

  • You have many possibilities for online bank transfers via the Money Magnet option;

  • You can make currency exchanges;

  • You can view your account balance and transaction history;

  • You are informed about the exchange rate practiced by OTP Bank;

  • You can log in to your Application using fingerprint scanning or FaceID, (available for iPhone X);

  • You can change your card trasaction limits whenever you like and turn on / off Internet payments.

How to access OTPdirekt - SmartBank?

Download the Application

Access the App
for free for Android and iOS.

Download from PlayStore Download from AppStore

Contact us

Fill in the form
and our colleagues will contact you shortly.

Notification on the protection of personal data - Current Accounts and Relates Products (NON-LENDING)

This document explains when and why we collect personal data, how we use it, the conditions in which we may disclose it, how we store it safely, and what your rights are in relation to such processing under the law. Information related to the processing and protection of personal data by OTP Bank Romania S.A. (the “Bank”, “we” or “OTP”) is also available on the webpage www.otpbank.ro, Privacy section.

 

1. Controller/contact details of the controller

OTP BANK ROMANIA S.A., managed in a two-tier system, seated in Romania, Bucharest, Sector 1, str. Buzești, nr. 66-68, registered with the Bank Register under no. RB-PJR-40-028/1999, EUID: ROONRCJ40/10296/1995, registered within the Trade Register Office of Bucharest under no. J40/10296/1995, VAT Reg. No. 7926069, personal data controller registered with the National Supervisory Authority for Personal Data Processing under notification no. 2689, tel.: 0800 88 22 88/+ 4021 308 57 10, email: office@otpbank.ro, processes your personal data as controller in accordance with the Regulation (EU) 679/2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (The Regulation) and Law no. 190/2018 on implementing the Regulation, in good faith and for the purposes specified herein.

 

2. Data Protection Officer (DPO)/Contact details of the Data Protection Officer

The data protection officer appointed by the controller can be contacted at the controller’s registered office, at the address mentioned above, or via email at dpo@otpbank.ro. If you have any questions or suggestions/complaints or wish to exercise any of your rights related to data protection as data subject, please contact the Data Protection Officer using the contact details above. We may request additional documents or information to properly identify you in order to answer your request. All requests will be resolved in accordance with the applicable law, and free of charge. However, if the requests are manifestly unfounded or excessive, particularly because of their repetitive nature, the Bank may: (a) charge a reasonable fee, taking into account the administrative costs of providing information or communication or taking the required measures; (b) refuse to answer the request.

 

3. Processed personal data

The processed data, depending on the service/product and/or the contract concluded with the Bank, is, as the case may be, the following:

i. identification data: last name, first name, pseudonym (if applicable), date and place of birth, personal identification number (CNP/NIF) or other similar unique identification element, such as the single registration number for authorised natural persons or the tax registration number for natural persons carrying out liberal professions, citizenship, marital status, country of tax residence, ID document/passport series and number, other data in the identification or civil status documents as well as copies, home/residence address, profession, occupation, name of the employer or nature of activity, information about any important public position held, if applicable, political opinions (exclusively in the context of obtaining information related to the capacity of publicly exposed person - PEP), expressed inclusively in notifications/complaints/conversations about products/services/employees of the Bank, capacity, holdings and, as the case may be, powers of representation held within some legal entities, data on the beneficial owner, as the case may be, image (contained in the identification documents or captured by the video surveillance cameras installed in the Bank units or on the OTP equipment, including transposed in biometric templates), voice (recordings of telephone or audio/video calls initiated by you or us), signature/specimen signature, by hand or digital, as appropriate; ii. contact details: correspondence address (if applicable), telephone number, fax number, email address; iii. identification codes: allocated by OTP or various providers, necessary for the provision of services, such as, but not limited to: client code, internet banking username, series and number of the assigned token, transaction identifiers, including their logs, IBAN codes attached to bank accounts, debit card numbers, card expiration date, contract numbers, traffic data and IP address of the device used to access our services exclusively for ensuring security measures for transactions carried out through these services, in order to prevent fraud; iv. data on the fraudulent/potentially fraudulent activity, consisting of data relating to crimes such as fraud, money laundering and terrorist financing, including data related to inconsistencies found in documents/statements submitted to the Bank, obtained from forms, statements and documents submitted, drafted or completed; v. financial data related to the source of funds, turnover in your accounts opened with our Bank, invoices, recurring payment commitments, including garnishments or enforcements communicated to the Bank as a third-party garnishee; vi. health data, exclusively if the processing of such data is necessary in the context of providing insurance products/services brokered by the Bank or held by clients and the coverages provided by them or for clients to prove the difficult situation in which they or members of their families are, in the context of insurance products held or to be taken out; vii. any other data that may be necessary or useful for the Bank's activity for the purposes described, in accordance with the law.

 

4. Data source

The personal data processed is data: i. communicated to the Bank either directly, by you, or indirectly (by proxies or other persons representing you in relation with the Bank) made available in order to initiate the contractual relationship/update data/purchase products and services/order transactions/file requests in connection with the contractual relationship, regardless of the communication channel used; ii. obtained by consulting some public sources, such as: public institutions and authorities (for example, ONRC, ANAF, Payment Incidents Register), electronic registers and databases (for example, the courts’ portal), entities involved in payment transactions (for example, international Visa and Mastercard card organizations, Central Depository). 

 

5. Legal grounds and purposes of personal data processing

The Bank processes your personal data as a potential client, client, beneficial owner, user, proxy, delegated person or legal/contractual representative (hereinafter the “data subject”), as the case may be, based on the following legal grounds:

a. To conclude and carry out the contractual relationship with the Bank according to Article 6 (1) (b) of the Regulation for the following purposes:

  • to provide lending products and/or services (current account opening, internet banking, cards, savings products) as well as to be subsequently able to carry out your instructions related to the operation of such products/services (e.g. processing collections/payments/other types of transactions with the specificities of the transactional channel used - counter, internet/mobile banking, telephone, specific ATM equipment, foreign exchange, card transactions, transactions specific to treasury/capital market/mutual funds/custody products/services, etc.);
  • to monitor the fulfilment of contractual obligations, to notify you about the concluded contracts (e.g. amendment/supplementation of characteristics/costs/functionalities/benefits products/services, information about charges and fees due/outstanding, etc.), to take the required measures for non-compliance with the contractual obligations (e.g. debt collection/debt recovery, as well as activities prior to them, enforcement of amounts due and administration of garnishments and seizures, reporting to the authorities, etc.);
  • to report and submit the necessary information/documents to the guarantee funds (e.g. FGDB).

b. In order to fulfil the legal obligations provided in Article 6 (1) (c) of the Regulation for the following purposes:

  • to carry out the KYC analysis, the risk analyses, to report suspicious transactions, to prevent fraud according to applicable KYC laws in order to prevent money laundering and terrorist financing and to establish measures to prevent and combat terrorist financing;
  • to prepare reports, submit declarations, perform the activities related to the inspections conducted by authorized authorities/institutions, such as: ANAF, ANPC, NBR, ANSPDCP, ASF/BVB, Competition Council, etc;
  • to collect by enforcement the amounts due as well as to manage garnishments and seizures, according to the special laws in the matter;
  • to carry out audit missions;
  • to report under FATCA (The US Foreign Account Tax Compliance Act), if you are a US citizen/resident;  to handle client complaints;
  • to audit the financial statements of the Bank;
  • to endorse the documents sent/submitted to the capital market institutions;
  • to manage the internal registers;
  • to record and manage operational risk events;
  • to ensure physical security through video monitoring (including ATM), access cards and visitor register (reception desk);
  • to backup information;
  • to keep and archive documents, in compliance with the prudential requirements applicable to credit institutions, related to the services contracted by you, as well as other operations necessary for the performance of the concluded contract(s).

c. In order to fulfil the legitimate interests of the Bank, as provided in Article 6 (1) (f) of the Regulation, for the following purposes:

  • to conduct internal reviews (including statistical reviews)/market studies, both with regard to products/services and with regard to the client portfolio, to monitor client satisfaction and the quality of services and products purchased, to improve and continuously develop internal products/services/processes;
  • to design, develop, test and use existing or new IT systems and IT services, the storage provided by databases in the country/EU, as appropriate;
  • for direct marketing, as appropriate;
  • to plan a strategic development, to make forecasts on portfolio dynamics, to make business forecasts by performance indicators, to set budgets, to set cost elements for the Bank's products/services;
  • to establish payment structures for intermediaries;
  • to analyse and minimize the risks to which the Bank is exposed;
  • to monitor transactions to prevent fraud and to investigate potentially fraudulent ATM withdrawals;
  • to prepare internal reports to the Bank's management bodies and the OTP business group of which the Bank is a part, in order to ensure prudential measures;
  • to ensure a high level of security both at the level of information systems and within the physical locations (e.g. territorial units, headquarters);
  • to create the archive and manage it;
  • to conclude and manage financing contracts or assignments of receivables;
  • to collect debts/recover debts;
  • to establish, exercise or defend rights of the Bank before court;
  • to record interactions through official communication channels, in order to provide proof of the request/consent/option regarding certain financial-banking services, as the case may be. 

d. Based on your consent, according to Article 6 (1) (a) of the Regulation, for the following purposes:

  • for direct marketing purposes for commercial communications, as appropriate;
  • for the audio/video recording of the conversations with the Bank;
  • to process the health data, exclusively if the processing of such data is necessary in the context of providing insurance products/services brokered by the Bank or held by clients and the coverages provided by them or for clients to prove the difficult situation in which they or members of their families are, in the context of insurance products held or to be taken out. If you have not expressed your consent to the carrying out of these operations, they will not be performed by the Bank.

Refusal to provide personal data correctly and completely for the above-mentioned purposes may prevent the Bank from properly meeting its contractual or legal obligations and may prevent you from contracting the services provided or brokered by the Bank and it may lead to the termination or restriction of the provided/brokered banking services, as appropriate.

 

6. Categories of recipients of personal data

In order to be able to offer you the best services and to keep our competitiveness in the banking sector, we communicate certain data inside and outside OTP. These include:

  • OTP entities, for operational, regulatory or reporting purposes, including in centralized storage system or for global processing, such as to verify new clients, comply with certain laws, guarantee the security of information systems or provide certain services (see section “About us. OTP Group” for the full list).
  • Government authorities, to comply with our regulatory obligations, for example in order to counter terrorism and prevent money laundering. In some cases, we are required by law to disclose your data to external parties, including:
    • Public, tax, regulatory authorities and supervisory bodies.
    • Judicial/investigative authorities, such as the police, public prosecutors, courts and arbitration/mediation bodies, at their express and legal request.
    • Lawyers, for example, in case of bankruptcy, administrators managing the interests of other parties and the company's auditors.
  • Financial institutions, partner banks and correspondent banks. If you withdraw cash, pay by debit card or make a payment to an account opened with another bank, the transaction always involves another bank or financial company specialized in processing interbank payments and transmitting information on interbank transactions (e.g. Transfond S.A., Society for Worldwide Interbank Financial Telecommunication - SWIFT). In order to process payments, we must provide the other bank information about you, such as your name and account number. We sometimes communicate personal information to banks or financial institutions in other countries; for example, if you make or collect an external payment. We also communicate information to the business partners the products of which we sell, such as insurance companies.
  • Service providers. If we use other service providers, we only communicate the personal data necessary to perform a certain task. Service providers support us with activities such as: telecommunications, IT/internet banking, marketing and client communication management, archiving in physical and/or electronic format, courier, audit, technical maintenance of CCTV equipment, digital certification related to electronic signatures, payment processing, card issuance and enrolment (e.g. Mastercard, Visa) etc.

 

7 . Transfer to third countries and safety measures

Depending on the location of the servers of OTP or of its processors, where the data will be stored, or the location of certain data recipients, personal data could be transferred, as appropriate, to other Member States of the Union European and European Economic Area respectively. Except as otherwise expressly required by the law or where strictly necessary for the Bank to fulfil the contract and the obligations assumed towards you, we will not transfer your personal data outside of the European Economic Area. In the event that the Bank must transfer data to third countries, we will only transfer the personal data strictly necessary for the performance of the contract and/or the obligations assumed towards you (e.g. your order to make an international bank transfer or your use of the bank card in states outside of the European Economic Area). The Bank will make every effort to protect your personal data in our possession or under our control by establishing appropriate security measures to prevent unauthorized access, collection, use, disclosure, copying, modification or placement/storage, and other similar risks.

 

8 . Data storage period/criteria for determining the storage period

We will keep your personal data for the period of time necessary to comply with the contractual obligations assumed towards you, respectively for the period of time necessary to comply with the applicable legal obligations. The Bank will periodically conduct sessions to review of the processed personal data in order to ensure that data or certain categories of processed personal data is/are not retained for longer than necessary. In order to determine the period for which the data will be stored, we take into account the contractual period until the performance/expiry of contractual obligations, as well as the archiving deadlines. Thus, the Bank will store personal data, as appropriate, for a period of:

  • 5 years from the date of termination of the business relationship with the client for keeping the identification documents, the monitoring and verifications performed, as provided by Article 21 (1) of Law no. 129/2019 on preventing and combating money laundering and terrorist financing, and amending and supplementing some legal acts;
  • 10 years for keeping the supporting documents from the date of carrying out the operations in the accounts, including the logs related to the transactions, as provided by Article 25 of the Accounting Law no. 82/1991;  30 days from the date of recording the data processed by the video surveillance systems, as provided by Article 93 of the Methodological Norms for the application of Law no. 333/2003 on the security of facilities, assets, values and on the security of persons;
  • If you have expressed your consent to the processing of your data for direct marketing purposes, including profiling for direct marketing purposes, the data processing for this purpose will take place during the contractual relationship with OTP Bank Romania S.A., as well as 1 year from its termination. Should you withdraw your consent for direct marketing purposes, OTP Bank Romania SA will no longer process your data for this purpose. For details on the processing for marketing purposes, please refer to the marketing consent section.

 

9. Your rights as a data subject with respect to personal data

In accordance with the Regulation, your rights as a data subject with regard to the processing of personal data are as follows: the right of access, the right to rectification, the right to erasure (“the right to be forgotten”), the right to restriction of  processing, the right to data portability, the right to object (in the case of data processing based on our legitimate interest or on your consent, with the mention that the withdrawal of consent will have effects only for the future, the processing performed previously remaining valid), the right not to be subject to an automated individual decision, including profiling.

If you believe that your rights as a data subject have been breached, you may lodge at any time a complaint or notice to that effect with the National Supervisory Authority for Personal Data Processing, seated in B-dul Gral. Gheorghe Magheru 28-30, Sector 1, Post code 010336, Bucharest, Romania (fax: +40 318 059 602, email: anspdcp@dataprotection.ro). You can also bring an action before the competent courts.

I agree with the processing of personal data for marketing and profiling by the Bank
I agree with the processing of personal data for the purposes of marketing and profiling by third party partners of the Bank

Similar products recommended

OTPdirekt – Internet Banking

Comfort and free services at one click away.

More details

Notification Push or SMS Alert

All the information you need, simple and fast.

More details

Frequently asked questions

After signing an OTPdirekt contract beforehand in the branch, access is made as follows:

  • OTPdirekt - Internet Banking can be accessed on the Internet at www.otpdirekt.ro dedicated page or by visiting the bank's website www.otpbank.ro, choosing one of the two methods of identification „with card” or „without card”. The „card” identification method involves entering the last 10 digits of the bank card and the 3-digit access code. The „no card” identification method involves entering the client code, user, and 3-digit access code. After entering the data from the first identification step, you can enter the digits generated by the physical token or received via SMS, in the case of virtual token identification, to access all of your accounts and make transactions.
  • OTPdirekt - SmartBank can be accessed directly from the available Android / iOS App or by accessing the m.otpbank.ro mobile site, choosing one of the two „card” or „no card” identification methods. The „card” identification method involves entering the last 10 digits of the bank card and the 3-digit access code. The „no card” identification method involves entering the client code, user, and 3-digit access code. After entering the data from the first identification step, you can enter the digits generated by the physical token or received via SMS, in the case of virtual token identification, to access all of your accounts and make transactions.
  • OTPdirekt - Contact Center can be reached by phone at 0800 88 22 88 (free of charge from any fixed or mobile network in Romania) or at + 4021 308 57 10 (callable from abroad). Once you have selected the language of your conversation, choose 3. To identify yourself, follow two simple steps: for the first step, enter the last 10 digits of the bank card and the 3-digit access code, and for the second step, enter the 8 digits generated by the physical token or received via SMS in the case of virtual token identification.

OTPdirekt - Contact Center, Internet Banking, SmartBank and Push notifications / SMS Alerts are available to any client, individual, legal person or authorized person who has a current account with OTP Bank and has concluded an OTPdirekt contract.

The access code can be changed as often as necessary. You can also use this option if you think the current code no longer offers the desired security level. At first use it is mandatory to change the access code from its default value so that it is only known by you. Also, to use OTPdirekt - Internet Banking safely, the Application will ask you to change the access code once every 3 months.

Yes, through OTPdirekt - Internet Banking and Contact Center you have access to payments and transfers both in LEI and in currency between your own accounts, as well as to other OTP Bank clients or other banks clients (domestic and foreign). OTPdirekt - SmartBank also offers you the possibility to make intrabanking and interbanking payments and transfers in lei, as well as intrabanking in currency.

Yes, the OTPdirekt service is secure. The security certificate is provided by VeriSign (http://www.verisign.com), world leader in Internet security. Also, communication between your workstation and your bank is performed on an encrypted channel using the 128-bit SSL standard.

Payment of bills to utility providers is possible, and the menu that will be accessed from Internet Banking is Operations - Utility Payments. They can also be accessed via SmartBank using the „Payments” menu, the „Utilities” section or by calling the Contact Center.

This service is available from anywhere, both in the country and abroad, via the www.otpbank.ro website, through native Android or iOS Apps, and the internationally available call number + 4021 / 308.57.10.

If Internet access is temporarily unavailable, you can do the same range of transactions based on the same subscription and the same identification process that you make on the website through our Contact Center channel (only for OTPdirekt clients, type A and bank card). Your call will be taken over by a specialist operator who will perform the operations based on your consent. The available telephone numbers for contacting the Contact Center are:

0800 88 22 88 (free of charge, available from any fixed or mobile network in Romania)

021/308.57.10 (also available from abroad).

In order to become an OTPdirekt subscriber, it is necessary to:

  • be an OTP Bank client,
  • sign an OTPdirekt contract.

The form is available in all OTP Bank branches in the country.

Depending on the chosen OTPdirekt contract type, there may be transaction limits of LEI 50.000 or EUR 10.000 per transaction, or there may be no transaction limits.

If access was locked by entering the 3-digit access code incorrectly, please contact us at 0800 88 22 88 (free of charge from any fixed or mobile network in Romania) or at +4021 308 57 10 (Monday to Friday 8:30 - 21:00, also from abroad). In addition, in the Internet Banking interface, the client benefits from the ability to set security questions so that unlocking of the access code can also be made online.

A necessary condition for running the Internet Banking Application is to enable JavaScript in your browser. To verify / enable this option, make the settings according to the used browser:

  • Internet Explorer – Tools/Internet options/Security (tab)/ Custom level/ Scripting – Active/Scripting: Enable.
  • Mozilla and Netscape – Edit/Preferences/Advanced/Scripts&Plug-ins/Enable JavaScript for Navigator.
  • Opera - Tools / Preferences / Multimedia / Enable JavaScript.

For SmartBank service, the phone's operating system needs at least Android 5.1 or iOS 4.

Communication between your workstation and your bank is made on an encrypted channel using the 128-bit SSL standard.

The browsers that are certified by the Internet Banking Application are:

  • Internet Explorer 6.0
  • Mozilla 1.7
  • Netscape 7.0
  • Opera 7.0

The optimal screen resolution is at least 1024 x 768 pixels with a colour depth of at least 16 bits.

You can use the OTPdirekt service to make transactions via Internet Banking or SmartBank even on weekends, processing taking place on the first bank business day. For more details, see the „Accepting programme and maximum time line for executing operations” for Internet Banking by going to the „Useful Tools” section after login.

Learn more about how simple OTPdirekt platform works! Watch the video tutorials or call us at 0800 88 22 88 (free of charge from any fixed or mobile network in Romania) or at +4021 308 57 10 (also available from abroad).

If you have a debit card attached to that account, your balance can be found free of charge either on the www.otpbank.ro website or by calling 0800 88 22 88 (free of charge from any fixed or mobile network in Romania) +4021 308 57 10 (also available from abroad), being necessary the last 10 digits of the card number and a 3-digit access code. You can also activate your Push Notifications / SMS Alerts service and you will always be aware of your account status.

In order to obtain the supporting document following operations made through the OTPdirekt channels, it is possible to verify the transactions in the account statement available in OTPdirekt - Internet Banking, the Statements and Proof of Payments menu. For payments in foreign currency, there is a requirement for the client to bring the Foreign Payment Order / Payment Request within 10 days, in duplicate. One of the copies, with the signature of the bank employee and the bank stamp, remains with the client and the other with the branch.

In order to use it, you do not need to install a program on your personal computer. It is enough to enter OTP Bank's website, www.otpbank.ro, and follow the identification steps. The physical token device is used by pressing the button on its front, automatically generating the related unique code; in the case of the virtual token, the unique code is transmitted by SMS to the mobile phone number specified when signing the OTPdirekt contract.

With this service you have access to three channels of use: Contact Center, Internet Banking, and SmartBank. Through Contact Center and Internet Banking, you will have access to all your current accounts in lei and foreign currency, savings accounts, deposits, related credit card accounts, information regarding ongoing loans with OTP Bank. With SmartBank, you can access your current accounts in lei or foreign currency, deposits, or information regarding savings account balance.

To verify if the payment has been made, on the main screen, if that payment is one of the last 10 transactions made, or in the Accounts - Operations History menu.

Is the due date of the telephone bill approaching and the time is too short to go pay it? Everything is simpler when you can rely on a trust service. All you need to do is access the OTPdirekt - Internet Banking App Operations menu. Choose Domestic Payments / Transfers and from the drop-down list of Choose beneficiary select Payment Orange Romania Communications S.A.

Fill in the fields as follows:

Amount: The amount to pay on the invoice;

Payment order number: The number that the payment order has been allocated to you for the payment of the invoice;

First name and last name of the invoice holder: First name and last name of Orange Romania Communications S.A. subscriber for which the invoice was issued;

Invoice telephone number: Invoice Holder's telephone number (preceded by the prefix);

Invoicing code (Subscriber code): Invoice code entered on invoice.

Object of payment:

  • If the payment is related to the current invoice, then select the option Invoice;
  • If the payment is the installation fee for the service, then select the Install fee option;
  • If the payment is due to the termination of the contract with Orange Romania Communications S.A., then select the Finall account option;
  • If you wish to make a payment to Orange Romania Communications S.A. before issue of the current invoice, then select the Prepayment option;

Due date: Due date entered on invoice.

The payment schedule provides detailed information about the amount of the fees, the rescheduled fees, the rescheduled interest due to the bank according to the loan contract. This information can be found in the document generated by pressing the Generate Payment Schedule button. Downloading the Payment Schedule can only be done from OTPdirekt - Internet Banking.