All the reliability and information required for your business
With Nexi, purchases are secure and you are continuously updated on Nexi innovations and benefits.
Services for your business and your security
The monthly Statement of Account allows for precise control of spending and provides summary and detailed information to keep spending and Card use under control. By activating your free online Statement from the Business Portal, you can consult and download it in PDF format and create an electronic archive of Statements on your computer. Each time a new Statement is available an email alert is sent.
By activating the Nexi Text Alert service from the Business Portal, you will be able to keep your Card spending under control.
It’s very simple. Every time you pay with Nexi, you receive a free text message. If something is not right, ring Customer Services, and if there is anything wrong, the charge and the Card will be blocked.
Remember that the fraudulent charges reimbursement procedures, for cash withdrawals made with the Card and the PIN code, are subject to the contractual terms and conditions relating to card and PIN security. For this reason keep your PIN in a safe place, separately from the credit card.
With text services, you can request information by text on the most recent transactions, available credit, balance #iosi and much more. In this way you will always have all your information at your fingertips.
The Nexi Pay App for smartphones has a notifications service for Professional company cards that notifies you whenever your credit card is used for expenses and purchases of more than € 2.
The Email Alert service sends an alert each time a company credit card operation is made for more than the amount established by the Business Portal Administrator.
The email is also sent when company cards are used for certain types of purchases (e.g. fuel, hotels, car hire) or for cash withdrawals.
3D Secure is a fraud protection system Verified by Visa and Mastercard SecureCode™ which guarantees protection for your online purchases. With every purchase, you receive a text containing a unique security code to enter at the time of payment to confirm your purchase.
The CV2 (CVV2 for Visa, CVC2 for Mastercard) is the last three digits on the back of the credit card and is required for online purchases.
Always be on the safe side.
Nexi allows you to spend confidently even abroad. Thanks to Nexi emergency services, in the event of theft, loss or damage to your credit card, you never run the risk of being without a Card or cash. Moreover, upon blocking the Card, you can ask Nexi Customer Services for information on how to enable the following services:
- Emergency cash, a cash advance on blocked credit cards, payable in Italy and abroad
- Replacement credit card, a free service (valid both in Italy and abroad), upon blocking a Card, to receive immediately, anywhere in the world, a replacement emergency Card, generally valid of 2 months
- Overdraft increase, free service that must be requested through your Bank
- Credit limit increase, another free service you can request from your Bank which temporarily increases a Card’s credit limit (defined at the time of the request).
Use your credit card worry free.
Nexi has a series of special services such as Text Alerts, App Notifications and 3D Secure for online purchases to ensure the security of your credit card. See the relevant web pages to learn more and discover everything there is to know about Phishing.
If you are contacted by strangers who say they work for Nexi, remember not to give them the number of your credit card. Our staff already has all your data and, therefore, has no reason to ring you and ask you for them again.
If you receive a request either by email, text or any other channel to contact Nexi, call Customer Services to verify that the request has come from us. In general, remember that Nexi phone numbers begin with 02 3488.xxxx (xxxx is the extension and can be different depending on the office).
If you lose your Nexi Card or it is stolen, block it immediately by ringing Nexi Customer Services, active 24 hours a day, 365 days a year:
from Italy: toll-free number ***********
from abroad: +39 02 3498 0020*
from the U.S.A.: International toll-free number: 1 800 473 6896
*Nexi accepts collect calls
Please note that the Police and Carabinieri websites provide useful information about avoiding payment card scams.
You must be present and watching when the Card is read. Therefore, to avoid cloning, take your Card personally to the cashier carrying out the payment.
Avoid being distracted while the card is being swiped.
Sign the back of your Nexi Card.
When you receive your Nexi Card, sign it immediately in the reserved space under the magnetic band on the back using a ball-point pen. In this way, Retailers can compare the signature on the Card with the signature on the purchase receipt, and you are protected if a third party uses your credit card.
Create your passwords so that they are not easily guessed.
A password made up of phrases or words that are easily guessed is a password at risk.
Here are some suggestions on how to create a secure, easy-to-remember password:
- Create your password with the first letters of a phrase that only you can remember and that is not associated to any personal details. For example: TSIGTS (This Summer I am Going to Sardinia), AADKDA (An Apple a Day Keeps the Doctor Away), a verse of a song or a poem are good examples of strong passwords. Whereas your name (e.g. JOHNSMITH), your date of birth or that of a loved one are easily guessed by fraudsters who know your name or your personal details
- Use alphanumeric combinations (TSIGTS0804) where possible
- Avoid using common words or words that refer to your private life or business (e.g. proper names, tax code, date of birth, car registration, security pass card number).
USE OF THE CARD
Always take receipts at self-service terminals
Self-service terminals where it is possible to pay with a credit card (e.g. fuel pump, parking metre) issue a receipt that shows the Card data (number and expiry date). Always take the receipt. If it falls into the wrong hands, your Card data could be used for online purchases.
Check that the amount is right before you sign the purchase receipt.
Always check that the amount indicated on your purchase receipt is correct and that it is shown in the “total” field. Some receipts show the “tip”, so the Retailer only fills in the “subtotal” field. Before signing always make sure that the “total” field displays the amount of the payment (with or without the tip).
Keep your sales receipt until you receive the statement of account.
If you keep the receipts, you can check your expenses at any time and send any enquiries within the period stated in the Regulations (60 days from receipt of the account statement).
Always use your Card correctly
In the event of a delay in payment or irregular use of the Card by you - with the consequent withdrawal of Nexi Card authorization - your data and your Card’s data are communicated to the Bank of Italy’s central interbank alarm service, or CAI (Centrale d'Allarme Interbancaria), to other public databases, or to registers kept by competent Authorities. If negative information on you is sent, you will be informed. This can make it difficult for you to access credit.
Remember that, in addition to being responsible for your Nexi Card, you are legally responsible for the operations performed by other cardholders and family members linked to your Card.
Keep your ATM transactions confidential. Beware of suspicious places and situations: groups of people hanging around an ATM are not a good sign. Do not allow anyone to invade your space while typing the PIN. If someone gets too close while you are performing an operation, ask them politely and firmly to distance themselves. Always use your free hand to shield the numbers that you are typing (this advice also applies when you are making a purchase). When withdrawing cash remember that:
- The Card must be able to be inserted into the slot without forcing it
- When the Card is returned, you should be able to grip it easily with your fingers. If you have any suspicions, contact the Bank if it is open or the police or ring the Nexi Credit Card Blocking Service (or, if you are using a debit card, the Debit Card Blocking service on the toll-free number 800 822 056) and tell the operator what happened. The operator will tell you what to do and, if necessary, will put a precautionary hold on your credit or debit card
- If the Card is not returned, do not trust strangers willing to help, but immediately ring the Credit or Debit Card Blocking Service.
ATMs can be tampered with in order to clone payment cards. In this respect we suggest the following:
- Inspect the ATM, look for changes or anything unusual. On the side or along the top of the keyboard, there could be, for example, a small video camera
- Check if the slot where the Card is inserted is loose. If it moves or detaches, it could mean that it has been covered with a skimmer
- Check to see if the keyboard is loose. Often criminals place another keyboard on top to capture the PIN. In this case there is a space of a couple of millimetres. If you have any doubts do not insert your Card and do not enter the PIN. Leave and ring the police.
When you make purchases online, take these precautions
- Always check that the seller is a real retailer. It is best if they are known and the website displays all their details, including the address
- Do not enter the Card number as proof of age or for any other reason and always beware free access to websites that ask for credit card details for various reasons
- Do not enter the number of your credit card on websites that are not protected by international security systems, which are recognizable by the padlock icon that appears on the screen, and the relative security certificate (to view the security certificate, double click on the padlock icon). On the certificate, the name that appears next to the “Issued to” field should match, or at least be similar to, the name of the website you are visiting. If the name is very different, or you are not sure of the authenticity of a certificate, do not insert your data, avoid performing any operation and leave the website immediately
- Always make a note of the internet address of websites from which you make a purchase
- Carefully read the terms and conditions of service offered and any contractual clauses, keeping a paper copy of what you sign “virtually” and the number of your credit card
- Pay particular attention to payment service terms and conditions. Often what looks like a one-off payment is in fact a subscription with recurring monthly charges
- Beware of incredibly attractive offers. If they are not promotions from well-known, reliable Companies, they can hide unpleasant surprises.
Keep your online spending secure.
Spending online with your credit card means taking precautions. Always check that the Retailer is displaying all his/her data; avoid entering your credit card number on sites which are not protected by international security systems; read and keep a copy of the terms and conditions of service offered and any contractual clauses, and pay attention to the payment conditions of the service. In general, beware incredibly attractive offers. If they are not promotions from well-known, reliable Companies they can hide unpleasant surprises.
More advice on how to shop worry free can be found in our Security Tips.
Defend yourself from attacks
Just as you would never give your ATM PIN to a stranger, it is important to be careful and avoid entering your sensitive data online when you are not sure of the identity of the asker. Phishing is an illegal practice carried out by fraudsters (phishers) who, by sending emails similar in content and graphics to emails from well-known Companies, attempt to steal confidential, sensitive data (access codes, credit card or personal information) through links to websites similar to the real sites.
Updates (patches) that increase the security of browsers are available online, downloadable free of charge. It is possible, from the websites of Companies that produce patches, to verify whether your browser is up-to-date; if it is not, you should download and install the patches.
In addition to upgrading your browser, you should always use licensed, regularly updated software, antivirus tools, and a toolbar with a free anti-phishing filter.
Finally, regularly check your statements to make sure that the transactions reported are those you actually carried out. If they are not, contact Nexi immediately.
How to recognize a phishing email
Increasingly, phishers create emails almost identical to emails from well-known institutional websites, leading the unsuspecting user to fall into the trap. To evaluate the reliability of an email, carefully follow the following rules:
- Suspicious email addresses
For example, the email address email@example.com is an address that Nexi does not generally use for institutional communications. Beware very long email addresses and emails containing unusual characters, in particular @, and any email that asks you for confidential data regarding payment card codes, online banking access codes, or other personal data.
- Formatting, grammar or translation errors in the text of the message
Often the email will contain links to clone websites, where the user will be asked to enter personal data. Frequently grammatical, formatting or translation errors are made (phishers often operate in foreign countries). Therefore, it is always a good idea to read the text of the email. The presence of even a small mistake should raise suspicions.
- Link to an external page
In Nexi institutional emails, there are no links to external pages or applications where the user is asked to enter access credentials or other sensitive data.
- Other possible errors
Check whether the Nexi company name has been used correctly. An example: Nexi Italiane 2008 does not exist. Do not trust emails with this Company name.
How to recognize a phishing website
If a phishing email has been written particularly well, you could be persuaded to click on the link and find yourself on a website that is identical to the one that you were expecting to find. How do you recognise a phishing website? Here is some valuable advice on how to avoid unpleasant surprises:
- Anti-phishing toolbar alert
Normally we are very careful about trawling the internet with advanced IT tools looking for clone websites of potential harm to our Customers. We report suspicious websites (sometimes because our Customers have notified us), so that toolbars with anti-phishing functions (in this case Google Toolbar) can notify users. Therefore, it is very important that you install a toolbar with anti-phishing features on your browser.
- Counterfeit website address
It is very important to check the website address of the page the link takes you to. Even if the website has been counterfeited by an expert phisher, in most cases the address is the parameter that should alert you to not enter personal information. A website address that is different from what you expect to see is a sure sign of a serious problem.
How do you recognise a potentially dangerous website address? It must start with “https”. This means that the site uses secure protocols for the management of personal data.
A secure, certified site that uses secure data management protocols always displays, in the bottom right of the browser window, the padlock icon which shows that the site is secure. Beware of sites that request you to enter sensitive data (user name or password, credit card or other personal data) and do not display the padlock icon: data entered can be stolen easily.
To be sure of the reliability of the website, double click on the padlock icon. A certificate will help you to verify that the security credentials are actually those of the site that you are visiting.
LET US KNOW ABOUT PHISHING
Phishers are becoming more skilful at creating websites and writing emails so similar to the originals that sometimes even the most careful user can fall into the trap. If you think you may have entered your data on a counterfeit website, write to firstname.lastname@example.org, specifying the address of the site in the text, and enclose the text of the email you received.