Digital banking - ESAF Small Finance Bank
banner image of Digital banking

Digital banking

Safe Banking

At ESAF SFB, we put continuous effort into making our esteemed customers aware of the various steps to follow, to safeguard and avoid compromising of confidential customer information to online scams such as Spoofing, Vishing, Phishing etc. In the event of suspect and abnormal transactions, ESAF SFB requests its esteemed customers to immediately inform ESAF SFB at E-mail ID.

ESAF SFB desires to partner with its esteemed customers to counter such fraudulent attempts.

Phishing: Phishing is an attempt to “steal or fish” the customer's confidential details (Identity Theft). Phishing attempts are usually via e-mails that appear to be from reputed institutions like central banks, banks and popular websites. The email will be seeking customer confidential data like user id, login and transaction passwords, One Time Password (OTP), Unique Reference No.(URN) etc. There are sub variants like “Spear Phishing“ which are more personalized and targeted phishing attempts, customized on the basis your web browsing for various personal and professional requirements.

Smishing: Smishing is an attempt to “steal or fish” the customers’ confidential details (Identity theft). Smishing attempts are via Short Message Service (SMS- Also known as text messages). This is a modified version of Phishing where SMS is used instead of e-mail. Smishing messages propagate ordinary and extraordinary benefits for the customers such as “ You/your mobile number has won Rs. 10,00,000, You/your mobile has been given 10 free movie tickets, Your mobile has been selected for free recharges worth 10,000, visit our website or click on the link or call certain number to claim the prizes”. Clicking on the link or calling on the number will lead you to websites or individuals seeking personal information. These are becoming more common due to smart phones becoming more popular. Smishing attacks are getting common because of easy sharing and compromising of customer mobile numbers by fraudulent service providers.

Spoofing: Spoofing is an attempt to trick and deceive the users, by duplicating and faking the identity of another user. Spoofing is commonly administered via email, phone, website etc. Website spoofing is the act of duplicating a legitimate website by using similar names, graphics, logos, URLs, padlock etc used in the legitimate website. Email Spoofing is an act to manipulate e-mails by duplicating the e-mail ID of the sender to make the recipient believe that it has been sent by “Trusted” sender and lead the recipient share confidential information.

Vishing: Vishing is an attempt to trick and deceive the users for sharing confidential personal and financial information, through phone calls, by fraudsters who claim to represent the Bank. Vishing is done to gain sensitive information such as account number, base branch, personal parameters like date of birth, mother’s maiden name, debit card, card pin and grid values, Internet banking user ID and passwords, OTP (One time password), URN (Unique registration number), CVV etc. The information gained will then be utilized to conduct fraudulent activities on your account without the customer permission and knowledge, leading to financial loss for the customers.

SIM Swap: SIM swap is an attempt to exchange the genuine SIM card of the customer with a duplicate Sim card of your mobile service provider. The SIM is then used for committing various fraudulent financial transactions. Mobile phones are becoming an important banking channel through which customers make financial enquiries, get account related alerts, receive one time password (OTP) to initiate and complete financial transactions initiated across various channels etc. OTPs are in fact becoming the key second factor authentication for completing financial transactions. The compromising of the SIM card by SIM swap allows fraudsters and criminals to modify account level information and conduct fraudulent financial transactions, leading to financial loss for the customers.

Social media and websites: Social media sites are fast becoming primary drivers of identity theft by luring users with various rewards and benefits through customized and targeted messages centered around special occasions, promotional campaigns etc. They lead to installation of malicious software in the devices which monitor the activities and attempt to steal personal information of the user line name, mobile number etc.

General Safety Tips:

  • Regulatory Bodies like Reserve Bank of India, Government authorities including Income Tax department, ESAF SFB etc., never seek any confidential information like Name, Mobile Number, Bank Account details over e-mail or phone call.
  • Treat e-mail message that seek confidential/personal information with suspicion. Do not respond to e-mails, calls, web forms etc. that ask for your Internet Banking credentials like user id/ passwords, Email ID, Mobile number , Debit card number and pin, Personal information such as Date of Birth, Mother’s Maiden name etc.,
  • Setup SMS and/or email alerts using ESAF Internet Banking/Branches, for all transactions on your account(s).
  • Do not use public/unprotected computers and networks to access and transact using ESAF SFB Internet banking and debit card. Always use private protected network to access, operate and transact on your account.
  • Do not open e-mail attachments and links from unknown/unverified sources received through e-mails and SMSs. Delete such suspicious e-mail and SMS communication immediately and categorize them as junk to avoid future e-mail messages.
  • Always use the ESAF SFB URL directly on your browser’s address bar to ensure you are accessing and transacting on the correct web page. Never use a link in an e-mail or SMS message to log on to the ESAF SFB website. Access the official ESAF SFB website via __________
Retail Internet Banking/Personal online banking

ESAF SFB offers an evolved Internet banking platform to provide the esteemed ESAF SFB customers the convenience and comfort of availing 24x7 banking using multiple devices like personal computer, Tablets etc.

The key design principles utilized in developing Internet banking platform are the following

  • The ease of on boarding the customers with simple and secure registration process.
  • The protection of client information and transaction confidentiality through enhanced security measures.
  • The ease of navigation and access to services frequently availed by the customers.
Services offered in Internet Banking

The Internet banking facility of ESAF SFB offers a wide array of services spanning transactions, enquiries, service requests and value added services. ESAF SFB believes in providing best in class self-service experience to its esteemed customers.
Provided below is an indicative list of services offered in ESAF SFB Internet Banking.

  • Financial Services
    • Fund transfer between your own accounts, third party accounts within ESAF SFB and other Banks using IMPS, NEFT and RTGS services. IMPS transfers are real time and available 24x7, transfer using NEFT and RTGS are according to clearing hours defined by RBI and NPCI.
    • Add or delete beneficiary for fund transfer, both within ESAF SFB and other banks.
    • Generate or cancel MMID for sending and receiving of funds.
    • Real time opening of new term deposits, both Fixed and recurring deposits.
    • Availing other financial products like Saving and current accounts, loans etc.
    • Setting up Standard Instructions for Automatic transfer of fixed amounts at defined intervals to own and third party account.
    • Availing investment related products like Insurance, Mutual Fund, Pension etc.
  • Enquiry services
    • Combined view of all accounts with details such as saving and current account balance, average Quarterly/monthly.
    • Balance of accounts, account level activity, mini and historical statement of accounts, TDS details etc.
    • Category wise view of fund transfers using IMPS, NEFT and RTGS, printing of account statement.
    • Enquiry about existing Term deposit accounts (Fixed and Recurring Deposit), Interest and TDS statement.
    • Enquiry about existing loan accounts, loan repayment statement.
    • Enquiry about cheque status, stop cheque requests etc.
    • Enquiry about other investment relationships with the Bank.
  • Service requests
    • Registration and deregistration into services like Mobile Banking, SMS/Missed call Banking, USSD Banking, Account statement by Email etc.
    • Modification of cash Deposit and Withdrawal limits, Fund transfer limits defined for different time periods and beneficiaries.
    • Emergency requests like Hot listing of cards, stop cheque payment, generation of ATM pin etc.
    • Request for new Debit Card, Cheque book, physical account statement etc.
    • Updation of customer and account information such as communication address, seeding of Aadhar, PAN card etc.
    • Updation of Internet banking credentials such as user ID and Password.
  • Value added services
    • Linking of multiple accounts to one user ID for better tracking of all relationship
    • Choice of choosing favorite transactions for easy navigation and access to frequent transactions
    • Customize alerts for various banking transactions such as account balance, account withdrawal and deposits, fund transfer etc.
    • Easy contact to ESAF SFB customer care through service request and mailbox services.


Registration for Internet Banking

As part of easy on boarding initiative, the esteemed customers of ESAF SFB can instantly register for Internet banking Using the allocated Customer ID, the registered mobile number, Debit Card number and PIN.

  • To register for ESAF Internet Banking, please follow the following steps.
    • Log on to ______________
    • In the online banking/Internet banking section, select "Personal".
    • In the next screen, please click on the link depicting "New user".
    • In the next screen, please fill in your customer ID as provided while opening the account.
    • In the next screen, please fill in the complete Debit Card Number, Debit card expiry date in MM/YY format, Date of Birth is DD/MM/YYYY format and captcha.
    • In the next screen, please fill in the OTP sent to the registered mobile number of the account using the virtual keyboard
    • In the next screen, please choose your User ID and login password.
    • Once the new password and re-entered password is matched, the customer can start using the Internet banking services using his user ID and login password.

In case the customer does not have some or any of the required information for Internet banking registration, please visit the nearest ESAF SFB branch or contact customer care.

  • From safety perspective, ESAF SFB encourages its esteemed customer to change their Internet banking passwords at regular intervals. Please keep the following instructions in mind while creating the passwords.
    • Length of the password should be between 10 to 14 characters.
    • Password should contain at least one lowercase & one uppercase alphabet.
    • Password should contain at least one numeric character.
    • Password should contain at least one special character from the following !~^;:?=@#%${}|[]_()*,-.
    • Password should NOT contain any space between the characters.
Security features in Internet Banking

The top priority at ESAF SFB is to make Internet banking secure especially considering the convenience Internet banking provides to our esteemed customers. Hence. It is our constant endeavor to take best security measures to ensure a safe and secured experience. The key initiatives for securing Internet banking are listed below.

  • Multi factor authentication for registration: The registration process for ESAF SFB Internet banking involves the provision of multiple factors like customer ID, Debit card number and PIN, debit card expiry, date of birth and OTP. The multi factor authentication significantly reduces the compromising of customer information. ESAF SFB has completely removed paper based password mailers for registration to Internet banking both from security and convenience perspective.
  • Two Factor Authentication: All ESAF SFB Internet banking transactions, whether financial or service related, compulsorily need two factor authentication for completion. For example, whether it is a fund transfer, addition of a beneficiary or change of communication address, the second factor authentication of OTP is necessary for completing the transaction. The second factor authentication using OTP via SMS to mobile phone enhances security of Internet banking transaction in addition to removing the need of remembering multiple passwords.
  • 128 bit SSL Encryption: A high level of encryption standard is used for all our Internet Banking transactions. This ensures the information exchanged between you and the Bank is completely secure.
  • Verisign Certification: Our Internet banking services are certified by Verisign as a Verisign secure site.
  • Real time alerts: ESAF SFB sends alerts via e-mail or SMS alerts on various banking transactions, keeping our esteemed customers updated on any activities happening in your account.

To enhance Internet banking security at customer level, ESAF SFB suggests the following tips for its customers.

  • Do not access Internet from shared or unprotected computers in public places.
  • Do not share OTP with anyone, even if the person claims to be ESAF SFB official.
  • Do not close your browser while transacting on Internet banking. Always log out from your Internet banking session and close the web page.
  • Always access Internet banking using “Incognito or Private” mode of your web browser.
  • Set up SMS and/or alert for your banking transactions, irrespective of the channel.
  • Log into your Internet banking account at regular intervals and keep track of account level activity.
  • Change your Internet banking credentials at regular intervals to keep them safe.
  • Report any suspicious e-mail, SMS or phone call immediately to _______________