I want. And I want it Now.

Make payments the easy way with your own online banking details – fast and direct.

Safety with SOFORT

SOFORT is one of the safest payment methods on the Internet. And why is that? With SOFORT you use your secure online banking.

  • Entry of your online banking details and of the confirmation code, occurs entirely in the secure payment form of SOFORT GmbH, where the merchant has no access.
  • Sensitive information (like confidential login details and confirmation code) is not stored.
  • SOFORT GmbH possesses the TÜV seal “Approved Data Protection” and SOFORT has the certificate “Approved Payment System“ awarded by TÜV Saarland.
tuev-logos

The secure path for your information

Online shop

The relevant information from the online shop is automatically carried over in the secure payment form of SOFORT GmbH and entered into the electronic transfer form (shop name, account number and sort code of the recipient, payment reference, purchase amount).

131025-Datenflow-SUe-1-vh

SOFORT GmbH

SOFORT GmbH transmits to your bank the information displayed in the transfer form. Your confidential login details and your “one-time valid” confirmation code are not stored by SOFORT, but transmitted to your bank via an encrypted connection that complies with banking standards. 

131025-Datenflow-SUe-2-vh

Bank

SOFORT sends the merchant confirmation that the transfer has been initiated. The bank remits the money of the purchase to the merchant.

131025-Datenflow-SUe-3-vh

Frequently asked questions

You have questions about the security of SOFORT?

How secure is SOFORT and how reputable is it?

In all matters concerning money, security must have the highest priority. That's why we designed SOFORT as one of the safest online payment systems. With SOFORT you use the classic online banking procedure. In particular, the confirmation code offers a high degree of protection from misuse, because it can be used only once and then immediately becomes invalid. Entry of your online banking login details and the relevant confirmation code occurs exclusively in the secure payment form of SOFORT GmbH and not on the merchant's website. This ensures that the merchant does not gain access to sensitive information (such as confidential login details and confirmation code). The transfer of data occurs only via connections secured with up to AES 256 bits. SOFORT GmbH itself does not store any sensitive information like confidential login details and confirmation code, but carries out the transaction solely as a technical service provider. The confidential online banking details and confirmation code are never visible to third parties or the employees of SOFORT GmbH. To ensure the security of your information at all times, we rely not only on our own expertise. TÜV Saarland regularly tests and certifies our procedures.

Have there been cases of fraud with SOFORT?

Since the inception of this payment method in 2005, in more than 50 million transactions, no customer who entered their confidential login details and confirmation code in the SOFORT GmbH system has ever fallen victim to a case of a fraud.
We are so confident of the security of SOFORT, the SOFORT GmbH commits itself to reimbursing end customers, who enter their confidential online banking login details and confirmation codes into our system, of any financial loss which might occur to the end customer from the misuse of his/her confidential online banking login details and confirmation codes routed via our system. The SOFORT GmbH will pay the amount reciprocally and simultaneously against cession of any claims by the end customer against third parties. In addition, the end user is obliged to provide SOFORT GmbH with all the necessary information pertaining to the pursuit of the matter, and to register an official complaint. The claim is not limited to any specific amount, however, it is not to exceed the amount to which damages occurred as a result of the misuse of the stolen confidential online banking login details and confirmation codes.

Are my sensitive online banking login details such as confidential login details and confirmation code stored by SOFORT GmbH?

No! Confidential login details and confirmation code are not stored and are never visible to third parties or to employees of SOFORT GmbH. This is no false promise, because we place our own compliance with data privacy regulations under close scrutiny. The TÜV Saarland regularly evaluates and certifies our procedures according to the guidelines of federal German data-protection law.

Does the merchant have access to my account or my login details?

Certainly not! At no time does the merchant have access to your sensitive online banking details (such as confidential login details and confirmation code), which you enter into our encrypted payment form. Under no circumstances does the merchant have access to your account.

Does SOFORT GmbH have access to my account or my login details?

In order to carry out the transaction, SOFORT GmbH necessarily requires one-time access to your account. In this respect, SOFORT GmbH functions as a technical service provider that transmits to your bank the information you put into the secure payment form via an encrypted connection. The SOFORT system is a multi-banking software tool, used to operate your online banking.

How do I know this is the secure SOFORT GmbH payment form and not a phishing attack?

“Phishing” mean attempts by third parties to gain and misappropriate sensitive personal information (e.g. user ID, password, confirmation code, credit card number) from recipients of e.g. “phishing emails”. These emails are imitations of those from trustworthy sources and, via a link contained in the email, seek to lead the recipient to a fraudulent website. At such a website (which in turn is also an imitation of the website of a trustworthy company), the victim is asked to provide personal information.
With the help of the following characteristics, you can check the authenticity of SOFORT:
1) The Internet address (URL) must begin with https://www.sofort.com/ (this means you are using the secure SOFORT payment form).
2) By clicking on the security certificate of SOFORT GmbH – in green, at the beginning of the URL – you can see that SOFORT GmbH is the owner of the certificate. The lock symbol confirms that the connection is secure. SOFORT carries out data transfers via secured SSL connections.

Is it true that the general terms & conditions of the banks prohibit the disclosure of online banking login details and confirmation codes?

The assertion of a breach of the general terms & conditions (prohibition of disclosure of confidential login details and confirmation code to third parties) is not correct. The German Federal Cartel Office (Bundeskartellamt) made its position clear in February 2011. It deemed general terms & conditions of German banks, or their interpretation, which prohibits the use of SOFORT to violate cartel law and called upon the banks to enable non-discriminatory access for online payment systems that are independent of banks, such as SOFORT. The banks have agreed not to claim publicly that users of SOFORT were in breach of the banks' general terms & conditions.

This may also interest you

sag-partner

How it works

Discover and test SOFORT step by step with no obligation: a demonstration will help you. Find out how SOFORT works.

sue-kaeufer

Online shops

Discover our most popular merchants and service providers who offer SOFORT. Your favourite shop is sure to be among the list of online shops.