Security that meets Swiss standards

The Swiss banks involved in TWINT guarantee the strongest possible security and data protection.

    What we do What you can do What you can do Data Privacy App Store FAQ Support Download

What we do

Protected access

Protected access

Your TWINT app is protected with a PIN, Touch ID or Face ID. If you lose your smartphone, you can contact us and have your TWINT account blocked at any time.

Contact us

Secure transactions

Secure transactions

TWINT is as secure as e-banking. The money is not stored directly on the smartphone. All transactions take place in a secure environment.

Comprehensive data protection

Comprehensive data protection

TWINT stores all personal data at a secure location in Switzerland. Good to know: TWINT AG shall never disclose this personal data to business customers and/or third parties without the express approval of customers in the TWINT app.

More information


What you can do

In addition to what we do for the security of your data, you can also make your own contribution. Here we show you some tips and tricks to ensure maximum security.

How secure are transactions with TWINT?

The banks involved in TWINT guarantee the highest level of security and data protection. Information on everything that we do to ensure your security can be found here.

What should I pay attention to when sending and receiving money?

  • TWINT allows you to quickly and securely send money to friends and your family. Never validate a TWINT payment if you do not know the recipient. If you are asked to initiate a payment to a private individual, do not validate the payment unless you are expecting this request for money. Check the recipient’s details carefully to ensure that the payment is sent to the right person. Do not always trust the information provided in the message field of the request for money. This is not part of the payment process and is only used for communication purposes.
  • When sending money, make sure to use the contacts in your contact list and check that the information you have entered is correct. When making a payment, use the person’s real name and not their nickname.
  • If you are not sure whether you have the right phone number for a person, it is safer if you ask them to send you a request for money instead of you sending them the money directly. This way, you can make sure that the money is sent to the right recipient.
  • Sending money to your friends and family cannot be initiated with a QR code. To send money via TWINT, you need the telephone number and the name of the recipient.
  • Do not pay any money to private individuals via QR or payment code. These payment options are only offered by retail shops and merchants.
  • The “Send money”, “Request money” and “Request and split” functions are only intended for private use between friends and family members. Do not use this function to purchase goods and services from unknown providers. If you would like to use this function to purchase goods or services, particularly from people you do not know, please proceed with caution and review the payment recipient carefully. Such transactions may involve attempted fraud.
  • When paying in online shops, only use QR and payment codes from trusted sources and before paying, always review the payment recipient carefully.
  • Never use the ‘Release Money’ functionality to initiate payments. This function is only designed to transfer your TWINT prepaid credit to your personal bank account.

What should I pay attention to when making payments in online shops?

  • Make sure you’re on the right online shop by carefully checking the domain name. Check the URL in the address bar of your browser at the top of the screen.
  • The “Send and receive money” function is only intended for private use between friends and family. If you would like to use this function to purchase goods or services, particularly from people you do not know, please proceed with caution and review the payment recipient carefully. Such transactions may involve attempted fraud.
  • Don’t supply any details or information on websites that are untrusted.
  • Always protect your username and password on all websites and never disclose these to third parties.
  • In case you have multiple TWINT apps installed on your phone, make sure you’re selecting the right app to make the payment when the phone switches from the online store to the payment application.

Which details should I check regularly in the TWINT app?

  • The default TWINT app and the associated credit account for money received from TWINT users if you have multiple TWINT apps and accounts. Received amounts can only be paid into one individual account. Money can only be received by one TWINT account at any one time.
  • The list of merchants for whom you have saved TWINT as your payment method.
  • Your saved loyalty membership cards. Make sure these are updated and that the details are correct.

Additional Tips

  • TWINT will never contact you by e-mail, SMS, telephone or post to ask you for financial information or your passwords. The only exception to this rule is when you contact our Support team, as they will require this information in order to verify your identity.
  • TWINT is only available as an app for iOS and Android. There is no web login for TWINT private customers or a desktop app. Please therefore be sceptical towards would-be TWINT websites that prompt you to enter confidential data such as passwords.
  • Never disclose your login details to third parties.
  • Please keep in mind that e-mail senders can be easily falsified and never click any links in e-mails that seem suspicious.
  • Be sceptical if you receive any e-mails that exert pressure on you to complete an action within a limited period of time or otherwise threaten you with negative consequences. Fraudsters and scammers can, for example, exploit current events, emergencies and political situations to contact you and request payments. Should you receive such e-mails, make sure to check the sender details carefully each time. If you are ever unsure whether a message is genuine or has really been sent to you by TWINT, please contact our Customer Service.
  • Only download the TWINT app from the Apple App Store or the Google Play Store.
  • Report suspicious e-mails relevant to TWINT to privacy@twint.ch.

Data Privacy

TWINT attaches great importance to data protection and transparency. We would like to take this opportunity to provide users with a brief explanation of what data we store and for what purposes it is used. The GTCs accepted upon installing the app are legally binding.

Find out more


App Store

The App Store now includes specific categories on the topic of data protection. TWINT has consciously interpreted the category definitions requested by Apple in a broad manner in order to be as transparent as possible for users. However, only the data required to use the app and to make transactions will be used, as explained below:

Purchased items
‘Purchased items’ refers to statement entries that are displayed in the TWINT app. The content is restricted to the actual transaction overview. TWINT ‘sees’ neither the shopping basket nor any other data and thus cannot collect this information.

Financial information
‘Financial information’ refers to the data required to process a TWINT transaction (so that the counterparty knows which account has to be charged or credited). This data is processed by TWINT albeit in a manner that ensures the data is masked out (see also ‘Identifiers’) in order to guarantee maximum data privacy. At no time whatsoever do parties other than the bank that released the respective TWINT app have access to or can view account-specific information.

Location sharing
‘Location sharing’ must be enabled for all applications that use Bluetooth (payments via Beacon are carried out with the aid of Bluetooth). In theory, the location can be identified from the position of the Beacon, but it is not saved or reused by TWINT.

User content
‘User content’ refers to the content created by the user and sent within ‘send and receive money’ transactions (e.g. text or an image).

Browser history
‘Browser history’ comprises solely the activities required to execute transactions while using TWINT+ in the smartphone browser. No other general browser data is collected beyond that.

Identifiers
‘Identifiers’ refer to TWINT-specific user identifiers (ID). A unique ID is created for every TWINT user upon registration and this is then used to regulate access to the TWINT account. These IDs allow TWINT to implement maximum data privacy, as they ensure that personal data does not have to be used.

Diagnostic/usage data
‘Diagnostic’ data consists of operational data, such as the response time of an app, communication times with the server, and the data that is recorded in the event of an error (e.g. in the event that the app crashes). This data is used to identify errors and to optimise the TWINT app accordingly. The same also holds true for ‘usage data’ that allows us to optimise the app. This data is also solely operational data concerning the processes within the app (e.g. how quickly a registration process is carried out, whether interruptions will be caused, etc.).


FAQ

Have you forgotten your TWINT PIN / your TWINT password or would you like to receive more information about security of the TWINT app? Please visit our FAQ area.

To the FAQ

Download TWINT app

It does not matter who you bank with: TWINT is available to everybody. Ideally, you should select the TWINT app of a bank with which you have an account. This will allow you to link the app to your bank account.