logo

My business Online

Support service

0 800 50 70 44

(free calls from mobile phone numbers within Ukraine)

Alfa-Bank Ukraine

https://www.alfabank.ua
© Alfa-Bank JSC (Ukraine) 2021

Useful links

“My Business Online” system safety information

To prevent the outliers' access to the client confidential information by the “My Business Online” system and to viewing data communication or modification the multilevel architecture of the safety system is used. It includes:

  • obligatory user authorization and authentication;
  • logging actions of all users in the system;
  • data exchange only through standardized interfaces;
  • safety of data link on the basis of TLS 1.2;
  • electronic signature of documents with reference to the document parameters;
  • digital signing of documents using asymmetric algorithms;
  • digital signing of client’s informational requests using asymmetric algorithms;
  • control of user rights to access system objects.

Every “My Business Online” system user is a guarantor and a component of the security system and must observe the following rules:

  • Never tell anyone your login and password;
  • Do not give your mobile device, that is used for receiving OTP codes from the bank, for use to other persons;
  • Save your private key on an external media device (flash card, security token, etc.);
  • Do not keep an external media device containing your private key together with your login and passwords;
  • Use the “Exit” button to finish the session;
  • Do not forget to retrieve the external media device as soon as you finish the operation with the “My Business Online” system;
  • Follow other bank recommendations as for providing security and integrity of information when operating with the “My Business Online” system.

Never tell anyone your password and login

The “My Business Online” system identifies a user by their login, system password, private key and its password or OTP code. To prevent an illegal access to your confidential information do not disclose your credentials to other persons.

The bank (depending on the chosen method of system operations verification) provides each user with:

  • login – user name;
  • password – password for entering into the system;
  • private key (in case of operations confirmation by digital sign)
    or
  • OTP code to confirm each single operation in the system (in case of operations confirmation by electronic sign).

When you login for the first time with these essentials the “My Business Online” system automatically initiates the process of generation of new private key (in case of operations confirmation by digital sign). For safety considerations change of password is required.

Later on the “My Business Online” system from time to time insistently advises a user to generate a new private key on the expiry of the previous one.

The “My Business Online” system registers all attempts to change or to guess the login password.

Save your private key on an external media device (flash card, security token, etc.).

The private key will be generated during your first login.

Keeping this information on the external media device ensures not only protection of your confidential information in the “My Business Online” system but also assures the safety of private keys at sudden failures of your computer.

At the generation/regeneration of the private key it’s necessary to specify the path to the media device from which the primary data was read.

Do not keep the external media device with your private key together with login and passwords

Do not keep the external media device with your private key together with login and passwords. In case of loss other people can use this information for their needs.

Use the «Exit» button to finish the system session

If you are distracted from the computer when the system is running without logging out, an outlier may be provoked to use the situation …

Do not forget to extract the external media device as soon as you finish working with the system

Do not forget to extract the external media device as soon as you finish working with the “My Business Online” system – this information may be used by unauthorized persons, it may be irretrievably lost or damaged when using other applications.

Use other recommendations as for protection of your information security while working with the system

Developers do not recommend a user to work with the “My Business Online”:

  • in internet cafes and other places of the kind where there is no guarantee that user actions are not followed by outliers;
  • in places with visual inspection units using which it's possible to get the password information;
  • if you are not confident in the used software safety (presence of viruses, programs that send password information to unauthorized people etc).

Additional information on the “My Business Online” system safety:

  • Providing security while operating via the internet;
  • User rights.

Providing security while operating via the internet

The security of data exchange while operating via the internet is assured by accurate mutual authentication of data exchange participants.

The client application sends to the server a connection request which is signed with the digital signature (or electronic signature) of the user; after that the crypto-safety libraries form required private parameters and keys and confirm setting a connection. So, every connection has its unique parameters and makes it possible to identify data exchange participants definitely.

The data exchange can be launched only after the establishment of cryptographic connection between “Client” and “Server” units. All the data exchange between the client and the system server, including sending to the server the client authentic authorities (passwords) for registration and access to the data and operations, is performed in the encrypted mode. Operations of the data encryption/decryption are provided by the crypto safety libraries and performed on the application layer during the data preparation for sending to the bank.

User rights

Subject to the mode of operation mentioned in the agreement for the connection and service of the “My Business Online” system client, a user may be provided with a full or restricted access to the system menu, accounts, and rights for carrying out operations or for viewing information only.

The limitation of rights may be also stipulated. For example, a user has the right to prepare documents but not to sign them.

To change the user rights it’s necessary to contact the system administrator in the bank.

Before you started working with the “My Business Online” system, you were given the login and the first-time password by the electronic communication channels.

If you do not have electronic messages with the credentials, please, contact the “My Business Online” system administrator on the telephone number specified in the bottom left corner of the login page, in order to define your account parameters.

Forgot your login password?

Attention! If the password you entered appeared to be invalid do not try to guess it, this will result in blocking of your account. If the password is invalid contact the “My Business Online” system administrator at the number specified in the bottom left corner of the login page in order they provide you with a temporary password. After logging in using a temporary password you will be able to change it for more convenient. For this in the menu select Settings, from the list of available operations switch to the Change password form, in the Current password field enter a temporary password provided by the administrator, in the New password field enter the desired password that will be used for loggin into the system.

Forgot your private key password?

Attention! If the password you entered appeared to be invalid do not try to guess it, this will result in blocking of your account. If the private key password is invalid contact the “My Business Online” system administrator at the number specified in the bottom left corner of the login page in order they provide you with a rescue password. After that you should start the procedure of certificate recovery:

  1. Enter a rescue password provided by the administrator;
  2. Fill in the application form, click the 'Next' button;
  3. In the next form you should view and print the generated certificate, only then it will be possible to send the request to the bank - click the 'Send' button;
  4. The request will be sent to the bank so that the system administrator authorizes new certificates and keys;
  5. To check the availability of new certificates try to login again later: enter your login and login password, select the same folder; on the next page enter a rescue password:
    • If the certificates are authorized the system will display a message about a successful recovery of certificates and will offer to install new certificates - for this you will have to enter a rescue password once again;
    • If the certificates are not authorized yet the system will inform you that the request is still in a queue for approval. In this case you need to try again later.
  6. After successful authorization and saving of new certificates you should use them for the further operation with the system.

Lost private key files?

In case of losing private keys or certificates you have to contact the “My Business Online” system administrator at the number specified in the bottom left corner of the login page in order they provide you with a rescue password required for the procedure of certificate recovery. Then you can start generation of request for new certificates and keys:

  1. On the login page enter your login and password, select a folder for saving new certificates and keys. Please, make sure that the folder does not contain files of certificates and private keys. It's recommended that you first create a new folder for storing certificates and keys;
  2. If the folder does not contain operating certificates, the system will offer to regenerate certificates and keys. For that you will have to enter a rescue password provided by the system administrator;
  3. Fill in an application in which you'll be able to specify a new private key password for future use. Click on 'Next';
  4. In the next window you should view and print a generated certificate, only then it will be possible to send it to the bank - click on 'Send';
  5. The request will be sent to the bank so that the system administrator authorizes new certificates and keys. To check the availability of new certificates try to login again later: enter your login and login password, select the same folder; on the next page enter a rescue password:
    • If the certificates are authorized the system will display a message about a successful recovery of certificates and will offer to install new certificates - for this you will have to enter a rescue password once again;
    • If certificates are not authorized yet the system will inform you that the request is still in a queue for approval. In this case you need to try again later.
  6. After successful authorization and saving of new certificates you should use them for further connection and operation with the system.

Possible reasons:

How to clear browser’s cache

For Google Chrome:

  • press Ctrl + Shift + Delete key combination
  • the 'Clear browsing data' window will appear, select 'the beginning of time' from the drop-down list
  • check the 'Cached images and files' box and click 'Clear browsing data'

For Opera:

  • press Ctrl + Shift + Delete key combination
  • the 'Clear browsing data' window will appear, select 'the beginning of time' from the drop-down list
  • check the 'Empty the cache' box and click 'Clear browsing data'

For Firefox

  • press Ctrl + Shift + Delete key combination
  • the 'Clear recent history' window will appear, select 'Everything' from the drop-down list
  • check the 'Cache' box and click 'Clear now'

For IE

  • in the browser menu select the 'Tools' item (to activate this menu press the Alt button)
  • in the appeared menu select the 'Delete browsing history' item
  • the 'Delete browsing history' window will appear, check the 'Temporary Internet files and website files' and make sure that all the other boxes are unchecked
  • click 'Delete' to finish the process

How to delete temporary files using Java control panel:

  • click 'Start' – 'Control panel' – 'Java';
  • in the Java control panel go to the 'General' tab and click the 'Settings' button in the 'Temporary Internet files' area;
  • the 'Temporary Files Settings' dialog window will be displayed;
  • click the 'Delete files' button in the 'Temporary Files Settings' dialog window;
  • the 'Delete Files and Applications' dialog window will be displayed;
  • click 'OK'. After this all loaded applications and files will be deleted from the cache;
  • click 'OK' in the 'Temporary Files Settings' dialog window. If you need to delete a certain application or an applet from the cache click either 'Applet view' or 'Application view'

How to update/install Java plug-in

  • follow the link https://java.com/en/download/
  • click the 'Free Java download' button
  • on the next page click the 'Agree and Start Free Download' button
  • then run the downloaded file and follow the installer instructions.