I was recently in Hong Kong, at the till, about to make a payment. Completely went blank as to what my PIN was. I thought, aha! There’s a reminder function in the app!
I didn’t realise that I would need to cancel the transaction, leave the shop, travel across town back to the hotel, retrieve my passport from the room safe and take a selfie before a PIN reminder will be released. I get that you want to maintain security (less said about recent issues the better…) but this is an onerous method. Other apps, like MBNA, Barclaycard etc have a pretty straightforward way of dealing with this. Why is Monzo making it so difficult?
Needless to say, I didn’t use Monzo for the transaction and had to incur huge foreign transaction fees from Amex. (Who also have a very simple PIN reminder function on their app, now I think of it)
I keep toying with fully moving over to Monzo but then little things like this crop up to remind me why I don’t.
Other banks have a whole song and dance about logging into their apps and automatically log you out after so long. Monzo don’t do this so in app actions need to be more secure
I wouldn’t call needing a fingerprint or a PIN a song and dance to access a banking app. It’s financial data, not a game. If my phone was stolen, at least the accounts where my money really is stored is safe and it’s only my Monzo account that gets emptied by the thief.
Let me think of a scenario. My bag has been stolen. In it are all the things a clever thief needs to acces my Monzo account: ID, a hastily scribbled down PIN cos of the song and dance to retrieve it, the bank card, a phone with an unlocked banking app that will easily display all my financial data. Phones are not unhackable and are easier to access than you may wish to believe. My Monzo account will be emptied before any others.
Tapping on ‘PIN & card number’ under the card then shows a choice, one of which is ‘Get a PIN reminder’. Tapping on that then asks for a fingerprint (because my settings have fingerprint for authentication enabled) and when my fingerprint is recognised, my PIN is shown.
Tried on both Personal & Joint accounts 5 times in a row each (in case multiple attempts invoke some sort of lockout) - no problem experienced.
Turned off fingerprint-for-auth and retried; I also get the same request for CVV, but no selfie request.
Maybe it could be the geographical location issue. I’m overseas in 5 days and could try then.
EDIT Just re-read post above - it answers the question. No CVV provided = request for selfie.
I’m happy with this level of security and access but @fluffymitten I wouldn’t be happy with yours - do you have a way to secure your device further (fingerprint)?
On my app, I am asked for the 3 digits off the back of a card and then a selfie video while holding ID. I am back in UK, this is the same behaviour as when I was in HK.
I have never been prompted to associate my fingerprint with my account. Cannot see where in the settings I can do this.
App version 2.59.1 (2 August) on Android 9. Play is not presenting a 2.60 for me to download.
