Close

Safety

Digital security is more important than ever. Whether you're just starting with bitcoin or have been active for some time, the tips below will help you trade safely and protect yourself against fraud, scams and digital attacks.

Never share your account information

Never share your account details, such as your password, two-factor authentication code (2FA) or other confidential login credentials with others. Not even with Bitonic, banks, friends or family. You may sometimes be asked for certain information for verification, but you will never be asked for your password or 2FA code.

Bitonic will also never ask you to transfer money or bitcoin to another account or address, for example due to a so-called "security incident". We will never pressure you to act immediately or ask you to install software.

Safety tip: If we need to contact you, we will only do so via our official and secure communication channels. Did you receive a suspicious request or are you unsure about something? Always contact us directly.

Use only trusted platforms

Always choose a party that complies with Dutch regulations and (in the case of bitcoin companies) is registered with De Nederlandsche Bank (DNB). Check if the website has a valid SSL certificate (https:// in the URL) and preferably use bookmarks to avoid phishing. When in doubt, search for the platform's name combined with "reviews" or "experiences".

Payment requests? Always double-check

Received a payment request via WhatsApp, Telegram, SMS or email from someone you know? Call or speak to them personally before paying. Criminals use fake requests to purchase bitcoin via your account. They may also pose as Bitonic. We never send payment requests through social media or chat apps.

Safety tip: Got a message from someone you know asking for money? Never pay before confirming in person.

Don't let yourself be pressured

Scammers sometimes pretend to be employees of a bank, bitcoin company or a government agency. They claim you need to pay immediately to keep your account or avoid a fine. Don't be intimidated and end the conversation.

Safety tip: If in doubt, always call your bank or bitcoin company directly, never the phone number provided by a scammer.

Check the transfer

Always check if an IBAN starts with "NL". If not, it may be a foreign or anonymous account. Only pay to accounts with a name matching the business or seller. For bitcoin payments, use a block explorer like mempool.space to check if an address has been used before. A frequently used address may indicate fraud.

Check the iDEAL payment description

The beneficiary of an iDEAL payment should make sense (e.g. Stichting Bitonic Payments). Always check carefully before confirming. Some payment providers process payments for multiple merchants. Make sure the name can be traced back to the product or service.

Safety tip: See the DNB website for licensed payment providers.

Spot fake webshops and ads

Watch out for:

  • Unrealistically low prices.
  • Webshops that only accept bitcoin or unfamiliar payment methods.
  • Sites without clear contact details or customer service.
  • Broker scams that promise guaranteed or unrealistic returns, often shown in fake account dashboards.

Check whether a webshop is considered trustworthy via ScamAdviser and always look for reviews before buying.

Use strong passwords and 2FA

Secure your accounts with:

Strong passwords

Use a unique and strong password for every account. Avoid using personal details like names or birthdates, anniversaries or names and never reuse the same password.

A password manager can help you generate and store strong passwords securely. Trusted options like 1Password, Keeper or KeePass encrypt your passwords, but they are not foolproof especially if they store data in the cloud. Always use a strong master password and enable 2FA on your password manager.

Passkeys are a newer and more secure alternative to traditional passwords. They let you log in using biometrics or a trusted device, making them harder to steal and easier to use. Enable them where possible to increase your account security.

Two-factor authentication (2FA)

Protect your accounts with 2FA to add an extra layer of security beyond your password. Use an authenticator app (like Google Authenticator or 2FAS) rather than SMS, as SMS is vulnerable to SIM swaps. A physical U2F key like a YubiKey is even more secure. Link your U2F key to your key accounts, such as email and your password manager.

Safety tip: Take time to read laatjeniethackmaken.nl (Dutch) to become more aware and secure online.

Phishing and ransomware: don't just click

Never click on links in emails or on social media. Carefully check sender addresses and URLs for subtle differences. Do not open attachments or links from unknown senders. Be sceptical and trust your intuition. Make offline backups of important files and always keep your software up to date. Always visit important websites, such as Bitonic, via a bookmark or by typing the URL manually.

If you do make a mistake, ransomware can encrypt your files and demand a ransom (often in bitcoin). At nomoreransom.org you can download free decryption tools for many common ransomware types. Can't recover your files? Contact a professional cybersecurity firm like Northwave for further help.

Secure your computer

Your computer, or you as the user, is often the weakest link in your digital security. If you deal with large amounts of bitcoin or store it long-term, it's best for most people to use a battle-tested hardware wallet. Install commercial antivirus software, keep your OS up to date, turn on your firewall and use it only for essentials like wallet software or trading. Use a separate device for browsing, gaming or downloads to reduce malware risks.

Don't download anything carelessly

Never open files from unknown senders. Instead of downloading attachments directly (such as Word or PDF files), ask for a link to a cloud service like OneDrive or Nextcloud. These platforms often allow you to preview the content without downloading it, reducing the risk of malware infection. Also, disable automatic saving of images and videos in your chat apps to avoid unwanted downloads.

Keep your software up to date

Install security updates for your computer and phone as soon as possible to prevent hackers from exploiting known vulnerabilities. For wallet software, older versions may still be safe. Always check what the update includes and only download it from the official source, never from a (fake) email link from, for example, Ledger or Trezor.

Secure your email

Use a secure email provider such as ProtonMail. Create a unique email address for each service or shop to limit damage in case of a data breach and reduce phishing risks. Most email providers support aliases, which automatically create new addresses that still reach your main inbox. You can also use services like SimpleLogin to manage aliases. Enable 2FA and avoid using SMS as a recovery method.

How Bitonic helps prevent fraud

Bitonic takes various steps to help prevent fraud:

  • Identity verification: Confirming your identity.
  • Address verification: Checking if you live within the EU or EEA.
  • Bank account verification: Confirming your account with a €0.01 transfer.
  • Bitcoin address verification: Checking if you own the provided bitcoin address.
  • Cooldown period: A delay of up to one working day for a first purchase or withdrawal.
  • Fraud detection: Suspicious transactions are checked automatically and manually.

By staying alert together, we make bitcoin safer for everyone.

Not sure? Get in touch

Bitonic is happy to help if you're unsure about a suspicious situation. Call us on +31 (0)20 226 5289 or email fraude@bitonic.nl.

Have you been a victim? Gather all information (e.g. chats, ads and payment details) and always report it via politie.nl.

More information about reporting cybercrime can be found on the Dutch government website.

By following these guidelines, you significantly reduce the risk of fraud. Bitonic is ready to help. Together, we make bitcoin safer for everyone.

Live Chat Consent

The live chat is a service provided by MessageBird B.V. which is (a.o.) subject to the EU General Data Protection Regulation (GDPR) and states they do not use your data for commercial gain. In order to load the Live Chat we ask you to consent to the processing of any data shared with us using the chat. By closing this window without giving consent the chat will not load and no data will be shared.
For more information please review the MessageBird Privacy Policy.