ID and token - mBank CompanyNet

ID or alias are technical names of the Client’s employee who is a user of the CompanyNet platform. They should, therefore, be considered confidential and used exclusively when logging in to the system and in the correspondence with mBank. The ID should not be disclosed to unauthorised persons by e-mail or phone. To ensure top security, user authentication during logging in and transaction authorisation requires the use of a device called a Token or of a certificate.


To ensure top security, user authentication during logging in and transaction authorisation requires the use of a device called a Token or of a certificate. 


Each Token is protected with a four-digit PIN code defined individually by the user. Neither the Token nor the PIN should be disclosed to third parties. One-off password generated by means of a Token is the user's signature. Please note that the password should be given exclusively when logging in to the system and authorising orders within the CompanyNet platform.

Generated one-off password is displayed on the Token screen for a maximum of 30 seconds. The password may be used only once. If you generate ten Token passwords in a row and do not successfully complete the authentication process, the Token will desynchronise. In such a case it will be impossible to log in to the CompanyNet platform. In order to work on the CompanyNet platform again, you need to contact the Contact center. During the conversation, follow the Bank employee’s guidelines.

Your token will be permanently and irreversibly blocked if you enter an incorrect PIN code three times.

If a token is lost or stolen, you should immediately report it:

  • to the Contact center, by calling the number:
    • 801 273 273 in the case of calls from landlines (the call fee is an equivalent of one impulse of connection irrespective of the length of the call) or
    • 22 6 273 273 for international and mobile calls (the call fee is in line with the operator's tariff)
  • in person, at the nearest mBank Corporate Branch

An alternative to logging in to the CompanyNet platform or signing orders using passwords generated by a Token is a Certificate. The CompanyNet platform allows you to use qualified certificates offered by chosen providers. The list of accepted certificate issuers can be found on the site describing the qualified Certificate. The Certificates used within the CompanyNet platform are electronic signatures. A Certificate is stored on a card with an electronic chip and the access to the Certificate is secured by a personal password of the person for whom the Certificate was issued. Neither the card nor the password should be disclosed to third parties. Please remember that the card must be unlocked with a password during each logging in and authorisation of orders within the CompanyNet platform.