2024-11-25 | Awas Modus

Safe QRIS Transaction Tips to Avoid Fraud

QRIS (Quick Response Code Indonesian Standard) transactions have become super popular for digital payment.

They’re convenient, quick, and pretty reliable. Developed by Bank Indonesia (BI) and the Indonesian Payment System Association (ASPI), QRIS is widely accepted by various merchants, from retail stores to cafes. 

Customers no longer need to carry large amounts of cash or worry about forgetting their ATM cards. As long as they have a cellphone, access to banking services, and internet connectivity, transactions can be made easily.

Tips for Safe Transactions with QRIS

Even though QRIS is easy to use, it’s important to stay alert about potential fraud. Here are some simple tips to help keep your QRIS transactions safe.

1. Make sure the QRIS Code is Official from Bank Indonesia

Before scanning, double-check that QRIS code is legit and from Bank Indonesia. Look for these signs:

  • The logo and company details should be around the QR code
  • The colors and design must match the official standard – like the red and white usually seen with Bank Indonesia codes 
  • The website link on the QRIS should be valid
  • The name of the merchanton the QR code should match the one that appears when you’re actually making the payment 
  • There should be a footer with the NNS (National Number System) code and the print version date

Official static QRIS codes usually show up on acrylic tent cards at the cashier or on tables. Be careful if a QRIS code looks messed with – it might be fake and could try to steal your personal info.

2. Scan QRIS codes with payment apps only

You can only scan real QRIS codes with payment apps like mobile banking or e-wallets from banks or other financial companies.

Payment app scanners will not recognize fake QRIS codes that include links, and scanning these will show an invalid response.If you are prompted to enter your username, password, or any other personal credentials, it is a fake QRIS. Do not enter your personal information in any links.

3. The QRIS code does not contain links for entering personal data

When scanned, an official QRIS code will display the store or merchant name, the name of the bank or non-bank institution associated with the merchant, the fund source account, and the transaction amount that needs to be filled in (for Static QRIS). In contrast, the transaction amount is automatically shown on the dynamic QRIS (generated by the machine at the time of the transaction).

An official QRIS code does not contain links; rather, it includes a payment string that can only be scanned by a payment application. Remember, an official QRIS code will never ask for personal banking information through links.

4. Mobile phone camera apps are not suitable for scanning QRIS codes

The official QRIS code cannot be processed using a mobile phone camera application, as it will only read the code as text. Avoid using a mobile phone camera to make QRIS payments as scammers may exploit this method, especially if the code contains a link requesting personal banking information.

Here are four tips for safe transactions using QRIS to help you avoid fake QRIS scams that include phishing links.

Use myBCA for Convenience and Ease

To make your QRIS transactions more convenient and easy, consider using the myBCA app. Follow these steps in myBCA for secure transactions:

  • Always ensure that the QRIS code you are using is official.
  • Easily verify the name of the recipient of the funds. 
  • Double-check that the payment is correct and accurate. 
  • Receive fast and real-time transaction confirmations.

By following these steps, we as QRIS users can feel more secure and minimize the risk of fraud.

Let’s start being vigilant against fraud now. to stay updated on current banking fraud methods, regularly visit bca.id/awasmodus!