IBAN manipulation by email
A classic CEO fraud arrives as ‘please use the new bank account from now on'. Without verification, nobody notices.
For finance teams
Before 80,000 euros go to the wrong account.
One changed IBAN, one quick approval – and the money is gone. SigID checks every new or changed bank account against the verified supplier. With Trust App confirmation and proof in black on white.
First 50 checks/month free · GDPR · Made in Germany · Proof per action
Compliance & hosting
The challenge
One forged IBAN, one rushed approval — and the money is gone.
Finance teams see invoices with new bank details every day. Who checks if the IBAN is real? Who is liable when the transfer ends up in a fraud account?
Four-eye principle on paper only
The second approval click happens in passing. There is no technical proof that anyone really reviewed it.
No audit trail for review
When the auditor asks who approved what when, only ERP logs without cryptographic proof are available.
How SigID solves it
Four steps — and not a cent leaves the account without a verified IBAN.
The finance team stays in control. The Trust Layer delivers the proof.
Import invoice
Via ERP connector, upload or mailbox. SigID detects supplier, amount and IBAN automatically.
Match IBAN against membership
Is the IBAN already linked to the supplier? If not, verification starts in the Trust App.
Four-eye signature
Two authorised people sign in the Trust App — via passkey, with dynamic linking on amount and IBAN.
Audit ID back to the ERP
The approval lands as an audit ID in the ERP. Re-verification is possible at any time — also by external auditors.
Example scenarios
How a finance workflow with SigID looks.
IBAN change for a key supplier
“Supplier reports new bank details. SigID opens a challenge in the Trust App, both managing director and accountant sign. Only then does the new IBAN become active.”
Example scenario · Mid-size company, 50 employees
- Verification time
- ≤ 5 min
- Four-eye principle
- 2 signatures
Example scenarios based on module functionality. SigID is pre-launch — no real customers yet.
FAQ finance
What finance teams often ask.
Which ERPs are supported?
Connectors for DATEV, SAP, Sage and Lexware are in the works. For custom systems there is a REST API with idempotency keys and webhooks.How does SigID know which IBAN is real?
The IBAN is signed by the responsible owner during supplier onboarding in the Trust App — as a membership record. Later changes require a fresh Trust App signature.Does the four-eye principle work for smaller teams too?
Yes. You define the second authorisation — owner, tax advisor or a second accountant. Above thresholds, the principle kicks in automatically.What does the auditor get?
An audit ID per approved transaction. With it, the approval can be re-verified independently in the SigID Trust Center — no new logins required.Do we still need to keep the PDFs?
No. Document Proof stores the hash and the metadata. Statutory retention obligations for the invoice itself remain with your tax advisor.
IBAN protection that replaces gut feeling.
Start free with the finance module. First invoice verified in under 5 minutes.
- DSGVO-konform
- eIDAS-bereit
- Made in Germany