Russian banks employ two‑factor authentication (2FA) via SMS, email or authenticator apps to protect foreign account holders. Many institutions also offer biometric login (fingerprint or facial recognition) through their mobile apps. For high‑value transfers, a one‑time password (OTP) is sent to a registered Russian phone number, requiring expatriates to maintain a local SIM. Banks comply with FATCA and CRS regulations, meaning they may request additional tax‑resident documentation from foreign clients.