Identity verification in Croatia
Croatia is a Tier-2 EU market of roughly 3.9 million people that in January 2023 became the 20th member of the euro area, bringing Hrvatska narodna banka (HNB) fully inside the ECB Single Supervisory Mechanism and the Eurosystem. The regulatory stack for identity verification and financial crime is built on four institutions: HNB (banking/AML supervision), HANFA (financial services and, since 30 D
Documents supported
(Government IDs from 220+ countries)
Average verification time
Countries covered
(Government-issued IDs validated)
Market overview
Croatia is a small but rapidly digitizing EU economy. The population sits at approximately 3.9 million, banking penetration is high (over 85% of adults have an account with a supervised credit institution), and smartphone adoption is above 85%. Zagreb is the financial and fintech hub; Split, Rijeka and Osijek host a growing number of digital-native SMEs. Household financial lives are still dominated by the seven or eight systemic banks supervised by the ECB via close cooperation until January 2023 and directly through the SSM thereafter — Zagrebačka banka (UniCredit), Privredna banka Zagreb (Intesa Sanpaolo), Erste&Steiermärkische Bank, OTP banka, Raiffeisenbank Austria, Addiko Bank and Hrvatska poštanska banka. Three developments reshape the identity-verification conversation in 2025-2026
Supported documents
Didit templates cover national IDs, passports, residence permits and regional documents — plus 14,000+ documents globally for cross-border flows.
MUP — Ministarstvo unutarnjih poslova (Ministry of Interior)
Polycarbonate card with contact chip holding 2 X.509 certificates (identification + qualified signature), photo, fingerprints of both forefingers, MRZ
Validity 5 years; 40 years for holders over 70. The eOI is eIDAS-notified and is the default primary document for both face-to-face and remote KYC. Activation via the eOI Portal at eid.hr (fir
MUP
ICAO-compliant biometric passport with contactless chip
Universal fallback, mandatory for non-resident or remote flows where chip read is preferred.
MUP
EU-format polycarbonate card
Permitted for some face-to-face KYC flows (car rental, basic age-gating) but not accepted by ZSPNFT-obliged entities as a standalone primary ID — must be paired with the osobna iskaznica or pass
Member State authorities
ICAO chip or card-format IDs
Accepted under free-movement principles; Croatian obliged entities treat them as equivalent to the osobna iskaznica for CDD.
MUP
EU-format residence card
Required to evidence legal stay; must be paired with the passport of origin.
AKD via eid.hr
Software credential derived from the eOI
Accepted by e-Građani and NIAS-connected services as a strong authentication factor; not yet a universal substitute for the physical eOI in initial KYC.
Regulators
Ured za sprječavanje pranja novca (AMLO
supervises credit institutions (banks, savings banks, housing savings banks
the Croatian Financial Services Supervisory Agency — supervises investment firms, fund managers, insurance and reinsurance undertakings, pension funds, leasing and factoring companies, and (since 30 D
Zakon o provedbi Opće uredbe o zaštiti podataka, NN 42/18
Agencija za zaštitu osobnih podataka
Ministry of Finance / Tax Administration
regulated
Personal Identification Number system. OIB assigned to all citizens and legal entities. Online verification available.
Ministry of Interior
regulated
Electronic ID card with chip. Supports electronic identification and qualified electronic signatures. eIDAS-notified.
FINA
regulated
National Identification and Authentication System. Enables electronic identification using eID card, bank credentials, or mobile. eIDAS-compliant.
Ministry of Justice
open
Business register. Free online search available.
Government & regulated databases
Compliance framework
AML framework
Supervised by Anti-Money Laundering Office
Primary AML law. Zakon o sprječavanju pranja novca i financiranja terorizma (ZSPNFT), published in Narodne novine (Official Gazette) 108/17, with amendments 39/19 and 151/22. The December 2022 amendments, adopted under urgent parliamentary procedure, transposed Directive (EU) 2018/843 (5AMLD) and adjusted the regime for virtual-asset service providers, trust and company service providers and precious-metals and gemstones dealers, all of which must now register with dedicated supervisors. Impleme
Data protection
Supervised by AZOP
- HNB conducts on-site and off-site AML inspections of credit institutions, payment institutions and EMIs, with findings published in anonymized aggregate form. Fines are levied under the ZSPNFT for failings in CDD, internal controls, record-keeping and reporting. - HANFA publishes its own AML super
Penalties for non-compliance
- Sumsub — heavy footprint among Croatian crypto exchanges and remittance firms; list-price onboarding starts around EUR 1.35/verification with volume discounting.
Use cases
Neobanks, EMIs, payment institutions, lenders, brokerages.
Croatian banks and fintechs run a remote-onboarding flow that is effectively harmonized with the EBA Guidelines on remote customer onboarding (EBA/GL/2022/15), which HNB applies. A standard flow:
Exchanges, custodians, wallets, on/off-ramps.
Since 30 December 2024, HANFA is the MiCA NCA. Flow for Croatian-established CASPs:
Sports betting, online casinos, age-gated platforms.
Croatian gambling is regulated by the Zakon o igrama na sreću (Games of Chance Act), supervised by the Ministry of Finance – Samostalni sektor za igre na sreću. The lottery monopoly rests with the state-owned Hrvatska lutrija. Private operators can obtain licences for casinos (max 20 licences), spor
Gig platforms, delivery, creator economy, e-commerce.
Marketplaces, ride-hailing, delivery and creator-economy platforms operating in Croatia that handle regulated payments through an Issuer/Acquirer or PSD2 account information service inherit the ZSPNFT obligations of their underlying payment institution. Typical risk-based flow:
Biometric liveness
Croatia does not maintain a SEPBLAC- or BaFin-style standalone "video-identification procedure" authorization. Instead, non-face-to-face CDD is governed directly by Article 17 ZSPNFT ("identifikacija i provjera identiteta bez fizičke nazočnosti stranke"), which mirrors Art. 13 of the EU AMLD and requires that the obliged entity apply additional measures to mitigate the higher risk — historically interpreted as any combination of: (a) reliance on qualified electronic signatures under Regulation (
CERTIFICATIONS
Our platform meets the highest international standards for information security, data privacy, and biometric accuracy.
Full EU data protection compliance
Information security management
PAD (liveness + face match)
TRUSTED WORLDWIDE
Join thousands of companies that trust Didit for their verification needs
Didit’s NFC + active biometrics technology blocks the most advanced fraud scenarios, offering a level of security equivalent to or superior to in-person verification.
Spanish Financial Sandbox
CNMV, SEPBLAC & Spanish Treasury — Conclusions Report
Didit is an exceptionally valuable partner, delivering a stable and highly adaptable solution”.
Vuk Adžić
Head of the E-Business Department at Crnogorski Telekom
Didit offered us a robust technology with a simple implementation and adaptability to different markets”.
Fernando Pinto
CEO & CoFounder at TucanPay
Thanks to Didit we have been able to reduce manual processes and improve data extraction accuracy”.
Diana Garcia
Trust & Safety Executive at Shiply
Didit’s integration slashed verification times and costs, freeing resources for other projects”.
Guillem Medina
COO at GBTC Finance
Didit removed KYC costs, enabling faster scaling with high verification standards and less fraud.”
Paul Martin
VP Marketing & Growth at Bondex
Didit’s secure, user-friendly verification boosts customer trust and optimizes our process.”
Cristofer Montenegro
Executive assistant to the CEO at Adelantos
Didit ensures a precise, secure digital onboarding without slowing negotiations or client time.”
Ernesto Betancourth
Gerente de riesgos at CrediDemo
FAQ
Yes. Croatia permits remote KYC onboarding under its national AML framework, including document verification, biometric liveness and video identification where required by regulation.
Didit verifies all major national IDs, passports and residence permits issued in Croatia, plus 14,000+ document types globally for cross-border flows.
Didit charges $0.30 per verification with 500 free checks per month. No contracts, no minimums. Competitors typically charge $1.00–$2.50+ per verification.
Yes. Didit screens against 1,000+ global watchlists including PEP databases, sanctions lists (EU, UN, OFAC, OFSI), and adverse media — covering all AML obligations in Croatia.
Most regulated sectors in Croatia require or strongly recommend biometric liveness detection for remote onboarding. Didit provides ISO 30107-3 PAD Level 2 certified liveness.
Yes. Didit supports document verification, liveness, AML screening and ongoing monitoring aligned with Croatia’s crypto regulatory framework, including EU Travel Rule compliance where applicable.
Yes. Didit provides document-based age verification and identity confirmation suitable for Croatia’s iGaming regulatory requirements.
500 free verifications per month. No contracts, no minimums. $0.30 per verification after the free tier.
