diff --git a/enrollment-server-onboarding/src/main/java/com/wultra/app/onboardingserver/impl/service/PresenceCheckLimitService.java b/enrollment-server-onboarding/src/main/java/com/wultra/app/onboardingserver/impl/service/PresenceCheckLimitService.java
index 9ab5dbc43..3506c3418 100644
--- a/enrollment-server-onboarding/src/main/java/com/wultra/app/onboardingserver/impl/service/PresenceCheckLimitService.java
+++ b/enrollment-server-onboarding/src/main/java/com/wultra/app/onboardingserver/impl/service/PresenceCheckLimitService.java
@@ -101,7 +101,7 @@ public PresenceCheckLimitService(
     public void checkPresenceCheckMaxAttemptLimit(OwnerId ownerId, String processId) throws IdentityVerificationException, PresenceCheckLimitException, RemoteCommunicationException {
         final int otpCount = otpRepository.countByProcessIdAndType(processId, OtpType.USER_VERIFICATION);
         // TODO (racansky, 2022-10-20, #453) OTP verification could be turned off, logic should be based on another data
-        if (otpCount > identityVerificationConfig.getPresenceCheckMaxFailedAttempts()) {
+        if (otpCount >= identityVerificationConfig.getPresenceCheckMaxFailedAttempts()) {
             final IdentityVerificationEntity identityVerification = identityVerificationRepository.findFirstByActivationIdOrderByTimestampCreatedDesc(ownerId.getActivationId())
                     .orElseThrow(() ->
                             new IdentityVerificationException("Identity verification was not found, " + ownerId));