PSD2 – Where are we now?
Introduction
The announcement of PSD2 caused a rumble in the banking jungle, and many believe that the directive will revolutionize the payment landscape. The deadline for PSD2 was set to be January 13th 2018. We are now a bit into 2019, so it’s time to evaluate – where are we now with PSD2?
Background of PSD2
The European Banking Authority (EBA) announced the Revised Payment Service Directive back in October 2015. The directive is an effort to break the big bank monopoly, facilitate competition and growth of fintech companies, as well as make the transition towards open banking.
Implementation Challenges
Banks as well as countries have found it hard to meet the deadline. In Sweden, the government postponed the implementation until May 2018. In the UK, only three out of nine banks met the open banking regulation/PSD2 deadline after January 2018.
Some have blamed this on banks deliberately stalling the implementation because of the expected financial losses PSD2 could mean for them.
Opportunities and Challenges
The directive poses technological challenges, but also great opportunities for banks, fintech companies and consumers.
What Do Banks Have to Do?
PSD2 requires banks to open up their data. This means that they have to build Application Programming Interfaces (APIs) to give third party providers access to customer data. APIs are sets of code that enable secure access to back end data. So essentially, PSD2 allows developers to build their own products and services around the banks’ platform and data.
Facilitates Competition and Innovation
The banking industry in Europe has been criticized for being a monopoly, giving fintech companies little chance to compete. The purpose of PSD2 is to open up for more competition in the payments industry.
Examples of Open Banking Initiatives
Leading up to the deadline, quite a few banks published open developer portals to comply with the legislation. Some of them include BBVA, Saxo Bank and Nordea. HSBC has created an ‘HSBC Beta’ app where users can see all of their bank information, even if they have accounts with different banks.
New Services and Innovation
Opening up the banks’ platforms and giving third party providers access to customer data enables a better understanding of consumers’ spending habits, which could lead to the creation of new innovative products and services. One can particularly expect to see new services within the areas of money management, lending and payments.
High Demands on Security
Financial information is highly sensitive. The opening up of platforms and increased movement of data puts high demands on security.
Security Measures and Requirements
APIs and open banking are considered safe, and there will be requirements on strong authentication. The EBA has published security guidelines emphasizing the importance of having processes and routines in place that address information security.
Proactive Security Strategies
Banks and payment service providers should be proactive when it comes to security measures. PSPs could benefit from testing the security of new products and services through vulnerability scans or penetration testing.