PSD2 Open APIs and SCA compliance Assessment

Why do I need this service?

On 27th November 2017, the European Parliament issued Commission Delegated Regulation (EU) 2018/389 (as an addition to Directive 2015/2366) regarding payment services in the internal market (PSD2) stating that financial service providers (banks) should enable their customers to carry out banking operations through third party service providers.

In accordance with the provisions of the Regulation, the service must be fully implemented before the final deadline of 14th of September 2019.

Because of the generalized criteria provided in the Regulation, many customers are uncertain how to correctly implement the requirements of the Directive, as well as being unsure whether the solution created poses any IT security threats. Regulation also requires independent compliance testing.

What will we do?

We will:

  • Assess compliance with the requirements of the regulation regarding Delegated Regulation 2018/389 related functionalities or solutions in your infrastructure (Open banking APIs and SCA);
  • Assess compliance with the guidelines, like, an example, defined by the Berlin Group of any Delegated Regulation 2018/389 related functionalities or solutions in your infrastructure;
  • Perform additional security testing procedures to ensure the solutions do not pose further risks to your infrastructure (e.g. unauthorized access);
  • Provide advice and recommendations on any design and architecture issues (not sure about it yet).

Your benefits

  • Gain confidence in how to efficiently implement the requirements of the regulation;
  • Gain confidence that the solution you have chosen meets the requirements of the Regulation;
  • Gain confidence that the solution you create poses no additional security risks.

Service price

Starting from 3000 EUR + VAT

Let's Protect.

We are happy to share our knowledge, experience and expertise. Let us know what you need, and we will contact you directly