European officials have downplayed industry fears that authenticating users of third-party providers (TPPs) via a "redirect" model could be outlawed by incoming security rules.
Eleventh-hour changes to regulatory technical standards that will accompany the revised Payment Services Directive (PSD2) cited redirection as a potential illegal obstacle to third parties.
The practice — where a user is forwarded onto their bank’s website or app to input login credentials directly — had been fiercely resisted by existing TPPs, which argued it would result in a fragmented or confusing user experience.
Request a Free Trial
As a trusted source of regulatory intelligence for the global payments industry, we enable organisations to manage the growing volume and velocity of regulatory risk with confidence, empowering more informed and effective decision making, in an efficient and cost-effective way.Take a Trial