Data Processing Under PSD2 Does Not Override GDPR, Commission Says

A European Commission official has confirmed that rules demanding “explicit consent” to process customer data under the revised Payment Services Directive (PSD2) do not prevail over EU data protection laws.

Paulo Silva, legal officer at the commission, said on Friday that Article 94(2) of the directive governing third-party access to accounts should not be interpreted as lex specialis in relation to the General Data Protection Regulation (GDPR).

Request a Free Trial

As a trusted source of regulatory intelligence for the global payments industry, we enable organisations to manage the growing volume and velocity of regulatory risk with confidence, empowering more informed and effective decision making, in an efficient and cost-effective way.

Take a Trial