Requesting Account Information (AIS)
PSD2PSD2 stands for Payment Services Directive 2 and is a new EU regulation in effect since September 14, 2019. It governs electronic and other non-cash payments.
The main provision of PSD2 is for Strong Customer Authentication (SCA), a process that seeks to make online payments more secure and reduce fraud while increasing authorisation rates.
The European Banking Authority (EBA) recently extended the deadline for PSD2 compliance until December 31, 2020.
As it relates to an AISPAccount Information Service Provider – a TPP authorised to access consumer or business account data from the account holder's financial institutions with the account holder's explicit consent., this essentially means that, under open banking protocols, banks allow access to a customer's account data by TPPs only if the customer (PSU) explicitly gives consent (grants permission) to let the bank allow such access.
In the context of the account information queries discussed here, AISP and TPPThird-Party Provider – an authorised online service provider introduced as part of Open Banking. TPPs exist outside of the account holder’s relationship with their bank but may be involved in transactions carried out by the user. are one and the same.
The scope of analysis and service the bank supports includes comparing a PSU's accounts and transaction history to a range of financial service options, aggregating data across participating financial institutions and customers to create marketing profiles, and making new transactions and account changes on the PSU's behalf.
API support for accessing a PSU's account information institutes a communications flow that ensures all PSD2 mandates
See Base URLs.
Typically, the bank requires a user ID as the first step of the credentials exchange necessary to identify the user. Additional details may be required, as well.