Does the PSD2 SCA mandate in payment processing prevent fraud under GDPR Recital 47?

Report, published: April 2020

Navigating PSD2 and GDPR Compliance can leave teams feeling pulled in many different directions at once.

Almost 2 years after the initial passing of the Payment Services Directive 2 (PSD 2) and the General Data Protection Regulation in 2018, questions persist about how these two laws interact in the overarching regulatory framework.

It can be difficult for Compliance teams to balance these new legal obligations, especially as the laws that created them appear to have conflicting aims. The PSD 2 seeks to drive the transition to a more secure digital, “Open Banking” style ecosystem, while the GDPR significantly restricts efforts to collect and process data about customers online.

Phrasing in the legislation can provide clarity, but can still be difficult to understand.

While it can be hard to understand when different conditions apply, regulators use very specific phrasing that can provide guidance when conflicting interests are in play.

Unfortunately, for most people parsing through legal and regulatory verbiage and deciphering exactly what it all means is no simple task. As the pace of digital business ramps up, companies can ill afford to waste time being uncertain.

Some insights from GDC’s Compliance Advisory Board...

In this Whitepaper, the CAB goes point by point through relevant sections of PSD 2 and GDPR, explains each of the terms, providing examples to illustrate when and how to apply them.

Key questions:

What constitutes a “legitimate interest” for institutions collecting and processing their customers’ data under the GDPR?
What is “Strong Customer Authentication” as it’s laid out in PSD II, and what infrastructure will institutions need to have in place to ensure compliance to this new standard?
How can Institutions strike a balance between doing their due diligence to Know their Customers and protecting those Customer’s privacy rights?
As the financial system adopts “Open Banking” as a vision for the future, how might the digitization of financial services create new risks for data security?

Download report

Specifications

Published

10 Apr 2020

Geographic Scope

Europe

Editions

Online & Mobile Banking

Free Headlines	::: subscribe now
RSS	::: follow ThePaypers via RSS ::: connect
LinkedIn	::: connect with ThePaypers on LinkedIn ::: connect
Twitter	::: follow ThePaypers on Twitter ::: follow
Facebook	::: like ThePaypers on Facebook ::: like

Does the PSD2 SCA mandate in payment processing prevent fraud under GDPR Recital 47?

Specifications

Top Stories / Most Read

British Airways partners with Amadeus for tech innovation

RBI to issue an additional licence framework

Mastercard partners with VoPay

Tencent augments payment experience for China visitors

UK Finance proceeds with RLN experimentation phase

Fils partners Aion to advance ESG across the Middle East

Stripe secures USD 694 million in tender offer

Zopa reports first full year profit

Tencent augments payment experience for China visitors

Nubank to introduce its mobile operator services

Interviews

Presenting crypto payments trends – a CoinsPaid perspective

Key ecommerce and payments trends in 2024

AML/sanctions compliance: A vital lifeline for Banking-as-a-Service partnerships' survival

The agility of the Electronic Money Institution: paving the way for instant, low-cost payments around the globe

Countdown to IFGS 2024: Unveiling trends shaping fintech's next decade

Voice of the Industry

Shaping the future of the payments industry: key insights from MPE 2024

A bumpy road to becoming an open identity infrastructure: MOSIP Connect 2024 in retrospect

Innovation in payments: what role do policy and regulation play?

Mobile payment: Southern Europe moves towards interoperability

Navigating KYB challenges in modern banking and merchant onboarding

The Paypers

This Site

Contact Information

Legal Information