How does SCA work with Open Banking payments?
- EBA opinion requires banks to support “frictionless” consumer authentication
- Payment solution vendors must use 2FA biometrics
- EBA opinion enables merchants to provide better payment experiences
Part of the PSD2 legislation sets guidelines for strong customer authentication (SCA). In June 2020, the European Banking Authority issued an opinion on the provision of third party provider services (TPPs) under PSD2.
Today, banks in markets such as Sweden and the UK have built solid APIs, while in other markets, some banking APIs do not deliver a simple user experience when it comes to authentication for Open Banking payments. To remedy this, EBA guidelines state that the checkout process “cannot have unnecessary steps or friction”.
These rules will help third party Open Banking payment vendors leverage simpler authentication flows. Users won’t be subjected to redirects or be shown unnecessary confirmation or warning messages.
Additionally, banks must allow TPPs to use fingerprint and face-scan biometric-supported apps for authentication purposes. This removes huge barriers for merchants who want to offer their customers a frictionless buying experience.