Tag Archive for: payments processing

Cyber Security and Business Intelligence

| 5-6-2018 | TIS |

Fintech Hotseat – AFP 2017: Alongside smaller companies, there are still many medium and large sized companies that have not yet implemented real-time monitoring of their payment processes. The result? These organizations then fail to discover missing cash until the end of the month. In this interview during the AFP Conference 2017 Giancarlo Laudini, SVP Global Sales and Marketing Operations, gives you insights how business intelligence can help you to prevent cyber crime and fraud in your organisation.

To see full interview click here

Content originally posted on TIS on 15/1/2018

Looking back after 10 years of SEPA

| 26-02-2018 | Paul Stheeman |

Cash Pooling

 

Last month we saw the anniversary of several historical moments. 1000 years ago, in January 1018 the Peace of Bautzen ended the German-Polish War. More recently, in January 1998, American President Bill Clinton surprised the world by denying in a press conference that he had sexual relations with Monica Lewinsky. More importantly for Treasurers and the citizens of Europe January 2018 marks the tenth anniversary of the establishment of SEPA, the Single European Payments Area.

 

In Europe we have become used to SEPA. Initially we all groaned at the idea of having 22-digit long bank accounts numbers called the IBAN, nicknamed as “IBAN the Terrible”. But the introduction of SEPA in January 2008 has brought a number of benefits to over 520 million citizens in Europe. Not only are the 19 Eurozone countries members of SEPA. All other EU countries participate as well as countries such as Norway or Switzerland.

The main benefit is that we now have one payment zone. Previously, making a transfer from Italy to the Netherlands was a cross-border payment. This meant that a whole week could pass between the time when the payer initiated the transfer in Italy and the recipient actually received the funds on his Dutch bank account. In addition, banks in both countries would charge considerable fees for making the transfer. Payment is now done within 24 hours and banks should not charge more than for a domestic payment.

SEPA not only covers transfers. Direct debits and debit cards also are handled in a similar manner through SEPA. And a new instant payment scheme is currently being rolled out, allowing payments to be completed within seconds on a 24/7/365 basis.

SEPA is also strongly regulated. The European Commission established the legal foundation through the Payment Services Directive or PSD. Payment products are overseen as are technical standards.

In the last ten years SEPA has established itself as being the platform for payments in Europe. Due to its wide acceptance and success in its first decade it is likely to accompany us for many years ahead as new payment methods are developed in the digitalised world.

 

Paul Stheeman

Owner of STS – Stheeman Treasury Solutions GmbH

 

PSD2 – new opportunities but an issue of trust

| 07-11-2017 | Lionel Pavey |

PSD2PSD2 (Payment Services Directive) is an extension on the existing PSD within the EU. The objective is to increase competition in the payments industry, whilst increasing access from non-bank firms. This should lead to standard payment formats, infrastructure and technical standards – at first glance an improvement for consumers. However, there appears to be a particular threat to privacy and the threat of third parties gaining excessive access to personal data.

What are the objectives of PSD2?

  • Standardising, integrating and improving payment efficiency across EU states
  • Harmonise pricing and improve security of payment processing across the EU
  • Providing better consumer protection
  • Encouraging innovation and reducing costs
  • Create a level playing field and enable new entrant payment service providers
  • Incorporate emerging payment methods such as mobile payments
  • Bring new and emerging payment services under regulatory control

For the fintech industry this is a welcome development – they are focused on providing alternative platforms for standard bank products.

 What changes will take place because of PSD2?

  • Third party Access to Accounts (XS2A) – E-commerce companies can take online or mobile payment directly from a consumer’s bank account without going directly through PCI intermediaries (Payment Card Industry); this process will be known as Trusted Third Party (TTP) Account Access.
  • The ability of API’s to take payment – The ability of an Application Programming Interface (API) enabling payment by directly connecting the merchant and the bank
  • The ability to consolidate account information in a single portal – An API enables a new type of financial services company – an Account Information Service Provider or AISP – which aggregates account information to let consumers with multiple banks view all bank details in one portal

A Dutch television programme that informs on consumer issues (AVRO/TROS RADAR) recently broadcast a report on the potential dangers of PSD2 with regard to issues around personal privacy. By granting access to TTPs they are able to access your bank account and retrieve all the data from the last 90 days. This will enable them to provide consumers with a better overview on products and services. However, it also means that they gain a valuable insight into how much you earn, how you spend your money and which companies you transact with. In theory they could offer you alternatives which are cheaper and more tailored to your individual requirements.

But to be able to do all this, they will also need access to your verification methods – in other words they will need to know your PIN numbers. We have always been told, especially by the banks, that this information is strictly confidential and should never be given out. There is also the possibility that they could offer you a special discount that can only be obtained if you give away your personal access codes.

This opens up the payments market to potential fraud – how do we know our personal data will be protected; how will the companies guarantee that the data is only used for a specific product or service; who can ensure that our data is not sold to data mining companies; how can we be sure that our personal data is erased if we decide to opt out in the future?

Commercial banks are subject to numerous directives to ensure they conform to all legislation regarding banking and data protection. How can we get the same guarantee from a fintech solutions provider who might be tempted to increase its revenue by selling data?

However advanced our technology becomes, finance is an industry that has always relied on trust. Banks can only thrive if customers trust them with their money. We assume that if we deposit money into a bank, the bank acknowledges our position as a debtor and will repay us when we demand it. We expect them to exercise a duty of confidentiality and not disclose information about us. When that trust is broken, confidence in the bank is lost and this can quickly escalate to a run on the bank as mistrust leads to customers wanting their money back.

Do we feel the same level of trust for non-bank parties who gain access to our bank data?

 

Lionel Pavey

Cash Management and Treasury Specialist