Bankof Cyprus

Yes
Article 1, Paragraph 1: Is the call centre under the scope of SCA?
Article 1, Paragraph 2c: How do you define “forged authentication code”?
Article 1, Paragraph 3e(ii) & (iv): Are these applicable to card transactions?
Article 7, Paragraph 1: What does “certified auditors” mean?
Yes
Article 2, Paragraph 3: Does the “maximum amount” include fees/exchange rates?
Article 2, Paragraph 4: If batch contains multiple currencies how should the total amount be calculated?
No
Amounts should be substantially raised based on the risk appetite of each organisation. Cumulative should be set daily.
Amounts should be substantially raised based on the risk appetite of each organisation. Cumulative should be set daily.
Assuming that the UserID does not fall under personalized security credentials, we agree.
Article 9, Paragraph 1c: How are “tamper-resistant devices and environments” defined?
Article 13, Paragraph b: Assuming that the app will be downloaded by Google Play and Apple Store is any additional digital signature required?
Yes
Article 17, Paragraph 1: How is “secure bilateral identification” defined?
Yes
Yes
Article 20, Paragraph 1: Does any organisation providing qualified certificate for website authentication exist? What if there is no such qualified provider by October 2018?
Yes
The roles that a payment service provider may have and the technical requirements for them shall be further analysed in a separate RTS.
[Other "]"
Bank
[Other"]"
All of the above
Paraskevas Panayi