Search

The European Banking Authority (EBA) repealed today its Guidelines on the security of internet payments. These Guidelines were issued before the revised Payments Services Directive (PSD2) came into force in 2016 and have since then been superseded by the PSD2 and the related EBA instruments developed in support of PSD2.

The European Banking Authority (EBA) launched today a public consultation on draft Guidelines providing clarity on the application of the limited network exclusion requirements, which certain payment instruments might benefit from, as laid down in the revised Payment Services Directive (PSD2). Such payment instruments include store cards, fuel cards, public transport cards, and meal vouchers. Given the significant inconsistencies the EBA has identified on how this exclusion is applied across the EU, the proposed Guidelines aim at clarifying specific aspects of its application, including on how a network of service providers or a range of goods and services should be assessed in order to qualify as ‘limited’, the use of payment instruments within limited networks, the provision of excluded services by regulated financial institutions and the submission of notification to competent authorities (CAs). The consultation runs until 15 October 2021.

The European Banking Authority (EBA) published today a Report on the data provided by PSPs on their readiness to apply SCA for the subset of payment transactions that are e-commerce card-based payment transactions. The Report highlights the status of issuing and acquiring PSPs in enrolling online merchants, payment cards and payment service users (PSUs) into SCA-compliant solutions, and in requesting SCA for online payment transactions after 31 December 2020, when the SCA migration period ended.

​​​​​​​The European Banking Authority (EBA) published today its final revised Guidelines on major incident reporting under the Payment Service Directive (PSD2). The revised Guidelines optimise and simplify the reporting process and templates, focus on incidents with significant impact on payment service providers (PSPs), and improve the meaningfulness of the information to be reported. The revised Guidelines are also estimated to reduce the reporting burden for PSPs.

​​​​​​​The European Banking Authority (EBA) published today an Opinion on supervisory actions national competent authorities (NCAs) should take to ensure banks remove any remaining obstacles that prevent third party providers from accessing payment accounts, which restrict EU consumers’ choice of payment services.  The Opinion will contribute to a level playing field across the EU and to a consistent application and supervision of relevant requirements under the Payment Services Directive (PSD2) and the EBA Regulatory Technical Standards on strong customer authentication and common and secure communication (RTS on SCA&CSC).

The European Banking Authority (EBA) launched today a public consultation to propose revising the Guidelines on major incident reporting under the Payment Service Directive (PSD2). The proposal aims at optimising and simplifying the reporting process, capturing additional relevant security incidents, reducing the number of operational incidents that will be reported, and improving the meaningfulness of the incident reports received. The revision of the Guidelines also intends to decrease the reporting burden on payment service providers (PSPs). The consultation runs until 14 December 2020.

The European Banking Authority (EBA) published today an Opinion on obstacles to the provision of third party provider services (TPPs) under the Regulatory Technical Standards (RTS) on strong customer authentication (SCA) and common and secure communication (CSC). The Opinion aims to support the objectives of the revised Payment Services Directive (PSD2) of enabling customers to use new and innovative payment services offered by TPPs by addressing a number of issues regarding the interfaces provided by account servicing payment service providers (ASPSPs) to TPPs.