Single Rulebook Q&A

Enquirers can use various factors to search for a Q&A:

  • If you know the Q&A ID, you can insert this in the relevant field.
  • You can also search by legal reference, date submitted or by keyword.
  • Searches can be extended to more than one legal act, topic, technical standard or guidelines by making multiple selections (i.e. pressing ‘Ctrl’ on your keyboard, and selecting the relevant ones from the drop-down lists by left mouse-click).
  • Further information on how to search for a Q&A can be found in the Additional background and guidance for asking questions.

Additional guidance on how to search a question has been provided in the embedded presentation.

Important update for users:

While the references to CRD5 / CRR2 / BRRD2 have already been added to the Legal Act field on this page, the search function will only generate results for these legal texts once the first Q&As with regard to these legal texts are finalised and published.

Period posted:
Clear
Clear
Publication:
Clear
Clear
Showing 1 - 20 of 77 results.
of 4
   

Clarification on whether a particular business model type constitutes the provision of an account information service as defined by Article 4 (16) of PSD2

Does a business model where the provider offers a service sending the account information to thi...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Not applicable
ID: 2018_4098 | Topic : Authorisation and registration | Date of submission: 11/07/2018
View

Is the scope of the RTS on strong customer authentication (SCA) and secure communication one-leg or two-leg?

Does the PSD2 requirement on SCA, and subsequently the detailed requir...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4233 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 06/09/2018
View

The Implementation of the electronic communications exclusion in the voiced-based premium rate services market

Considering the organisation of the voiced-based premium rate services market, and considering t...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Not applicable
ID: 2018_4181 | Topic : Other topics | Date of submission: 06/08/2018
View

Geographical scope of application of the RTS on strong customer authentication (SCA) and secure communication requirements – ‘Two-leg’ transactions

Is it necessary that issuer, acquirer, cardholder and merchant be all...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4030 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 28/06/2018
View

What is considered as a dedicated interface

Payment Service Users (PSUs) communicate with an account servicing pay...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4681 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 25/04/2019
View

Inclusion of time taken for SCA in the performance KPI

Does the Key Performance Indicator (KPI) for the performance of the de...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4661 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 08/04/2019
View

Contactless transactions - SCA

Does the cumulative count / authorised sum amount apply to any contactless authorisation request...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4230 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 05/09/2018
View

SCA at vending machines without PIN pad

Do transactions at vending machines without PIN pad require Strong Cus...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4057 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 28/06/2018
View

Review of security measures

When an issuer delegates strong customer authentication (SCA) to a third-party (e.g. a smartphon...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4047 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 28/06/2018
View

Liability for fraud when SCA exemption used

Who is liable for fraud on Strong Customer Authentication (SCA) exempt...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Not applicable
ID: 2018_4042 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 28/06/2018
View

Confidentiality of offline PIN

Should the PIN transmitted offline from a terminal to an Europay, Mast...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4055 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 28/06/2018
View

Responsibility for comprehensive assessment according to Article 95(2) PSD2

It is not clear, whether comprehensive assessment of the operational and security risks relating...

COM Delegated or Implementing Acts/RTS/ITS/GLs: EBA/GL/2017/17 - Guidelines on security measures for operational and security risks under PSD2
ID: 2018_4231 | Topic : Security measures for operational and security risks | Date of submission: 06/09/2018
View

Scope of the corporate SCA exemption.

Does the corporate SCA exemption apply only if the payer initiates (and transmits) payments dire...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4693 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 02/05/2019
View

"Authorisation number" in eIDAS certificates

There are two possible interpretations of the Regulation (EU) 2018/389 (RTS) Article 34 paragrap...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4679 | Topic : Central register of the EBA | Date of submission: 23/04/2019
View

Requirement on the use of a Qualified Certificate for Electronic Seals (QSealC) for integrity and authenticity

Please clarify  whether in the EBA’s Opinion on the use of eIDAS under the RTS on SCA and C...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4586 | Topic : Other topics | Date of submission: 28/02/2019
View

Qualified certificate under eIDAS for ASPSP

Is it required for an Account Servicing Payment Service Provider (ASPS...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4413 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 10/12/2018
View

Secure corporate payment processes and protocols

Are USB drives (containing a certificate) used only by corporate clients compatible with RTS req...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4400 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 04/12/2018
View

ASPSP providing updated payment status to PISP

Are account servicing payment service providers (ASPSPs) required to provide information on the...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4601 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 11/03/2019
View

Applicability of SCA to electronically processed SEPA Direct Debits / Interpretation of EBA Q&A 2018_4359

Are mandates for direct debits which are set up without direct involvement of the payer’s PSP su...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2019_4664 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 10/04/2019
View

Currency conversion of the EUR thresholds contained in the RTS

May payment service providers (PSPs) and card schemes set rounded and...

COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 – RTS on strong customer authentication and secure communication
ID: 2018_4040 | Topic : Strong customer authentication and common and secure communication (incl. access) | Date of submission: 28/06/2018
View
Showing 1 - 20 of 77 results.
of 4