Under the Payment Services Directive (PSD 2), the digital revolution of making payments online is now regulated at a community level. With the power of innovation in this market, the EU-wide harmonization of online payments will lead to increased security for payment transactions and account information.
Why the need for a second directive and what should the market expect?
Typically, legislation mostly certifies and provides a legal framework for practices that are already well-established. PSD 2, on the other hand, is a directive that is ahead of current practices. For online payment services, the stakes are high and far-reaching, which has necessitated an early understanding of the potential effects of digitalization and digital technology. The rapid development of new services such as what the directive defines as “payment initiation services” and “account information services” shows that the payment services market has been stagnant until now.
With the introduction of payment initiation services, using credit cards for online payments is no longer the only option. Now, payers simply need to confirm that they instructed a payment initiation service to transfer the money from their account. Merchants benefit because they are guaranteed to get paid, encounter reduced transaction costs and have the flexibility of multiple payment methods. Consumers are able to access a global view of their financial situation and to consolidate different current accounts in order to better budget and plan their finances. They also benefit from being able to make immediate payments, send higher transaction amounts and pay reduced costs thanks to increased market competition.
How is this a fundamental change for banks?
By breaking from the current banking monopoly, the payment services market will benefit from increased innovation and free-market competition. This, in turn, means that at a minimum, banks will need to reorganize their IT infrastructure and, most likely, will need to refocus part of their business model. For the banking industry, the new payment services established under the PSD 2 is having a tsunami-like effect. For a longtime, the industry had been fighting to avoid this evolution by arguing that such changes would cost a lot of money and would increase security risks.
However, banks must now open up their IT systems to third parties instructed to make payments for account holders and/or they must ensure a consolidated real-time view of account statements.
More than just a simple question of IT infrastructures, this directive directly attacks the banking monopoly by requiring banks to make automatic payment orders possible without financially benefitting from the transactions.
PSD 2: A logical next step from SEPA?
Recent evolutions in payment methods should have made it easy to guess what the future would bring. The PSD 2 is the logical next step after SEPA (Single Euro Payments Area), which was essentially an extension of the EU’s adoption of a single currency.
By harmonizing payment methods in Europe, SEPA began the process pursued by the PSD 1 of striving to create a transparent and level playing field for competition in the payments market. Since they mainly dealt with transfers, direct debits and payments by bankcards, it was logical that a second directive would recognize and regulate payments made online and by mobile phone as well as the services associated with them.
In the spirit of open-market competition, the Payment Services Directive 2 has not only opened up the banking monopoly to competition but has also created a domain where young FinTech can compete against the Internet giants—an opportunity that they have eagerly embraced with some success for the moment.
And what about security?
This is the key to enabling this market to evolve so that it can benefit everyone. Although previously unregulated, PSD 2 now authorizes payment initiators and account information services to officially become payment service providers. This recognition ensures that more effective and efficient security measures and processes can now be implemented, notably through the mandatory authorization to operate that is provided by the prudential supervisory authority of the country of practice.
By offering the possibility to become an authorized payment service provider and to benefit from the good reputation that meeting the requirements provides, payment service providers will demonstrate the highest respect for financial regulations and structure their organizations with the logic of a bank.
Last but not least, to ensure the security of confidential financial and personal user data, service providers must respect international security norms such as PCI-DSS and implement rigorous authentication measures such as the OTP (one-time password) and strong customer authentication.
Without a doubt, the PSD 2 will inevitably accelerate future innovations for securing user data and transactions. Furthermore, the directive will entice online payment service providers to embrace European harmonization. In short, this is a directive that has the ability to inspire and stimulate limitless creativity for payment services.
*The Payment Services Directive (PSD 1) is a European directive (2007/64/CE) that focuses on payment services within the European market. It was published in the Official Journal of the European Union under L 319 on December 5th, 2007 and was revoked when the Payment Services Directive 2 (PSD 2) was adopted on July 24th, 2013.
About NordPay Financial:
NordPay Financial became a payment institution in 2011 following the merger of CentralPay and Paysite-cash who have been active on the market for 10 years. Today, the group is a major player in the online payment industry in Europe and is regulated by the Financial Conduct Authority (FCA) in the United Kingdom and authorized by the Bank of France.
Through their historic brands Paysite-cash and CentralPay, NordPay Financial provides e-commerce merchants with a full set of services dedicated to optimizing their payment transactions and to coordinating e-marketplaces. Their online credit card payment solution allows merchants to use a single interface to manage multi-currency transactions, detect fraudulent attacks and operate SmartLink, which is a service that facilitates payments made by email and text messages.
With clients across Europe (France, United Kingdom, Spain, etc.), NordPay Financial currently manages the e-commerce operations and transactions of more than 10,000 merchants in the European Economic Area (EEA).