SlideShare a Scribd company logo

Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Financial Crime

I
Idan Tohami

The purpose of this webinar is to help Financial Institutions understand the implications of financial crime and fraud prevention, and get ready to review and upgrade their systems accordingly where required. Topics covered: -Overview of GDPR and PSD2 regulations with respect to Financial Crime -Implications of each the regulations on Fraud and Financial Crime (FFC) -The challenges and opportunities offered by those regulations -Which steps should Financial Institutions take to mitigate the cost of FFC

Technology
1 of 27
Download to read offline
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. PSD2 & GDPR Regulations And How They are Changing Fraud & Financial Crime Advise. Plan. Deliver! marketing@matrix-ifs.com
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited.
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Matrix-IFS – What We Do Fraud Prevention DataCapital Markets Anti-money Laundering 1
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. How PSD2 and Open Banking are driving Innovation in Financial Crime Prevention? 2
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. The Challenge Situation As banks in UK and across the EU are mandated under PSD2 to expose account and payment information, multiple financial services will be available to consumers Implication This creates increased fraud risks which push banks toward accelerated innovation in fraud detection and data management Recommendation Stay tuned and find out! 3
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. What is Open Banking & PSD2 Open Banking intends to: • Foster competition in the Banking Industry • Improve customer experience by offering more services & innovation The Second Payment Services Directive (PSD2) aims to: ▪ Encourage development and use of innovative payments ▪ Enhance consumer protection against fraud ▪ Strengthen liability & accountability ▪ Make cross-border European payment services safer 4
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. PSD2 & GDPR Rollout Timeline 18 month time window 6 month time window PSD2 becomes part of national law across the EU 13 Jan 2018 EU ratifies final Regulatory Technical Standards (RTS) on SCA and SCS 13 March 2018 GDPR provisions become directly applicable in all EU member states 25 May 2018 Banks must open RTS- compliant API to TPPs for testing and integration 14 March 2019 RTS legally apply to all EU member states (including UK) 14 Sep 2019 5
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. The New Model – Access to Accounts (XS2A) Transaction Risk Assessment Strong Customer Authentication (SCA) Secure Communications Customer Credentials 6
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Opportunity for Innovation in Financial Services 1. Encouraging competition between banking providers 2. New products and services by start-ups & challenger banks 3. Products / services can also be offered by established banks Example: Account Takeover Identity Theft Device Spoofing Expected Attack Vectors: 7 New products & services increase the bank’s ‘attack surface’!
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. In order to combine the necessary risk analysis with the exemptions and remain compliant with PSD2, banks need: A Fraud-detection engine that: 1. Ingests different sources of information (internal / external) 2. Combines behavioural analytics 3. Covers long periods for unique accounts Moving Toward ‘White Box’ Fraud Prevention Rules Based Probabilistic (ML, AI) ‘White Box’ Enterprise (‘Black Box’) 8
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. The ‘White Box’ Approach Feature Current Risk Engines ‘White Box’ Approach Model Build Process • Black Box model built by vendor • Built by experts, in collaboration with the bank Data Used • Pre-defined data requirements • Model built incorporating available data • Agile testing procedures Fraud History • Model built on vendor data • Model tuned on bank’s fraud cases • Developed from bank-specific data and fraud cases Deployment • Deployed by vendor based on long model tuning • Agile build, test & deployment within the engine via API / User Interface 9
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Operational Recommendations 10
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #1 - Review RTS Compliance Complete a study of the impact of PSD2 & the Regulatory Technical Standards (RTS) on Fraud Prevention Should aim at 2 objectives: 1. Ensuring that the bank is compliant with the regulation and RTS 2. Ensuring that fraud prevention is not impacted due to opening bank systems to TPPs 11
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #1 - Review RTS Compliance Key points of RTS Compliance review: • Quality criteria for the API • Strong Customer Authentication (SCA) & transaction risk analysis • Specific fraud reporting requirement • Expert security measures audit 12
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #2 - Multi-channel Fraud Architecture Under PSD2, banks must open API for Third Party Providers (TPPs), thus creating new opportunities for fraud "61% of Financial Institutions are planning to invest in a multi-channel authentication solution”. Study by top advisory consulting firm (Nov 2017) A Multi-channel architecture can help you mitigate risk 13
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #2 - Multi-channel Fraud Architecture Transaction Merchant Customers’ Accounts Card Fraud Check TPP (PSD2) Fraud Check Card Interface Open API Online Banking Fraud Check Banking Portal/App Strong Customer Authentication (SCA) Card Scheme Merchant Acquirer Customer Card Customer Uses TPP App Merchant TPP Customer Uses Bank Services Payment Instruction Account based requests Account based requests 14
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Create Store Destroy Use ShareArchive #3 - Data Lifecycle Management Data Lifecycle Management Capabilities Desired • Data storefront – data provisioning services • Data lineage – convergence, control & quality • Archive and deletion services 15
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. What’s Next? Review RTS Compliance Multi-channel Fraud Architecture Data Lifecycle Management Develop a “White Box” Solution 16
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. 17 The Great Data Revolution Data: disrupting how we do business Chris Butlin, Director | Professional Services CIM
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Change Data is transforming the way we do business Data Growth is changing our understanding of the world Data companies are changing business – The Gig Economy Digital Transformation Journey Politics Customer behaviour Flexible working based on an app Disintermediation Internet of Things UBER, airbnb, deliveroo Data rich but information poor Security Regulatory change (GDPR) 18
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. single view Cut through the data lake to create a Data Lake Data Collection Data Quality Data Entities Resolved Data System of Record SINGLE VIEW 19
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. GDPRPart of the Digital Transformation Journey “Don’t tell me what GDPR is - tell me how to get started on the path to GDPR data compliance” DISCOVER Identify what data you hold and where and on what grounds Data Collection & Storage Privacy by Design Article 5 & 25 --------------------------------- Scan Non-Digitised Data Data Discovery Understand Your Data Landscape PREPARE Keep personal data up to date and limit data to what is relevant Data quality and data minimisation Article 5 ------------------------------ Data Quality Data Minimisation Improve Your Data Quality ACT Manage right of access and data portability Consent & Transparency Articles 7-9, 12-18 ------------------------------ Data Hub Data Federation Data Governance 20
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. ENGAGEMENT Where are you? What are you doing? What mode are you in? What’s your intent? What’s happening around you? Who is with you? INSIGHTS Lifetime value Profitability Credit risk Share of wallet Opportunity Loyalty Satisfaction Retention Needs Attitude Persuadability R-F-M ACTIVITIES Marketing history Offers, Responses, Coupons Preferences Method, Content, Frequency Social Media activity Posts, Check-ins, Likes, Awards Engagement history Calls, Emails, SMS, Web journey, in-store visits Service history Requests, Tickets, Complaints Transaction history Purchases, Payments, Bills, Invoices, Statements Benefits of GDPR – Leading to a Single View Initial GDPR Compliance Business Benefits RELATIONSHIPS Household Places Organisational Social Memberships CORE PROFILE Identity | Name | Age | Gender Employment | Portfolio … INDIVIDUAL 21
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Data Transformation Journey Resulting in: Control of Data Governance Understand Your Data Consistent Data Across the Enterprise Improved Business Processes Meet Compliance Requirements Single View Understand Interactions Channel Shift Self Service Solution Consistent Communication Omni-channel Communications 22
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. GDPR and the Fight against Financial Crime FI collect customer data Under GDPR, firms are obliged to respect privacy rights granted to individuals Legal processing and right to be forgotten FIs have a higher degree of obligation to innovate and invest in their data management GDPR permits processing of data necessary to meet a legal obligation REC #1 FIs should start investing in building Data Management capabilities to improve Fraud and FinCrime Prevention REC #2 Leverage technology to create a single view of the customer 23 Example: PSD2
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. ForquestionsonPSD2contact yair.samban@matrix-ifs.com Questions? ForquestionsonGDPRcontact christopher.butlin@pb.com ReachouttoourexpertsforadviceonFraud PreventionandGDPRFinCrimedatamanagement
All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Thank you! …andwewillsendoveradocumentthatwillhelpyoutoensureyour oraganisationisontracktobePSD2/GDPRcompliant Areyou PSD2/GDPR compliant? Wouldyou likeadoc outliningwhat you needtobe compliant? Emailus marketing@ matrix-ifs.com Tellus howfaralong areyouin theprocess...

Recommended

AML Transaction Monitoring Tuning Webinar
AML Transaction Monitoring Tuning WebinarAML Transaction Monitoring Tuning Webinar
AML Transaction Monitoring Tuning Webinar
Idan Tohami
 
François-Eric Perquel, 5th Digital Banking Forum
François-Eric Perquel, 5th Digital Banking ForumFrançois-Eric Perquel, 5th Digital Banking Forum
François-Eric Perquel, 5th Digital Banking Forum
Starttech Ventures
 
Chapter 7 risk based approach
Chapter 7 risk based approachChapter 7 risk based approach
Chapter 7 risk based approach
Quan Risk
 
Chapter 12 regulatory technology for aml compliance
Chapter 12 regulatory technology for aml complianceChapter 12 regulatory technology for aml compliance
Chapter 12 regulatory technology for aml compliance
Quan Risk
 
Falcon 012009
Falcon 012009Falcon 012009
Falcon 012009
Northwest Card Association
 
Άσπα Παλημέρη, 5th Digital Banking Forum
Άσπα Παλημέρη, 5th Digital Banking ForumΆσπα Παλημέρη, 5th Digital Banking Forum
Άσπα Παλημέρη, 5th Digital Banking Forum
Starttech Ventures
 
Reklaim Deck - December 2021
Reklaim Deck - December 2021Reklaim Deck - December 2021
Reklaim Deck - December 2021
RedChip Companies, Inc.
 
Falcon debit credit_2909_ps
Falcon debit credit_2909_psFalcon debit credit_2909_ps
Falcon debit credit_2909_ps
kazemita
 

Recommended

AML Transaction Monitoring Tuning Webinar
AML Transaction Monitoring Tuning WebinarAML Transaction Monitoring Tuning Webinar
AML Transaction Monitoring Tuning Webinar
Idan Tohami
 
François-Eric Perquel, 5th Digital Banking Forum
François-Eric Perquel, 5th Digital Banking ForumFrançois-Eric Perquel, 5th Digital Banking Forum
François-Eric Perquel, 5th Digital Banking Forum
Starttech Ventures
 
Chapter 7 risk based approach
Chapter 7 risk based approachChapter 7 risk based approach
Chapter 7 risk based approach
Quan Risk
 
Chapter 12 regulatory technology for aml compliance
Chapter 12 regulatory technology for aml complianceChapter 12 regulatory technology for aml compliance
Chapter 12 regulatory technology for aml compliance
Quan Risk
 
Falcon 012009
Falcon 012009Falcon 012009
Falcon 012009
Northwest Card Association
 
Άσπα Παλημέρη, 5th Digital Banking Forum
Άσπα Παλημέρη, 5th Digital Banking ForumΆσπα Παλημέρη, 5th Digital Banking Forum
Άσπα Παλημέρη, 5th Digital Banking Forum
Starttech Ventures
 
Reklaim Deck - December 2021
Reklaim Deck - December 2021Reklaim Deck - December 2021
Reklaim Deck - December 2021
RedChip Companies, Inc.
 
Falcon debit credit_2909_ps
Falcon debit credit_2909_psFalcon debit credit_2909_ps
Falcon debit credit_2909_ps
kazemita
 
Chapter 4 supsicious transactions
Chapter 4 supsicious transactionsChapter 4 supsicious transactions
Chapter 4 supsicious transactions
Quan Risk
 
Chapter 5 internal investigation
Chapter 5 internal investigationChapter 5 internal investigation
Chapter 5 internal investigation
Quan Risk
 
Chapter 3 know your customer
Chapter 3 know your customerChapter 3 know your customer
Chapter 3 know your customer
Quan Risk
 
Chapter 7 regulatory technology
Chapter 7 regulatory technologyChapter 7 regulatory technology
Chapter 7 regulatory technology
Quan Risk
 
Chapter 6 aml compliance programme
Chapter 6 aml compliance programmeChapter 6 aml compliance programme
Chapter 6 aml compliance programme
Quan Risk
 
Chapter 9 private banking
Chapter 9 private bankingChapter 9 private banking
Chapter 9 private banking
Quan Risk
 
B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...
B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...
B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...
Kullarat Phongsathaporn
 
Fintech regulations presentation
Fintech regulations presentationFintech regulations presentation
Fintech regulations presentation
Joseph Rubin
 
Mark Buitenhek, 5th Digital Banking Forum
Mark Buitenhek, 5th Digital Banking ForumMark Buitenhek, 5th Digital Banking Forum
Mark Buitenhek, 5th Digital Banking Forum
Starttech Ventures
 
Chapter 2 the regulatory framework of aml
Chapter 2 the regulatory framework of amlChapter 2 the regulatory framework of aml
Chapter 2 the regulatory framework of aml
Quan Risk
 
IGEN - Investor Presentation
IGEN - Investor PresentationIGEN - Investor Presentation
IGEN - Investor Presentation
RedChip Companies, Inc.
 
FinTech Universal Reconciliation Datamart
FinTech Universal Reconciliation DatamartFinTech Universal Reconciliation Datamart
FinTech Universal Reconciliation Datamart
Deepa Thakur
 
01 introduction-to-digital-finance
01 introduction-to-digital-finance01 introduction-to-digital-finance
01 introduction-to-digital-finance
innov-acts-ltd
 
FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)
FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)
FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)
FATF - Financial Action Task Force
 
4th Digital Finance Forum, Simon Brady
4th Digital Finance Forum, Simon Brady4th Digital Finance Forum, Simon Brady
4th Digital Finance Forum, Simon Brady
Starttech Ventures
 
Two Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchTwo Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should Watch
IdentityMind
 
S27: Techsauce Moderator Notes 2018
S27: Techsauce Moderator Notes 2018S27: Techsauce Moderator Notes 2018
S27: Techsauce Moderator Notes 2018
Kullarat Phongsathaporn
 
CTG FIX API Package of Global Asset Classes
CTG FIX API Package of Global Asset Classes CTG FIX API Package of Global Asset Classes
CTG FIX API Package of Global Asset Classes
Capital Trust Group Limited
 
PCI Compliance Report
PCI Compliance ReportPCI Compliance Report
PCI Compliance Report
Holly Vega
 
Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...
Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...
Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...
FinTechLabs.io
 
Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018
Initio
 
Evolving regulations are changing the way we think about tools and technology
Evolving regulations are changing the way we think about tools and technologyEvolving regulations are changing the way we think about tools and technology
Evolving regulations are changing the way we think about tools and technology
Ulf Mattsson
 

More Related Content

What's hot

Chapter 4 supsicious transactions
Chapter 4 supsicious transactionsChapter 4 supsicious transactions
Chapter 4 supsicious transactions
Quan Risk
 
Chapter 5 internal investigation
Chapter 5 internal investigationChapter 5 internal investigation
Chapter 5 internal investigation
Quan Risk
 
Chapter 3 know your customer
Chapter 3 know your customerChapter 3 know your customer
Chapter 3 know your customer
Quan Risk
 
Chapter 7 regulatory technology
Chapter 7 regulatory technologyChapter 7 regulatory technology
Chapter 7 regulatory technology
Quan Risk
 
Chapter 6 aml compliance programme
Chapter 6 aml compliance programmeChapter 6 aml compliance programme
Chapter 6 aml compliance programme
Quan Risk
 
Chapter 9 private banking
Chapter 9 private bankingChapter 9 private banking
Chapter 9 private banking
Quan Risk
 
Chapter 2 the regulatory framework of aml
Chapter 2 the regulatory framework of amlChapter 2 the regulatory framework of aml
Chapter 2 the regulatory framework of aml
Quan Risk
 

What's hot (18)

Chapter 4 supsicious transactions
Chapter 4 supsicious transactionsChapter 4 supsicious transactions
Chapter 4 supsicious transactions
 
Chapter 5 internal investigation
Chapter 5 internal investigationChapter 5 internal investigation
Chapter 5 internal investigation
 
Chapter 3 know your customer
Chapter 3 know your customerChapter 3 know your customer
Chapter 3 know your customer
 
Chapter 7 regulatory technology
Chapter 7 regulatory technologyChapter 7 regulatory technology
Chapter 7 regulatory technology
 
Chapter 6 aml compliance programme
Chapter 6 aml compliance programmeChapter 6 aml compliance programme
Chapter 6 aml compliance programme
 
Chapter 9 private banking
Chapter 9 private bankingChapter 9 private banking
Chapter 9 private banking
 
B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...
B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...
B12: AMLO | FinTech Situation in Thailand and Offshore and Money Laundering R...
 
Fintech regulations presentation
Fintech regulations presentationFintech regulations presentation
Fintech regulations presentation
 
Mark Buitenhek, 5th Digital Banking Forum
Mark Buitenhek, 5th Digital Banking ForumMark Buitenhek, 5th Digital Banking Forum
Mark Buitenhek, 5th Digital Banking Forum
 
Chapter 2 the regulatory framework of aml
Chapter 2 the regulatory framework of amlChapter 2 the regulatory framework of aml
Chapter 2 the regulatory framework of aml
 
IGEN - Investor Presentation
IGEN - Investor PresentationIGEN - Investor Presentation
IGEN - Investor Presentation
 
FinTech Universal Reconciliation Datamart
FinTech Universal Reconciliation DatamartFinTech Universal Reconciliation Datamart
FinTech Universal Reconciliation Datamart
 
01 introduction-to-digital-finance
01 introduction-to-digital-finance01 introduction-to-digital-finance
01 introduction-to-digital-finance
 
FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)
FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)
FATF FinTech & RegTech Initiative: Opportunities and Challenges (Mexico)
 
4th Digital Finance Forum, Simon Brady
4th Digital Finance Forum, Simon Brady4th Digital Finance Forum, Simon Brady
4th Digital Finance Forum, Simon Brady
 
Two Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchTwo Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should Watch
 
S27: Techsauce Moderator Notes 2018
S27: Techsauce Moderator Notes 2018S27: Techsauce Moderator Notes 2018
S27: Techsauce Moderator Notes 2018
 
CTG FIX API Package of Global Asset Classes
CTG FIX API Package of Global Asset Classes CTG FIX API Package of Global Asset Classes
CTG FIX API Package of Global Asset Classes
 

Similar to Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Financial Crime

Evolving regulations are changing the way we think about tools and technology
Evolving regulations are changing the way we think about tools and technologyEvolving regulations are changing the way we think about tools and technology
Evolving regulations are changing the way we think about tools and technology
Ulf Mattsson
 
ISSA Atlanta - Emerging application and data protection for multi cloud
ISSA Atlanta - Emerging application and data protection for multi cloudISSA Atlanta - Emerging application and data protection for multi cloud
ISSA Atlanta - Emerging application and data protection for multi cloud
Ulf Mattsson
 
Emerging Trends in Information Security and Privacy
Emerging Trends in Information Security and PrivacyEmerging Trends in Information Security and Privacy
Emerging Trends in Information Security and Privacy
lgcdcpas
 

Similar to Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Financial Crime (20)

PCI Compliance Report
PCI Compliance ReportPCI Compliance Report
PCI Compliance Report
 
Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...
Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...
Open Banking UK “Identity Product” Internals #fapisum - Japan/UK Open Banking...
 
Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018
 
Evolving regulations are changing the way we think about tools and technology
Evolving regulations are changing the way we think about tools and technologyEvolving regulations are changing the way we think about tools and technology
Evolving regulations are changing the way we think about tools and technology
 
ISSA Atlanta - Emerging application and data protection for multi cloud
ISSA Atlanta - Emerging application and data protection for multi cloudISSA Atlanta - Emerging application and data protection for multi cloud
ISSA Atlanta - Emerging application and data protection for multi cloud
 
MTBiz May-June 2019
MTBiz May-June 2019 MTBiz May-June 2019
MTBiz May-June 2019
 
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in EuropeFIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
 
IBM Cloud for Financial Services Overview
IBM Cloud for Financial Services OverviewIBM Cloud for Financial Services Overview
IBM Cloud for Financial Services Overview
 
Towards the Next Generation Financial Crimes Platform - How Data, Analytics, ...
Towards the Next Generation Financial Crimes Platform - How Data, Analytics, ...Towards the Next Generation Financial Crimes Platform - How Data, Analytics, ...
Towards the Next Generation Financial Crimes Platform - How Data, Analytics, ...
 
New regulations and the evolving cybersecurity technology landscape
New regulations and the evolving cybersecurity technology landscapeNew regulations and the evolving cybersecurity technology landscape
New regulations and the evolving cybersecurity technology landscape
 
Bhadale group of companies- services catalogue for banking and financial sector
Bhadale group of companies- services catalogue for banking and financial sectorBhadale group of companies- services catalogue for banking and financial sector
Bhadale group of companies- services catalogue for banking and financial sector
 
Marcel van der Heijden - SpeedInvest & Aircloak - EU GDPR & Data Privacy Comp...
Marcel van der Heijden - SpeedInvest & Aircloak - EU GDPR & Data Privacy Comp...Marcel van der Heijden - SpeedInvest & Aircloak - EU GDPR & Data Privacy Comp...
Marcel van der Heijden - SpeedInvest & Aircloak - EU GDPR & Data Privacy Comp...
 
Emerging Trends in Information Security and Privacy
Emerging Trends in Information Security and PrivacyEmerging Trends in Information Security and Privacy
Emerging Trends in Information Security and Privacy
 
Open Banking and Payment Service Directive
Open Banking and Payment Service DirectiveOpen Banking and Payment Service Directive
Open Banking and Payment Service Directive
 
Fundamentals of Information Systems Security Chapter 2
Fundamentals of Information Systems Security Chapter 2 Fundamentals of Information Systems Security Chapter 2
Fundamentals of Information Systems Security Chapter 2
 
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
 
MIFID II and GDPR
MIFID II and GDPR MIFID II and GDPR
MIFID II and GDPR
 
BigData and Cybersecurity for Digital Finance and conclusions
BigData and Cybersecurity for Digital Finance and conclusionsBigData and Cybersecurity for Digital Finance and conclusions
BigData and Cybersecurity for Digital Finance and conclusions
 
Isaca atlanta - practical data security and privacy
Isaca atlanta - practical data security and privacyIsaca atlanta - practical data security and privacy
Isaca atlanta - practical data security and privacy
 
FORFIRM - THE FUTURE, DELIVERED!
FORFIRM - THE FUTURE, DELIVERED!FORFIRM - THE FUTURE, DELIVERED!
FORFIRM - THE FUTURE, DELIVERED!
 

More from Idan Tohami

More from Idan Tohami (20)

Simplify Your Security with Cybowall
Simplify Your Security with CybowallSimplify Your Security with Cybowall
Simplify Your Security with Cybowall
 
Robotic Process Automation (RPA) Webinar - By Matrix-IFS
Robotic Process Automation (RPA) Webinar - By Matrix-IFSRobotic Process Automation (RPA) Webinar - By Matrix-IFS
Robotic Process Automation (RPA) Webinar - By Matrix-IFS
 
Robotic Automation Process (RPA) Webinar - By Matrix-IFS
Robotic Automation Process (RPA) Webinar - By Matrix-IFSRobotic Automation Process (RPA) Webinar - By Matrix-IFS
Robotic Automation Process (RPA) Webinar - By Matrix-IFS
 
Robotic Automation Process (RPA) Brochure - By Matrix-IFS
Robotic Automation Process (RPA) Brochure - By Matrix-IFSRobotic Automation Process (RPA) Brochure - By Matrix-IFS
Robotic Automation Process (RPA) Brochure - By Matrix-IFS
 
The Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi CloudThe Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi Cloud
 
Introdction to Cloud Regulation for Enterprise by 2Bsecure
Introdction to Cloud Regulation for Enterprise by 2BsecureIntrodction to Cloud Regulation for Enterprise by 2Bsecure
Introdction to Cloud Regulation for Enterprise by 2Bsecure
 
Enterprise Journey to the Cloud - Opening Remarks
Enterprise Journey to the Cloud - Opening RemarksEnterprise Journey to the Cloud - Opening Remarks
Enterprise Journey to the Cloud - Opening Remarks
 
Vmware on aws
Vmware on awsVmware on aws
Vmware on aws
 
Ready.Set.Cloud - Enterprise Cloud Migration Framework
Ready.Set.Cloud - Enterprise Cloud Migration FrameworkReady.Set.Cloud - Enterprise Cloud Migration Framework
Ready.Set.Cloud - Enterprise Cloud Migration Framework
 
Journey to the Public Cloud
Journey to the Public CloudJourney to the Public Cloud
Journey to the Public Cloud
 
Google Cloud Fundamentals by CloudZone
Google Cloud Fundamentals by CloudZoneGoogle Cloud Fundamentals by CloudZone
Google Cloud Fundamentals by CloudZone
 
HDinsight Workshop - Prerequisite Activity
HDinsight Workshop - Prerequisite ActivityHDinsight Workshop - Prerequisite Activity
HDinsight Workshop - Prerequisite Activity
 
Cloud Regulations and Security Standards by Ran Adler
Cloud Regulations and Security Standards by Ran AdlerCloud Regulations and Security Standards by Ran Adler
Cloud Regulations and Security Standards by Ran Adler
 
Azure Logic Apps by Gil Gross, CloudZone
Azure Logic Apps by Gil Gross, CloudZoneAzure Logic Apps by Gil Gross, CloudZone
Azure Logic Apps by Gil Gross, CloudZone
 
AWS Fundamentals @Back2School by CloudZone
AWS Fundamentals @Back2School by CloudZoneAWS Fundamentals @Back2School by CloudZone
AWS Fundamentals @Back2School by CloudZone
 
Cloud Accelerated Genomics
Cloud Accelerated GenomicsCloud Accelerated Genomics
Cloud Accelerated Genomics
 
Achieving HIPAA on GCP
Achieving HIPAA on GCPAchieving HIPAA on GCP
Achieving HIPAA on GCP
 
Couchbase Day
Couchbase DayCouchbase Day
Couchbase Day
 
Microsoft Azure and Couchbase
Microsoft Azure and CouchbaseMicrosoft Azure and Couchbase
Microsoft Azure and Couchbase
 
Sarine's Big Data Journey by Rostislav Aaronov
Sarine's Big Data Journey by Rostislav AaronovSarine's Big Data Journey by Rostislav Aaronov
Sarine's Big Data Journey by Rostislav Aaronov
 

Recently uploaded

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
Overkill Security
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 

Recently uploaded (20)

Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUKSpring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 

Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Financial Crime

  • 1. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. PSD2 & GDPR Regulations And How They are Changing Fraud & Financial Crime Advise. Plan. Deliver! marketing@matrix-ifs.com
  • 2. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited.
  • 3. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Matrix-IFS – What We Do Fraud Prevention DataCapital Markets Anti-money Laundering 1
  • 4. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. How PSD2 and Open Banking are driving Innovation in Financial Crime Prevention? 2
  • 5. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. The Challenge Situation As banks in UK and across the EU are mandated under PSD2 to expose account and payment information, multiple financial services will be available to consumers Implication This creates increased fraud risks which push banks toward accelerated innovation in fraud detection and data management Recommendation Stay tuned and find out! 3
  • 6. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. What is Open Banking & PSD2 Open Banking intends to: • Foster competition in the Banking Industry • Improve customer experience by offering more services & innovation The Second Payment Services Directive (PSD2) aims to: ▪ Encourage development and use of innovative payments ▪ Enhance consumer protection against fraud ▪ Strengthen liability & accountability ▪ Make cross-border European payment services safer 4
  • 7. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. PSD2 & GDPR Rollout Timeline 18 month time window 6 month time window PSD2 becomes part of national law across the EU 13 Jan 2018 EU ratifies final Regulatory Technical Standards (RTS) on SCA and SCS 13 March 2018 GDPR provisions become directly applicable in all EU member states 25 May 2018 Banks must open RTS- compliant API to TPPs for testing and integration 14 March 2019 RTS legally apply to all EU member states (including UK) 14 Sep 2019 5
  • 8. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. The New Model – Access to Accounts (XS2A) Transaction Risk Assessment Strong Customer Authentication (SCA) Secure Communications Customer Credentials 6
  • 9. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Opportunity for Innovation in Financial Services 1. Encouraging competition between banking providers 2. New products and services by start-ups & challenger banks 3. Products / services can also be offered by established banks Example: Account Takeover Identity Theft Device Spoofing Expected Attack Vectors: 7 New products & services increase the bank’s ‘attack surface’!
  • 10. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. In order to combine the necessary risk analysis with the exemptions and remain compliant with PSD2, banks need: A Fraud-detection engine that: 1. Ingests different sources of information (internal / external) 2. Combines behavioural analytics 3. Covers long periods for unique accounts Moving Toward ‘White Box’ Fraud Prevention Rules Based Probabilistic (ML, AI) ‘White Box’ Enterprise (‘Black Box’) 8
  • 11. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. The ‘White Box’ Approach Feature Current Risk Engines ‘White Box’ Approach Model Build Process • Black Box model built by vendor • Built by experts, in collaboration with the bank Data Used • Pre-defined data requirements • Model built incorporating available data • Agile testing procedures Fraud History • Model built on vendor data • Model tuned on bank’s fraud cases • Developed from bank-specific data and fraud cases Deployment • Deployed by vendor based on long model tuning • Agile build, test & deployment within the engine via API / User Interface 9
  • 12. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Operational Recommendations 10
  • 13. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #1 - Review RTS Compliance Complete a study of the impact of PSD2 & the Regulatory Technical Standards (RTS) on Fraud Prevention Should aim at 2 objectives: 1. Ensuring that the bank is compliant with the regulation and RTS 2. Ensuring that fraud prevention is not impacted due to opening bank systems to TPPs 11
  • 14. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #1 - Review RTS Compliance Key points of RTS Compliance review: • Quality criteria for the API • Strong Customer Authentication (SCA) & transaction risk analysis • Specific fraud reporting requirement • Expert security measures audit 12
  • 15. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #2 - Multi-channel Fraud Architecture Under PSD2, banks must open API for Third Party Providers (TPPs), thus creating new opportunities for fraud "61% of Financial Institutions are planning to invest in a multi-channel authentication solution”. Study by top advisory consulting firm (Nov 2017) A Multi-channel architecture can help you mitigate risk 13
  • 16. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. #2 - Multi-channel Fraud Architecture Transaction Merchant Customers’ Accounts Card Fraud Check TPP (PSD2) Fraud Check Card Interface Open API Online Banking Fraud Check Banking Portal/App Strong Customer Authentication (SCA) Card Scheme Merchant Acquirer Customer Card Customer Uses TPP App Merchant TPP Customer Uses Bank Services Payment Instruction Account based requests Account based requests 14
  • 17. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Create Store Destroy Use ShareArchive #3 - Data Lifecycle Management Data Lifecycle Management Capabilities Desired • Data storefront – data provisioning services • Data lineage – convergence, control & quality • Archive and deletion services 15
  • 18. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. What’s Next? Review RTS Compliance Multi-channel Fraud Architecture Data Lifecycle Management Develop a “White Box” Solution 16
  • 19. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. 17 The Great Data Revolution Data: disrupting how we do business Chris Butlin, Director | Professional Services CIM
  • 20. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Change Data is transforming the way we do business Data Growth is changing our understanding of the world Data companies are changing business – The Gig Economy Digital Transformation Journey Politics Customer behaviour Flexible working based on an app Disintermediation Internet of Things UBER, airbnb, deliveroo Data rich but information poor Security Regulatory change (GDPR) 18
  • 21. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. single view Cut through the data lake to create a Data Lake Data Collection Data Quality Data Entities Resolved Data System of Record SINGLE VIEW 19
  • 22. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. GDPRPart of the Digital Transformation Journey “Don’t tell me what GDPR is - tell me how to get started on the path to GDPR data compliance” DISCOVER Identify what data you hold and where and on what grounds Data Collection & Storage Privacy by Design Article 5 & 25 --------------------------------- Scan Non-Digitised Data Data Discovery Understand Your Data Landscape PREPARE Keep personal data up to date and limit data to what is relevant Data quality and data minimisation Article 5 ------------------------------ Data Quality Data Minimisation Improve Your Data Quality ACT Manage right of access and data portability Consent & Transparency Articles 7-9, 12-18 ------------------------------ Data Hub Data Federation Data Governance 20
  • 23. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. ENGAGEMENT Where are you? What are you doing? What mode are you in? What’s your intent? What’s happening around you? Who is with you? INSIGHTS Lifetime value Profitability Credit risk Share of wallet Opportunity Loyalty Satisfaction Retention Needs Attitude Persuadability R-F-M ACTIVITIES Marketing history Offers, Responses, Coupons Preferences Method, Content, Frequency Social Media activity Posts, Check-ins, Likes, Awards Engagement history Calls, Emails, SMS, Web journey, in-store visits Service history Requests, Tickets, Complaints Transaction history Purchases, Payments, Bills, Invoices, Statements Benefits of GDPR – Leading to a Single View Initial GDPR Compliance Business Benefits RELATIONSHIPS Household Places Organisational Social Memberships CORE PROFILE Identity | Name | Age | Gender Employment | Portfolio … INDIVIDUAL 21
  • 24. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Data Transformation Journey Resulting in: Control of Data Governance Understand Your Data Consistent Data Across the Enterprise Improved Business Processes Meet Compliance Requirements Single View Understand Interactions Channel Shift Self Service Solution Consistent Communication Omni-channel Communications 22
  • 25. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. GDPR and the Fight against Financial Crime FI collect customer data Under GDPR, firms are obliged to respect privacy rights granted to individuals Legal processing and right to be forgotten FIs have a higher degree of obligation to innovate and invest in their data management GDPR permits processing of data necessary to meet a legal obligation REC #1 FIs should start investing in building Data Management capabilities to improve Fraud and FinCrime Prevention REC #2 Leverage technology to create a single view of the customer 23 Example: PSD2
  • 26. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. ForquestionsonPSD2contact yair.samban@matrix-ifs.com Questions? ForquestionsonGDPRcontact christopher.butlin@pb.com ReachouttoourexpertsforadviceonFraud PreventionandGDPRFinCrimedatamanagement
  • 27. All content is the property and proprietary interest of matrix IFS; The removal of any proprietary notices, including attribution information, is strictly prohibited. Thank you! …andwewillsendoveradocumentthatwillhelpyoutoensureyour oraganisationisontracktobePSD2/GDPRcompliant Areyou PSD2/GDPR compliant? Wouldyou likeadoc outliningwhat you needtobe compliant? Emailus marketing@ matrix-ifs.com Tellus howfaralong areyouin theprocess...