SlideShare une entreprise Scribd logo

PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR

Latvijas Banka
Latvijas Banka

Deloitte prezentācija Latvijas Bankas darbseminārā "PSD2 un regulējošie tehniskie standarti" (25.05.2018.)

Économie & finance
1  sur  19
Télécharger pour lire hors ligne
Intersections of PSD2 and GDPR Deloitte Latvia May 25, 2018
© Deloitte Latvia 2 The EC have set out an agenda of payments regulatory change which will force the European Payments market to become open, more competitive, innovative whilst protecting its citizens Payment Services Directive 2 New entrants Foster innovation Promote competition Protect consumers Respond to changes in the payments landscape 1 Deliver a competitive, innovative and open European Payments market 2 Provide level playing field for new entrants competing with Banks 3 • Recognize Third Party Providers (TPPs) • Define PISP and AISP services • Require TPPs to be licensed and regulated as Payment Institutions • Banks forced to allow TPPs access to their platforms via a standard API • No contracts for standard AISP/PISP services • New payment services will compete with cards • Transaction fees and banking charges are expected to come under pressure in time • Improved authentication and data protection measures • Decreased user liability in case of unauthorized payment A better consumer experience when using payment services within the EU
© Deloitte Latvia 3 Who Would be a Bank? FinTech and BigTech are eroding Banking revenues New Market Players Evolution of the Business Model Enhanced Services Offering Organizational Impact Strategic Options
© Deloitte Latvia 4 General Data Protection Regulation The key concepts GDPR New rules on personal data protection New rights GDPR brings for consumers a full range of new rights in the area of the data privacy. The main rights are: right to data portability, right to be erased (right to be forgotten), right to object, right to rectification, right to restriction of processing, etc. Increases of fines GDPR introduces a new maximum monetary penalty of 20 000 000 EUR or 4% of annual global turnover that can be imposed in cases of serious non-compliance with new regulatory rules for data privacy protection International Reach Organizations based outside the EU that process data to offer goods or services to European residents, or to monitor the behavior of European residents will also be subject to GDPR requirements New obligations Increased demands on data controllers and new obligations for personal data processors. The GDPR requires organizations to take a more proactive approach towards privacy compliance including new consent, documents, organization roles and processes and technology design and sets forth new principles such as data minimization.
© Deloitte Latvia 5 Scope of the General Data Protection Regulation (GDPR) Quick GDPR Overview Broader territorial scope Enforcement Accountability Expanded definitions Data subjects rights Consent Data breach notification One-stop shop International data transfers General Data Protection Regulation Applies to players not established in the EU but whose activities consist of targeting data subjects in the EU Data Protection Authorities will be entitled to impose fines ranging between 2 to 4% of annual turnover Explicit obligation to the controller as well as the processor to be able to demonstrate their compliance to the GDPR Personal data now explicitly includes location data, IP addresses, online and technology identifiers; Reinforced rights: Access, rectification, restriction, erasure, objection to processing; no automated processing and profiling Spelled out more clearly and focus on ability of individuals to distinguish a consent Report a personal data breach to the Data Protection Authority within 72h… Data Protection Authorities (DPA) of main establishment can act as lead DPA, supervising processing activities throughout the EU BCRs as tools for data transfers outside the EU and EEA are now embedded in law
© Deloitte Latvia 6 General Data Protection Regulation GDPR mainly impacts four layers of the business model Governance, organisation & people Processes Data Technology New GDPR requirements will mean changes to the ways in which technologies are designed & managed, including a focus on profiling, security & Privacy by design Organization tasked with data governance and data management will be challenged to provide clearer, more proactive oversight on data storage, journeys, and lineage Policies and processes to allow companies to deliver value to customers in a consistent and scalable manner Determine the “GDPR vision” and adopt an organizational model to lead, manage and coordinate a program aligned with it. Governance, organisation & people Policies and Processes Data Technology InformationSecurityandRiskManagement
© Deloitte Latvia 7 Proposition of GDPR and PSD2 in to the financial ecosystem Payer Bank account payeee Bank account payer Clearing Settlement Payee Traditional payments chain Operator DistributorDistributor Producer New consumer & merchant propositions Rise of parallel payment infrastructures PSD2 as disruptive enabler GDPR as compliance trigger
© Deloitte Latvia 8 Leverage mandatory investment and embrace “open banking” as an opportunity PSD2 key requirements • Adapt current compliance and risk mechanisms to new PSD guidelines • Mitigate fraud risk of opening up the access to Third Party Providers • Ensure 2-factor authentication for secure payment transactions and access to payment data (already applicable for internet payments since mid 2015) Security Services IT development • Assess what services to offer to third-parties that require the development of APIs • Consider how to make the APIs flexible while complying with the standards • Budget and plan for significant IT investment to grant TPPs access to account information through APIs and to allow access differentiation
© Deloitte Latvia 99 Data Protection Strategy Organization & Accountability Policies & Procedures Communication, Training & Awareness Privacy Operations IT Risk Management Technology & Architecture Data Governance Data Subject Rights Capabilities Demonstrate “privacy by default”, assure compliance for business process and IT GDPR key requirements
© Deloitte Latvia 10 Main concepts – similarities and differences Intersections of both regulations – Usage of personal data GDPR PSD2 No common structure between GDPR and PSD2 definition for Sensitive and Sensitive payment data ? Personal data Sensitive data Data protection (as prescribed by the GDPR) should therefore be fully considered in the design and implementation of all PSD2 related services. PSD2 defines this as ‘data, including personalized security credentials which can be used to carry out fraud’ ‘personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.’ Personal data Sensitive payment data
© Deloitte Latvia 11 PSD2 states that a PSP may only access, process and retain the personal data necessary for the provision of their payment services with the explicit consent of the payment service user. This is on the whole in line with the GDPR Legitimate bases for banks to process personal data 1. Compliance with the legal obligations 2. Contract 3. Vital interests 4. Explicit consent Intersections of both regulations - Consent Main concepts – similarities and differences consent for separate processing operations Can be withdrawn at any time contract performance must not be conditional on consent Any freely given, specific, informed and unambiguous indication of data subject`s wishes 1. Is separate consent is needed and under which specific GDPR/ PSD2 rules 2. Purpose of processing ?
© Deloitte Latvia 12 Relations among parties Intersections of both regulations – Transfer to the third parties Main concepts – similarities and differences Contractual liability Data subjects Joint- Controller Controller Processor • As TPP’s will want to use (process) personal financial data of European customers will be required to take the GDPR rules into account. • Banks who provide financial data are also obligated to do so in accordance with the GDPR, as sharing personal data is also a form of processing. 1. Consent management issue 2. Legitimate ground for processing ? Under GDPR, banks are the data controllers of their customers’ information and are responsible for the purposes and the manner in which personal data is processed and shared PSD2 adds additional data protection requirements by stating that TPPs are only permitted to access information for the specific purpose(s) “explicitly requested by the customer” relating to the provision of the account information or payment initiation services, and not for any other reason.
© Deloitte Latvia 13 Strong authentication Management of Consent Base for digital banking business model Security Intersections of both regulations – Technology readiness Main concepts – similarities and differences • Push to develop open banking by legislation • Banks forced to open their platforms via APIs to provide TPPs access to previously privileged data Physical Online Channels Client Web / App Bank Branch / Terminal • Movement towards opening up banks data to third party providers (TPPs) • New propositions that help consumers and businesses transact, save, borrow, lend and invest Prospectively – Open banking Open APIs App-Store 3rd Party Developers Banking as a platform
14 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Enable Comply Reconfigure Innovate Advancedpayment& dataservices Account and access provider XS2APISP&AISP Enable TPPs via premium APIs and or use of banking license Strategic Responses Banks are asking how they develop a PSD2 strategy, the question should be how do Banks wish to position themselves in a interconnected economy Retire and reconfigure platforms and products Internally driven proposition innovation
15 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Differences among CEE countries can be well illustrated on budgets assigned for PSD2 regulatory and strategy initiatives 10% 29% 28% 40% 36% 16% 18% 29% 20% 18% 13% 16% 18% 43% 29% 50%12%21% 58% 35% 28% 43% 40% 46% Other Latvia Romania Czech Republic Poland Hungary 4% Western Europe 5% 29% 17% 14% 20% 9% 13% 11% 17% 14% 18% 14% 8% 79% 84% 71% 58% 80% 66% 73% 0 €150-€500k<€150k No dedicated budget currently assigned>€10m€5-€10m€500k-€5m Compliance budget Strategy budget Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
16 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Most CEE banks regard PSD2 as an opportunity or with neutral outcome 47% 24% 14% 14% 20% 27% 42% 21% 24% 43% 43% 40% 9% 8% 11% 17% 14% 14% 20% 55% 21% 21% 35% 29% 29% 20% 9% 29% Neither Other 11 Threat 5 Don’t know Latvia Opportunity Czech RepublicHungary 719 Poland 17 Romania 7 Western Europe 24 Do you perceive PSD2 to be a strategic threat or opportunity for your organisation? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
17 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Analysis of responses by country reveals that most CEE banks are considering the cooperative approach 12% 14% 29% 12% 42% 12% 43% 20% 46% 16% 47% 43% 14% 40% 13% 12% 14% 9% 42% 16% 14% 27% 26% 17% 29% 40% 18% 25% 4% 24 4% Western EuropeLatviaCzech RepublicPoland 7 115 OtherHungary 17 719 Romania Aggressive Cooperative Wait and see Other Defensive Still evaluating How would you characterise your strategic response to PSD2? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
© Deloitte Latvia 18 Rudīte Sprinģe Manager, CGEIT, CISM, PRINCE2 Deloitte Latvia Email: rspringe@deloittece.com Mobile: +371 29226670 Janis Kaulins, CFA, FCCA, CAMS, CISSP Assistant Director Deloitte Latvia Email: jkaulins@deloitteCE.com Mobile: +371 2515 0995 Deloitte experts profile Janis Kaulins is an Assistant Director with more than 9 years of professional experience in financial services industry. Janis serves as the AML, Sanctions and Financial Crime Leader at Deloitte Central Europe, and leads the Financial Services Industry (FSI) Advisory and Forensic services in the Baltic States. Rudite has more than 13 years of professional and project management experience in ICT governance, solution architecture, requirements definition, security design, as well business process re- engineering and ICT development quality assurance engagements. Rudite has been engaged as Advisory project leader and ICT professional in number of IT deployments for public sector and private clients.
Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see www.deloitte.com/about to learn more about our global network of member firms. Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 244,000 professionals are committed to becoming the standard of excellence. This communication contains general information only, and none of Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively, the “Deloitte Network”) is, by means of this communication, rendering professional advice or services. No entity in the Deloitte network shall be responsible for any loss whatsoever sustained by any person who relies on this communication. © 2018. For information, contact Deloitte Touche Tohmatsu Limited

Recommandé

Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...Latvijas Banka
 
PSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcijaPSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcijaLatvijas Banka
 
Berlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumiBerlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumiLatvijas Banka
 
Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Pushpalanka Jayawardhana
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baFrederik Adriaensen
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)Omar Ghazi
 
Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr... Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr...WSO2
 
PISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKPISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKWSO2
 

Recommandé

Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...Latvijas Banka
 
PSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcijaPSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcijaLatvijas Banka
 
Berlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumiBerlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumiLatvijas Banka
 
Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Pushpalanka Jayawardhana
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baFrederik Adriaensen
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)Omar Ghazi
 
Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr... Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr...WSO2
 
PISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKPISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKWSO2
 
Brugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKBrugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKAmniAugustine
 
A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)Kullarat Phongsathaporn
 
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)Kullarat Phongsathaporn
 
NACHA Compliance
NACHA ComplianceNACHA Compliance
NACHA ComplianceEComplish
 
OpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateOpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateMikeLeszcz
 
Payments Testing @ Thinksoft
Payments Testing @ ThinksoftPayments Testing @ Thinksoft
Payments Testing @ ThinksoftThinksoft Global
 
Building a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceBuilding a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceWSO2
 
Direct Debit System
Direct Debit SystemDirect Debit System
Direct Debit SystemNewgen Software Technologies Limited
 
A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)Kullarat Phongsathaporn
 
6 simple things to remember about kyc verification
6 simple things to remember about kyc verification6 simple things to remember about kyc verification
6 simple things to remember about kyc verificationShufti Pro
 
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La..."Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...DevClub_lv
 
What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions Blockchain Council
 
Danske Bank
Danske BankDanske Bank
Danske BankOslo Business Region
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for bankingkarim.abdulkarim
 
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...Kullarat Phongsathaporn
 
VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live
 
Embracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsEmbracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsCognizant
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanEquiGov Institute
 
EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019Roger Coenen
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPRTim Hyman LLB
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPRTim Hyman LLB
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpraudrey miguel
 

Contenu connexe

Tendances

Brugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKBrugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKAmniAugustine
 
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)Kullarat Phongsathaporn
 
NACHA Compliance
NACHA ComplianceNACHA Compliance
NACHA ComplianceEComplish
 
OpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateOpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateMikeLeszcz
 
Payments Testing @ Thinksoft
Payments Testing @ ThinksoftPayments Testing @ Thinksoft
Payments Testing @ ThinksoftThinksoft Global
 
Building a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceBuilding a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceWSO2
 
A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)Kullarat Phongsathaporn
 
6 simple things to remember about kyc verification
6 simple things to remember about kyc verification6 simple things to remember about kyc verification
6 simple things to remember about kyc verificationShufti Pro
 
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La..."Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...DevClub_lv
 
What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions Blockchain Council
 
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...Kullarat Phongsathaporn
 
VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live
 

Tendances (16)

Brugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKBrugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UK
 
A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)
 
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
 
NACHA Compliance
NACHA ComplianceNACHA Compliance
NACHA Compliance
 
OpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateOpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking Update
 
Payments Testing @ Thinksoft
Payments Testing @ ThinksoftPayments Testing @ Thinksoft
Payments Testing @ Thinksoft
 
Building a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceBuilding a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 Compliance
 
Direct Debit System
Direct Debit SystemDirect Debit System
Direct Debit System
 
A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)
 
6 simple things to remember about kyc verification
6 simple things to remember about kyc verification6 simple things to remember about kyc verification
6 simple things to remember about kyc verification
 
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La..."Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
 
What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions
 
Danske Bank
Danske BankDanske Bank
Danske Bank
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for banking
 
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
 
VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)
 

Similaire à PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR

Embracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsEmbracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsCognizant
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanEquiGov Institute
 
EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019Roger Coenen
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPRTim Hyman LLB
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPRTim Hyman LLB
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpraudrey miguel
 
2015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 050520152015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 05052015Jan Dhont
 
Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit Sean Bailey
 
General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Complianceaccenture
 
Horner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPRHorner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPRJenny Ferguson
 
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readinessGeneral Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readinessOmo Osagiede
 
Data protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and BirdData protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and BirdCoadec
 
How IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity LegislationHow IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity LegislationIBM Security
 
What's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) ChangesWhat's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) ChangesOgilvy Consulting
 

Similaire à PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR (20)

Embracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsEmbracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven Overhauls
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbean
 
EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpr
 
2015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 050520152015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 05052015
 
Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit
 
Consumer Data Rights
Consumer Data RightsConsumer Data Rights
Consumer Data Rights
 
Gdpr action plan
Gdpr action plan Gdpr action plan
Gdpr action plan
 
General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Compliance
 
Pytch psd2 compliance pack
Pytch psd2 compliance packPytch psd2 compliance pack
Pytch psd2 compliance pack
 
Pytch psd2 compliance pack
Pytch psd2 compliance packPytch psd2 compliance pack
Pytch psd2 compliance pack
 
Horner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPRHorner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPR
 
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readinessGeneral Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
 
Data protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and BirdData protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and Bird
 
How IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity LegislationHow IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity Legislation
 
Fasten Your Belts for #GDPR
Fasten Your Belts for #GDPRFasten Your Belts for #GDPR
Fasten Your Belts for #GDPR
 
Fasten Your Belts for GDPR
Fasten Your Belts for GDPRFasten Your Belts for GDPR
Fasten Your Belts for GDPR
 
What's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) ChangesWhat's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) Changes
 

Plus de Latvijas Banka

Ekspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. martsEkspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. martsLatvijas Banka
 
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļosLatvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļosLatvijas Banka
 
Human capital as the key to economic development
Human capital as the key to economic developmentHuman capital as the key to economic development
Human capital as the key to economic developmentLatvijas Banka
 
Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.Latvijas Banka
 
Makroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembrisMakroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembrisLatvijas Banka
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023Latvijas Banka
 
Digitālo finanšu drošība
Digitālo finanšu drošībaDigitālo finanšu drošība
Digitālo finanšu drošībaLatvijas Banka
 
Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023Latvijas Banka
 
Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023Latvijas Banka
 
Procentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanaiProcentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanaiLatvijas Banka
 
Inflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēmInflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēmLatvijas Banka
 
Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023Latvijas Banka
 
Makroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada martsMakroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada martsLatvijas Banka
 
Ekspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratībuEkspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratībuLatvijas Banka
 
Tautsaimniecības aktualitātes
Tautsaimniecības aktualitātesTautsaimniecības aktualitātes
Tautsaimniecības aktualitātesLatvijas Banka
 
Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023Latvijas Banka
 
Kurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļākaKurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļākaLatvijas Banka
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023Latvijas Banka
 

Plus de Latvijas Banka (20)

Ekspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. martsEkspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. marts
 
MNI Connect
MNI Connect MNI Connect
MNI Connect
 
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļosLatvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
 
Human capital as the key to economic development
Human capital as the key to economic developmentHuman capital as the key to economic development
Human capital as the key to economic development
 
Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.
 
Makroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembrisMakroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembris
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
 
Digitālo finanšu drošība
Digitālo finanšu drošībaDigitālo finanšu drošība
Digitālo finanšu drošība
 
Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023
 
Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023
 
Procentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanaiProcentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanai
 
Inflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēmInflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēm
 
Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023
 
Makroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada martsMakroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada marts
 
MNI Connect
MNI ConnectMNI Connect
MNI Connect
 
Ekspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratībuEkspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratību
 
Tautsaimniecības aktualitātes
Tautsaimniecības aktualitātesTautsaimniecības aktualitātes
Tautsaimniecības aktualitātes
 
Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023
 
Kurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļākaKurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļāka
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
 

Dernier

Q3 2024 Earnings Conference Call and Webcast Slides
Q3 2024 Earnings Conference Call and Webcast SlidesQ3 2024 Earnings Conference Call and Webcast Slides
Q3 2024 Earnings Conference Call and Webcast SlidesMarketing847413
 
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptxFinTech Belgium
 
The Economic History of the U.S. Lecture 17.pdf
The Economic History of the U.S. Lecture 17.pdfThe Economic History of the U.S. Lecture 17.pdf
The Economic History of the U.S. Lecture 17.pdfGale Pooley
 
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Call Girls in Nagpur High Profile
 
03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptx03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptxFinTech Belgium
 
Lundin Gold April 2024 Corporate Presentation v4.pdf
Lundin Gold April 2024 Corporate Presentation v4.pdfLundin Gold April 2024 Corporate Presentation v4.pdf
Lundin Gold April 2024 Corporate Presentation v4.pdfAdnet Communications
 
The Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdfThe Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdfGale Pooley
 
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptxFinTech Belgium
 
Instant Issue Debit Cards - High School Spirit
Instant Issue Debit Cards - High School SpiritInstant Issue Debit Cards - High School Spirit
Instant Issue Debit Cards - High School Spiritegoetzinger
 
The Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfThe Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfGale Pooley
 
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130Suhani Kapoor
 
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure serviceCall US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure servicePooja Nehwal
 
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...ssifa0344
 
The Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdfThe Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdfGale Pooley
 
VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...
VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...
VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...Call Girls in Nagpur High Profile
 
The Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdfThe Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdfGale Pooley
 
Malad Call Girl in Services 9892124323 | ₹,4500 With Room Free Delivery
Malad Call Girl in Services 9892124323 | ₹,4500 With Room Free DeliveryMalad Call Girl in Services 9892124323 | ₹,4500 With Room Free Delivery
Malad Call Girl in Services 9892124323 | ₹,4500 With Room Free DeliveryPooja Nehwal
 
Bladex Earnings Call Presentation 1Q2024
Bladex Earnings Call Presentation 1Q2024Bladex Earnings Call Presentation 1Q2024
Bladex Earnings Call Presentation 1Q2024Bladex
 
Dividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxDividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxanshikagoel52
 

Dernier (20)

Q3 2024 Earnings Conference Call and Webcast Slides
Q3 2024 Earnings Conference Call and Webcast SlidesQ3 2024 Earnings Conference Call and Webcast Slides
Q3 2024 Earnings Conference Call and Webcast Slides
 
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
 
The Economic History of the U.S. Lecture 17.pdf
The Economic History of the U.S. Lecture 17.pdfThe Economic History of the U.S. Lecture 17.pdf
The Economic History of the U.S. Lecture 17.pdf
 
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
 
03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptx03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptx
 
Lundin Gold April 2024 Corporate Presentation v4.pdf
Lundin Gold April 2024 Corporate Presentation v4.pdfLundin Gold April 2024 Corporate Presentation v4.pdf
Lundin Gold April 2024 Corporate Presentation v4.pdf
 
The Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdfThe Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdf
 
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
 
Instant Issue Debit Cards - High School Spirit
Instant Issue Debit Cards - High School SpiritInstant Issue Debit Cards - High School Spirit
Instant Issue Debit Cards - High School Spirit
 
The Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfThe Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdf
 
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
 
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure serviceCall US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
 
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
 
The Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdfThe Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdf
 
VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...
VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...
VVIP Pune Call Girls Katraj (7001035870) Pune Escorts Nearby with Complete Sa...
 
The Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdfThe Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdf
 
Malad Call Girl in Services 9892124323 | ₹,4500 With Room Free Delivery
Malad Call Girl in Services 9892124323 | ₹,4500 With Room Free DeliveryMalad Call Girl in Services 9892124323 | ₹,4500 With Room Free Delivery
Malad Call Girl in Services 9892124323 | ₹,4500 With Room Free Delivery
 
Bladex Earnings Call Presentation 1Q2024
Bladex Earnings Call Presentation 1Q2024Bladex Earnings Call Presentation 1Q2024
Bladex Earnings Call Presentation 1Q2024
 
Dividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxDividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptx
 

PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR

  • 1. Intersections of PSD2 and GDPR Deloitte Latvia May 25, 2018
  • 2. © Deloitte Latvia 2 The EC have set out an agenda of payments regulatory change which will force the European Payments market to become open, more competitive, innovative whilst protecting its citizens Payment Services Directive 2 New entrants Foster innovation Promote competition Protect consumers Respond to changes in the payments landscape 1 Deliver a competitive, innovative and open European Payments market 2 Provide level playing field for new entrants competing with Banks 3 • Recognize Third Party Providers (TPPs) • Define PISP and AISP services • Require TPPs to be licensed and regulated as Payment Institutions • Banks forced to allow TPPs access to their platforms via a standard API • No contracts for standard AISP/PISP services • New payment services will compete with cards • Transaction fees and banking charges are expected to come under pressure in time • Improved authentication and data protection measures • Decreased user liability in case of unauthorized payment A better consumer experience when using payment services within the EU
  • 3. © Deloitte Latvia 3 Who Would be a Bank? FinTech and BigTech are eroding Banking revenues New Market Players Evolution of the Business Model Enhanced Services Offering Organizational Impact Strategic Options
  • 4. © Deloitte Latvia 4 General Data Protection Regulation The key concepts GDPR New rules on personal data protection New rights GDPR brings for consumers a full range of new rights in the area of the data privacy. The main rights are: right to data portability, right to be erased (right to be forgotten), right to object, right to rectification, right to restriction of processing, etc. Increases of fines GDPR introduces a new maximum monetary penalty of 20 000 000 EUR or 4% of annual global turnover that can be imposed in cases of serious non-compliance with new regulatory rules for data privacy protection International Reach Organizations based outside the EU that process data to offer goods or services to European residents, or to monitor the behavior of European residents will also be subject to GDPR requirements New obligations Increased demands on data controllers and new obligations for personal data processors. The GDPR requires organizations to take a more proactive approach towards privacy compliance including new consent, documents, organization roles and processes and technology design and sets forth new principles such as data minimization.
  • 5. © Deloitte Latvia 5 Scope of the General Data Protection Regulation (GDPR) Quick GDPR Overview Broader territorial scope Enforcement Accountability Expanded definitions Data subjects rights Consent Data breach notification One-stop shop International data transfers General Data Protection Regulation Applies to players not established in the EU but whose activities consist of targeting data subjects in the EU Data Protection Authorities will be entitled to impose fines ranging between 2 to 4% of annual turnover Explicit obligation to the controller as well as the processor to be able to demonstrate their compliance to the GDPR Personal data now explicitly includes location data, IP addresses, online and technology identifiers; Reinforced rights: Access, rectification, restriction, erasure, objection to processing; no automated processing and profiling Spelled out more clearly and focus on ability of individuals to distinguish a consent Report a personal data breach to the Data Protection Authority within 72h… Data Protection Authorities (DPA) of main establishment can act as lead DPA, supervising processing activities throughout the EU BCRs as tools for data transfers outside the EU and EEA are now embedded in law
  • 6. © Deloitte Latvia 6 General Data Protection Regulation GDPR mainly impacts four layers of the business model Governance, organisation & people Processes Data Technology New GDPR requirements will mean changes to the ways in which technologies are designed & managed, including a focus on profiling, security & Privacy by design Organization tasked with data governance and data management will be challenged to provide clearer, more proactive oversight on data storage, journeys, and lineage Policies and processes to allow companies to deliver value to customers in a consistent and scalable manner Determine the “GDPR vision” and adopt an organizational model to lead, manage and coordinate a program aligned with it. Governance, organisation & people Policies and Processes Data Technology InformationSecurityandRiskManagement
  • 7. © Deloitte Latvia 7 Proposition of GDPR and PSD2 in to the financial ecosystem Payer Bank account payeee Bank account payer Clearing Settlement Payee Traditional payments chain Operator DistributorDistributor Producer New consumer & merchant propositions Rise of parallel payment infrastructures PSD2 as disruptive enabler GDPR as compliance trigger
  • 8. © Deloitte Latvia 8 Leverage mandatory investment and embrace “open banking” as an opportunity PSD2 key requirements • Adapt current compliance and risk mechanisms to new PSD guidelines • Mitigate fraud risk of opening up the access to Third Party Providers • Ensure 2-factor authentication for secure payment transactions and access to payment data (already applicable for internet payments since mid 2015) Security Services IT development • Assess what services to offer to third-parties that require the development of APIs • Consider how to make the APIs flexible while complying with the standards • Budget and plan for significant IT investment to grant TPPs access to account information through APIs and to allow access differentiation
  • 9. © Deloitte Latvia 99 Data Protection Strategy Organization & Accountability Policies & Procedures Communication, Training & Awareness Privacy Operations IT Risk Management Technology & Architecture Data Governance Data Subject Rights Capabilities Demonstrate “privacy by default”, assure compliance for business process and IT GDPR key requirements
  • 10. © Deloitte Latvia 10 Main concepts – similarities and differences Intersections of both regulations – Usage of personal data GDPR PSD2 No common structure between GDPR and PSD2 definition for Sensitive and Sensitive payment data ? Personal data Sensitive data Data protection (as prescribed by the GDPR) should therefore be fully considered in the design and implementation of all PSD2 related services. PSD2 defines this as ‘data, including personalized security credentials which can be used to carry out fraud’ ‘personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.’ Personal data Sensitive payment data
  • 11. © Deloitte Latvia 11 PSD2 states that a PSP may only access, process and retain the personal data necessary for the provision of their payment services with the explicit consent of the payment service user. This is on the whole in line with the GDPR Legitimate bases for banks to process personal data 1. Compliance with the legal obligations 2. Contract 3. Vital interests 4. Explicit consent Intersections of both regulations - Consent Main concepts – similarities and differences consent for separate processing operations Can be withdrawn at any time contract performance must not be conditional on consent Any freely given, specific, informed and unambiguous indication of data subject`s wishes 1. Is separate consent is needed and under which specific GDPR/ PSD2 rules 2. Purpose of processing ?
  • 12. © Deloitte Latvia 12 Relations among parties Intersections of both regulations – Transfer to the third parties Main concepts – similarities and differences Contractual liability Data subjects Joint- Controller Controller Processor • As TPP’s will want to use (process) personal financial data of European customers will be required to take the GDPR rules into account. • Banks who provide financial data are also obligated to do so in accordance with the GDPR, as sharing personal data is also a form of processing. 1. Consent management issue 2. Legitimate ground for processing ? Under GDPR, banks are the data controllers of their customers’ information and are responsible for the purposes and the manner in which personal data is processed and shared PSD2 adds additional data protection requirements by stating that TPPs are only permitted to access information for the specific purpose(s) “explicitly requested by the customer” relating to the provision of the account information or payment initiation services, and not for any other reason.
  • 13. © Deloitte Latvia 13 Strong authentication Management of Consent Base for digital banking business model Security Intersections of both regulations – Technology readiness Main concepts – similarities and differences • Push to develop open banking by legislation • Banks forced to open their platforms via APIs to provide TPPs access to previously privileged data Physical Online Channels Client Web / App Bank Branch / Terminal • Movement towards opening up banks data to third party providers (TPPs) • New propositions that help consumers and businesses transact, save, borrow, lend and invest Prospectively – Open banking Open APIs App-Store 3rd Party Developers Banking as a platform
  • 14. 14 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Enable Comply Reconfigure Innovate Advancedpayment& dataservices Account and access provider XS2APISP&AISP Enable TPPs via premium APIs and or use of banking license Strategic Responses Banks are asking how they develop a PSD2 strategy, the question should be how do Banks wish to position themselves in a interconnected economy Retire and reconfigure platforms and products Internally driven proposition innovation
  • 15. 15 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Differences among CEE countries can be well illustrated on budgets assigned for PSD2 regulatory and strategy initiatives 10% 29% 28% 40% 36% 16% 18% 29% 20% 18% 13% 16% 18% 43% 29% 50%12%21% 58% 35% 28% 43% 40% 46% Other Latvia Romania Czech Republic Poland Hungary 4% Western Europe 5% 29% 17% 14% 20% 9% 13% 11% 17% 14% 18% 14% 8% 79% 84% 71% 58% 80% 66% 73% 0 €150-€500k<€150k No dedicated budget currently assigned>€10m€5-€10m€500k-€5m Compliance budget Strategy budget Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
  • 16. 16 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Most CEE banks regard PSD2 as an opportunity or with neutral outcome 47% 24% 14% 14% 20% 27% 42% 21% 24% 43% 43% 40% 9% 8% 11% 17% 14% 14% 20% 55% 21% 21% 35% 29% 29% 20% 9% 29% Neither Other 11 Threat 5 Don’t know Latvia Opportunity Czech RepublicHungary 719 Poland 17 Romania 7 Western Europe 24 Do you perceive PSD2 to be a strategic threat or opportunity for your organisation? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
  • 17. 17 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Analysis of responses by country reveals that most CEE banks are considering the cooperative approach 12% 14% 29% 12% 42% 12% 43% 20% 46% 16% 47% 43% 14% 40% 13% 12% 14% 9% 42% 16% 14% 27% 26% 17% 29% 40% 18% 25% 4% 24 4% Western EuropeLatviaCzech RepublicPoland 7 115 OtherHungary 17 719 Romania Aggressive Cooperative Wait and see Other Defensive Still evaluating How would you characterise your strategic response to PSD2? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
  • 18. © Deloitte Latvia 18 Rudīte Sprinģe Manager, CGEIT, CISM, PRINCE2 Deloitte Latvia Email: rspringe@deloittece.com Mobile: +371 29226670 Janis Kaulins, CFA, FCCA, CAMS, CISSP Assistant Director Deloitte Latvia Email: jkaulins@deloitteCE.com Mobile: +371 2515 0995 Deloitte experts profile Janis Kaulins is an Assistant Director with more than 9 years of professional experience in financial services industry. Janis serves as the AML, Sanctions and Financial Crime Leader at Deloitte Central Europe, and leads the Financial Services Industry (FSI) Advisory and Forensic services in the Baltic States. Rudite has more than 13 years of professional and project management experience in ICT governance, solution architecture, requirements definition, security design, as well business process re- engineering and ICT development quality assurance engagements. Rudite has been engaged as Advisory project leader and ICT professional in number of IT deployments for public sector and private clients.
  • 19. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see www.deloitte.com/about to learn more about our global network of member firms. Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 244,000 professionals are committed to becoming the standard of excellence. This communication contains general information only, and none of Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively, the “Deloitte Network”) is, by means of this communication, rendering professional advice or services. No entity in the Deloitte network shall be responsible for any loss whatsoever sustained by any person who relies on this communication. © 2018. For information, contact Deloitte Touche Tohmatsu Limited