PSD2 Carries Over to the U.S. – Via the Phone in Your Hand
Let me ask you a favor. Could you put down your phone for just a minute? Unless, of course, you’re reading this on your mobile device.
It can be an uphill battle asking someone to put down their phone these days. I have a tween, so I know the struggle! One of the reasons we’re so reticent to do so is the sheer power contained within these devices. At this point, it controls the music, the temperature, the locks and even the lighting in your home, and that’s not even touching on its entertainment value, or its capabilities as a payment device. The device, in its present form, has been around for ten years now, and in 2017, it’s safe to say there’s no going back.
We’ve gained a device of amazing potential. All that’s left now is get to Lotus Land and to enjoy our perfect utopia, right? Not so fast! Take a peek behind the scenes and, as usual, we start to see some disputes have trickled in; wrinkles in our perfect plan where fraud has found a foothold and exploited the gap. All it took was a little time and inconsistency in implementation.
As usual, the point that fraud integrated itself into this new payment stream was rapid and caught many by surprise. It seems that there was no initial ‘gold standard’ best practice in the USA for the setup of third-party applications in the device, a product of the enrollment process being unique and the requirements thin, given the novelty of the channel.
If our device experienced an error or a breach, from any number of potential failure points such as payment credentials, contact and demographic information, anomaly detection or authentication, the potential impact could be disastrous. Coffee purchase apps become vessels for money laundering, ride-hailing services take fraudulent “test” cards for a spin, while other apps allow bad guys to swipe goods from virtual shelves and stuff them into the pocket where their physical wallet used to be.
In no time at all, our payments paradise has become the Wild West, all because some P2P money-moving services gave little or no regard to their potential for abuse by malicious third parties. The USA gave the collective internet shrug on the topic: ¯\_(ツ)_/¯
A new roadmap?
Enter the revised Payment Service Directive (PSD2), or as I like to call it, the new roadmap. This European standard contains requirements that form a standard baseline for data security and a set of policies to ensure that all players in the space keep it clean and secure. Its mandate includes authentication, fraud detection – and new acronyms/labels for the players.
This device-based disruption, which certainly shakes things up for European banks, will create winners and losers among payment service stakeholders. Make no mistake though, this will unify Europe’s payments market while making significant efforts to secure it as well. Residual benefits include greater efficiency, better-informed consumers and a more loyal and confident customer base that is willing to adopt these technologies.
While many countries continue to abide by username and password combinations, this PSD2 ‘Eurail’ train will continue full-steam ahead, promising a plethora of effective and balanced controls for the next generation’s payments landscape. As future parties in the EU open this Pandora’s box, they will receive the benefit of mandated, integrated security that is respectful of both the device and application.
The upside here is less shrugging and more scaling. Our faith in digital payments is keeping us firmly planted in the seat while our device – as innovative as it ever was – continues to fascinate us with the convenience it manifests. These benefits will continue to ensure we keep our devices close at-hand, so good luck putting yours down anytime soon. All we need now is for the USA to follow suit.
Related Blog Posts
What Can the Re-Regulation of Other Industries Tell Us About Open Banking One Year On?
UK Open Banking just reached its first birthday milestone (on January 13 to be precise) and given my own commentary – including in the ACI blog – on this topic, the first anniversary of Open Banking in the UK certainly won’t pass without a debrief on the progress that’s been made and what challenges lie ahead.
Around The World: Taking Stock of Global eCommerce in 2019
As I head to #NRF2019 in New York City next week, I’m excited to see how some of the biggest retailers and merchants see the industry evolving over the coming year. What trends they think are going to shape 2019, and which of 2018’s buzzwords can be put to bed.
A Pointless Credit Card World (Sound the Alarm, Ring the Bell, Freak Out… Le Freak, see'est Chic)
Mark, we were slightly prescient a few weeks back when our rantings touched on credit card points. Based on some news over the past weeks related to rewards, perks and sweet deals, do I now sound the alarm or do I stand down?
19 for 2019 (Payments Predictions Galore!)
As I’ve bid adieu to 2018, once again mumbling my way through Auld Lang Syne (reciting Burns poetry was never really in my 'wheelhouse,' as they say) I’m squarely focused on 2019 (and beyond), and the payments prognostications that typically accompany the start of a new calendar year.
How Fresh, First-Hand Research Leads to Interfaces That Make Users Feel Understood
In 1890, my great-great-grandfather fled Czarist Ukraine for a new home in London. Amongst the few possessions that he brought with him was a book that had been given to him in 1860 by his grandfather.
Success Speaks: How Roanoke College Simplified Higher Education Billing and Commerce
Campus commerce has quickly become the ultimate test for payment software providers, IT professionals and administrators. Technology stacks and service offerings are continuously challenged by rapid innovation, just as budgets have begun to shrink. And to top it off, cybersecurity threats lurk around every corner, and even a single breach can destroy student confidence in their institution of higher learning.
Monetizing Real Time and Open Payments A Global View from Leading Banks
Payments experts from Bank of Montreal, Lloyds Bank and Rabobank lead a discussion on #NewPayments use cases.
During Sibos 2018, I was lucky enough to moderate a panel of payments experts from around the globe, including banking leaders representing three key phases of the real-time evolution; early adoption, go-live and ‘wave 2.’ Here, I’d like to share insights from these experts, outlining the challenges and rewards for banks in the new real-time and open payments ecosystem.
All I Want For Christmas (Or Any Holiday) Is… Instant Payments Gratification
Mark, some of us are fast approaching the end of the holiday shopping season, some of us are fast approaching that time of year when we consume too much egg nog, and some of us are fast approaching too many viewings of Die Hard or It’s a Wonderful Life or Love Actually or Christmas in Connecticut (I’ve disclosed too much about myself). To segue slightly more than slightly, I was at Target over the weekend, braving the holiday shopping crowds, to buy toilet paper, paper towels and tissues… and I took advantage of the 5% off that I get from using my Red Card. I surveyed the throngs of other consumers in the nearby checkout lines and not once did I see another store card. During this, the biggest shopping season of the year, why wouldn’t consumers use loyalty/rewards cards when making purchases?
Fraudsters Don’t Wait for Peak, So Neither Should You: 2019 Fraud Strategy Starts Now!
In existence for barely two decades, eCommerce has transformed not only the way we shop, but also how retailers plan and execute their marketing strategies around the peak shopping season. Now that we’re deep into this period, retailers will have prepared for changes in buyer behaviors, relaxed their strategies to be within the limits of manageable review rate, and most important of all, put strategies in place for increased fraud attempts.
Instant Payments in Italy – And Beyond: Lessons from Il Salone dei Pagamenti
ACI was invited back to Il Salone dei Pagamenti – Italy’s premier payments event organized by the Italian Banking Association (ABI) – to participate in a panel, “SEPA Inst – the Future.” As expected, the session was packed with stats and advice for a more efficient roll out of instant payments – in Italy and beyond.