The Seasons Are Changing (And So Are Fraud and Regulations)
If you smell the air, you can sense the seasons changing; a little crispy cold moving in suddenly, the leaves are reddening and the winds of Faster Payments and PSD2 are kicking up. Smooth transition, right? So, yeah, seasons change, and so do regulatory regimes. In the US, we’ve been largely left to our own discretions about how to run our fraud shops, with some regulatory oversight regarding disputes handling. Historically, financial institution processes around authentication and fraud monitoring (including analytics and strategy) could be anything or nothing, depending on an institution’s risk appetite. Like the seasons, this might be in transition.
Winds of change blowing from Europe
The approach is at least surfacing in Europe, where the Payment Services Directive 2 (PSD2) is mandating some minimum requirements for high-risk transaction monitoring if a payments player wants to get between banks and merchants. This innovative mandate will place minimum requirements to ensure that there are minimum requirements for fraud strategy; that strong (two-factor) authentication will underpin transactions, and it specifies the thresholds to which controls will be applied. It does not mandate machine learning, or biometric authentication, but rest assured, these elements are going to be heavily favored. The regulations that are there, however, will have teeth, and monitoring is mandated.
PSD2 has the potential to be hugely disruptive to the legacy banking business models, and it sets a very serious precedent on floor standards for future technologies, regardless of the channel. In the US, we have our own Secure Payments Task Force (convened by the Federal Reserve), with one of the tasks including the evaluation of future recommendations in payments to ensure that payments security is up to the standard of the western world. Yes, recommendations are not regulations, but if we are going to move to Faster Payments, and both understand and mitigate the risks associated with mobile wallets, we need to be sure that we do it right and not compromise the security of all stakeholders when recommendations are published.
So, while regulations may not be immediately forthcoming, best practice recommendations for the industry might be the first step in that direction, acting as a stopgap for a very compliance-sensitive industry. That means that if a regulator sets foot onsite, sees a significant control deficiency and identifies it as a safety and soundness risk, it could be a finding.
Combine that with the influence that PSD2 will bring to our shores in the US, and you can see the setup. Control standards will not be so isolated in the future, payments risk containment standards will jump geographies via multinational organizations, there will be cross-pollination of best practices, and vendor competition will ensure that everyone has a machine learning strategy and biometric/two-factor authentication out of the box. The seasons do change, so we should welcome it. Embrace this change and see the upside in the prism of colors that the leaves bring. Put a fire on and warm yourself, winter is coming!
Related blog posts
How 'Mega Trends' Are Shaping Payments in India
In a previous blog post, I wrote about the impact of demonetization in India and the staggering growth of new digital payment types. Building further on this, I want explore some of the “mega trends” in payments, and how India is embracing the opportunities presented by these trends.
One Year Later: How Demonetization Has Impacted India
This month marks the first anniversary of demonetization in India, and it has undoubtedly changed the country forever. When I visit India, I increasingly see micro-transactions conducted via mobile phones. Cash is still used, but I see less and less of it with each visit. We are in the middle of a true paradigm shift – and India is poised to become a global leader in new types of payment acceptance.
Security, the New Payments Ecosystem and the Need to Educate the Consumer (Or Ask Them to Unclog Your Sewer!)
When it comes to any payments ecosystem, you must remember that we are talking about MONEY. More importantly, people’s money (like yours and mine). In any conversation in this space, secure is something that is assumed. A consumer simply won’t use a new system if they don’t believe it is secure. Unless of course it’s free Wi-Fi. As we have seen, folks are willing to do almost anything to get free access on their devices, even agreeing to clean toilets! (This was a real thing… one hotspot operator added it to their Terms of Service fine print). When we talk secure, it’s important that we keep this in mind: secure is not just a piece of the Hierarchy of Payment Needs, it’s an integral part of it, which is why it sits directly on top of the foundations. Without this layer, the whole ecosystem collapses.
How to Deliver on Customer Experience
Don’t Break the Bank – Building for the New Payments Ecosystem.
How to Protect the Foundations of Transaction Banking
Scalable, Available, Reliable – #SleepAtNightability for Corporate Banking
Pairing Payments Innovation with Security Needs in Southeast Asia
Many Asian governments – most notably those of Singapore and Hong Kong – have launched well-received initiatives to encourage collaboration rather than competition between the fintech start-up world and banks. This has enabled traditional banks to tap into the innovative solutions that fintechs offer, while the banks themselves bring to the table considerable experience with data, resilience, reliability and customer protection.
What’s Your Small Business Banking Bacon?
Every hip recipe has bacon in it these days. So why shouldn’t your digital banking experience be the same? After all, it’s a yummy addition that gives a standard dish that extra flair.
Small business banking has been a prodigious untapped market for over a decade. Banks desperately strive to make revenue from this market, but in most cases, they have struggled to do so.
The Constant of Change and the Future of Commercial Banking
Let’s clarify this before I lose anyone; the self-proclaimed “pioneer of wisdom,” noted Greek philosopher Heraclitus, is credited with the saying Panta rhei, "everything flows." More commonly, you have probably heard this as “the only constant is change,” but either way, this teaching has withstood the test of time, as it is not only applicable, but feels like a worldly truth when I find myself talking about today’s transaction banking landscape. A robust time of change is upon us; one that has brought us to the precipice of a new era in banking. Understanding the driving forces behind this change as well as embracing new business models will be a key to success, or even to survival.
The Hidden Risk of Complacency
Available in Spanish and English
As a professional in Latin American electronic payments, I often forget how it is to live not knowing what’s going on backstage every time I use my cards. My specialization makes me aware of trends worldwide, so while traveling, I’m able to analyze different technologies in action. My consumer side, also known as my ‘shopaholic’ side, exposes me to multiple situations, since any trip—be it business or leisure—always provides a good opportunity to shop. On a recent trip, I had the chance to experiment with my Argentinian cards during a semi-long-term stay. While out of country for 40 days, I experienced first-hand the challenges that consumers encounter with the EMV payments barrier.
Driving Toward Innovation in Digital Banking User Experience
The need for delivering on a user experience strategy necessitates the use of common and sometimes confusing lingo like CX, UX, information architecture, UX design and UI design. It introduces ways to gain deeper understanding of customers through methods like personas, journey mapping and Kano analysis. It commands phrases like customer-centric, experience-driven, and ideation/visioning. In the past 4 months, I have interviewed more than half a dozen agencies to engage one that could go beyond the buzzwords and the methods described above. I want to be convinced that great and meaningful changes can happen to UI’s. After all, talk is cheap.