Open banking is a regulatory initiative that was introduced in Europe in 2018 through the Revised Payment Services Directive (PSD2). It requires financial institutions to provide secure access to their customers' data and allow third-party providers to initiate payments on their behalf with their explicit consent. PSD2 aims to increase competition and innovation in the payments sector by creating a more open and interconnected financial ecosystem.
Adyen and Open Banking
Open Banking involves the use of APIs that allow third-party providers (TPP) to access and use financial data from financial institutions, such as Adyen. Typically, Open Banking has three actors:
- PSU: Payment service user. In this case, an account holder.
- TPP: Third-party provider. These fall under the following categories:
- AISP: Account information service provider.
- PISP: Payment initiation service provider.
- PIISP: Payment instrument issuer service provider.
- ASPSP: Account servicing payment service provider. In this case, Adyen.
Adyen's open banking interface provides a secure and reliable way for TPPs to access Adyen's APIs and interact with their customers' data. To integrate with the Adyen's open banking interface, TPPs will need to register and obtain the necessary credentials to access the APIs. They will also need to ensure that their systems comply with the relevant security and data protection requirements.
If you are a third-party service provider seeking access to Adyen's open banking interfaces, you must be licensed by a national regulatory authority. You’ll also need a qualified certificate (QWAC). Such certificates can be obtained from Qualified Trusted Service Providers (QTSP).
Once you have access to the platform, you can use Adyen's open banking APIs to initiate payments, retrieve account information, and manage transactions. This allows you to offer your customers new and innovative financial services while maintaining the highest levels of security and compliance.
Onboard with Adyen
To onboard with Adyen as a TPP, send an email to firstname.lastname@example.org and provide the following details:
- QWAC certificate: PEM-formatted QWAC certificate file. Add the certificate as an attachment.
- Redirect URL: The OAuth redirect URL. This URL will be used to redirect successful authentications with the authorization code.
- TPP website: Your website URL.
- Scopes: The scopes to be enabled for your OAuth client. Available scopes include:
After you send the email, Adyen will review your information and send you the client ID and client secret to be used in the OAuth flow to get access token.