The Payment Services Directive 2 (PSD 2, Directive (EU) 2015/2366) is an EU Directive, replacing the Payment Services Directive (PSD, Directive 2007/64/EC) administered by the European Commission (Directorate General Internal Market) to regulate payment services and payment service providers throughout the European Union (EU) and European Economic Area (EEA).
PSD2 has the aim to promote the innovation and the development of an efficient, secure and competitive internal payment services market, increasing payment services user protection and electronic payment services safety.
PSD2 creates new type of services, provided by Third Parties, in the payment services framework: Payment Initiation Services, Account information Services and Confirmation on the Availability of Funds Service.
The consumers will have the possibility to access to new payment services offered by Third Parties, allowing them to initiate payments, get information on their bank accounts and use new payment instruments in a smarter way.
Customer safety is the first concern for PSD2 Directive. To protect customer, the Regulator provides that the PSU must choose which Third Party allow to access to his accounts and how long it can access his data, by submitting his consent through a second factor authentication every time it should be required for the safety of his identity and properties.
It’s the Cedacri Open Banking workplace where you can test the APIs we have implemented. Through the exposure of this Portal we want to allow Third Parties to integrate their applications with our open banking functionalities.
At the moment you can only access to the testing facility (sandbox). You have simply to register here.
Which Bank can I access through API Gateway XS2A PSD2?
You can find in our documentations the list of banks you can reach through Cedacri Open Banking API Gateway.
Our PSD2 APIs are developed following the standard NextGenPSD2 XS2A v1.3, implemented by the Berlin Group and published on 19 October 2018. here you can find more information about Berlin Group initiative.
The protocol we use in our APIs is the OAuth2 (Authorization Code Grant flow). The user has to login to a dedicated Cedacri page, shown during the OAuth2 flow, as requested by Redirection Oauth2 Authentication.