SlideShare a Scribd company logo

PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR

Latvijas Banka
Latvijas Banka

Deloitte prezentācija Latvijas Bankas darbseminārā "PSD2 un regulējošie tehniskie standarti" (25.05.2018.)

1 of 19
Download to read offline
Intersections of PSD2 and GDPR Deloitte Latvia May 25, 2018
© Deloitte Latvia 2 The EC have set out an agenda of payments regulatory change which will force the European Payments market to become open, more competitive, innovative whilst protecting its citizens Payment Services Directive 2 New entrants Foster innovation Promote competition Protect consumers Respond to changes in the payments landscape 1 Deliver a competitive, innovative and open European Payments market 2 Provide level playing field for new entrants competing with Banks 3 • Recognize Third Party Providers (TPPs) • Define PISP and AISP services • Require TPPs to be licensed and regulated as Payment Institutions • Banks forced to allow TPPs access to their platforms via a standard API • No contracts for standard AISP/PISP services • New payment services will compete with cards • Transaction fees and banking charges are expected to come under pressure in time • Improved authentication and data protection measures • Decreased user liability in case of unauthorized payment A better consumer experience when using payment services within the EU
© Deloitte Latvia 3 Who Would be a Bank? FinTech and BigTech are eroding Banking revenues New Market Players Evolution of the Business Model Enhanced Services Offering Organizational Impact Strategic Options
© Deloitte Latvia 4 General Data Protection Regulation The key concepts GDPR New rules on personal data protection New rights GDPR brings for consumers a full range of new rights in the area of the data privacy. The main rights are: right to data portability, right to be erased (right to be forgotten), right to object, right to rectification, right to restriction of processing, etc. Increases of fines GDPR introduces a new maximum monetary penalty of 20 000 000 EUR or 4% of annual global turnover that can be imposed in cases of serious non-compliance with new regulatory rules for data privacy protection International Reach Organizations based outside the EU that process data to offer goods or services to European residents, or to monitor the behavior of European residents will also be subject to GDPR requirements New obligations Increased demands on data controllers and new obligations for personal data processors. The GDPR requires organizations to take a more proactive approach towards privacy compliance including new consent, documents, organization roles and processes and technology design and sets forth new principles such as data minimization.
© Deloitte Latvia 5 Scope of the General Data Protection Regulation (GDPR) Quick GDPR Overview Broader territorial scope Enforcement Accountability Expanded definitions Data subjects rights Consent Data breach notification One-stop shop International data transfers General Data Protection Regulation Applies to players not established in the EU but whose activities consist of targeting data subjects in the EU Data Protection Authorities will be entitled to impose fines ranging between 2 to 4% of annual turnover Explicit obligation to the controller as well as the processor to be able to demonstrate their compliance to the GDPR Personal data now explicitly includes location data, IP addresses, online and technology identifiers; Reinforced rights: Access, rectification, restriction, erasure, objection to processing; no automated processing and profiling Spelled out more clearly and focus on ability of individuals to distinguish a consent Report a personal data breach to the Data Protection Authority within 72h… Data Protection Authorities (DPA) of main establishment can act as lead DPA, supervising processing activities throughout the EU BCRs as tools for data transfers outside the EU and EEA are now embedded in law
© Deloitte Latvia 6 General Data Protection Regulation GDPR mainly impacts four layers of the business model Governance, organisation & people Processes Data Technology New GDPR requirements will mean changes to the ways in which technologies are designed & managed, including a focus on profiling, security & Privacy by design Organization tasked with data governance and data management will be challenged to provide clearer, more proactive oversight on data storage, journeys, and lineage Policies and processes to allow companies to deliver value to customers in a consistent and scalable manner Determine the “GDPR vision” and adopt an organizational model to lead, manage and coordinate a program aligned with it. Governance, organisation & people Policies and Processes Data Technology InformationSecurityandRiskManagement
© Deloitte Latvia 7 Proposition of GDPR and PSD2 in to the financial ecosystem Payer Bank account payeee Bank account payer Clearing Settlement Payee Traditional payments chain Operator DistributorDistributor Producer New consumer & merchant propositions Rise of parallel payment infrastructures PSD2 as disruptive enabler GDPR as compliance trigger
© Deloitte Latvia 8 Leverage mandatory investment and embrace “open banking” as an opportunity PSD2 key requirements • Adapt current compliance and risk mechanisms to new PSD guidelines • Mitigate fraud risk of opening up the access to Third Party Providers • Ensure 2-factor authentication for secure payment transactions and access to payment data (already applicable for internet payments since mid 2015) Security Services IT development • Assess what services to offer to third-parties that require the development of APIs • Consider how to make the APIs flexible while complying with the standards • Budget and plan for significant IT investment to grant TPPs access to account information through APIs and to allow access differentiation
© Deloitte Latvia 99 Data Protection Strategy Organization & Accountability Policies & Procedures Communication, Training & Awareness Privacy Operations IT Risk Management Technology & Architecture Data Governance Data Subject Rights Capabilities Demonstrate “privacy by default”, assure compliance for business process and IT GDPR key requirements
© Deloitte Latvia 10 Main concepts – similarities and differences Intersections of both regulations – Usage of personal data GDPR PSD2 No common structure between GDPR and PSD2 definition for Sensitive and Sensitive payment data ? Personal data Sensitive data Data protection (as prescribed by the GDPR) should therefore be fully considered in the design and implementation of all PSD2 related services. PSD2 defines this as ‘data, including personalized security credentials which can be used to carry out fraud’ ‘personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.’ Personal data Sensitive payment data
© Deloitte Latvia 11 PSD2 states that a PSP may only access, process and retain the personal data necessary for the provision of their payment services with the explicit consent of the payment service user. This is on the whole in line with the GDPR Legitimate bases for banks to process personal data 1. Compliance with the legal obligations 2. Contract 3. Vital interests 4. Explicit consent Intersections of both regulations - Consent Main concepts – similarities and differences consent for separate processing operations Can be withdrawn at any time contract performance must not be conditional on consent Any freely given, specific, informed and unambiguous indication of data subject`s wishes 1. Is separate consent is needed and under which specific GDPR/ PSD2 rules 2. Purpose of processing ?
© Deloitte Latvia 12 Relations among parties Intersections of both regulations – Transfer to the third parties Main concepts – similarities and differences Contractual liability Data subjects Joint- Controller Controller Processor • As TPP’s will want to use (process) personal financial data of European customers will be required to take the GDPR rules into account. • Banks who provide financial data are also obligated to do so in accordance with the GDPR, as sharing personal data is also a form of processing. 1. Consent management issue 2. Legitimate ground for processing ? Under GDPR, banks are the data controllers of their customers’ information and are responsible for the purposes and the manner in which personal data is processed and shared PSD2 adds additional data protection requirements by stating that TPPs are only permitted to access information for the specific purpose(s) “explicitly requested by the customer” relating to the provision of the account information or payment initiation services, and not for any other reason.
© Deloitte Latvia 13 Strong authentication Management of Consent Base for digital banking business model Security Intersections of both regulations – Technology readiness Main concepts – similarities and differences • Push to develop open banking by legislation • Banks forced to open their platforms via APIs to provide TPPs access to previously privileged data Physical Online Channels Client Web / App Bank Branch / Terminal • Movement towards opening up banks data to third party providers (TPPs) • New propositions that help consumers and businesses transact, save, borrow, lend and invest Prospectively – Open banking Open APIs App-Store 3rd Party Developers Banking as a platform
14 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Enable Comply Reconfigure Innovate Advancedpayment& dataservices Account and access provider XS2APISP&AISP Enable TPPs via premium APIs and or use of banking license Strategic Responses Banks are asking how they develop a PSD2 strategy, the question should be how do Banks wish to position themselves in a interconnected economy Retire and reconfigure platforms and products Internally driven proposition innovation
15 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Differences among CEE countries can be well illustrated on budgets assigned for PSD2 regulatory and strategy initiatives 10% 29% 28% 40% 36% 16% 18% 29% 20% 18% 13% 16% 18% 43% 29% 50%12%21% 58% 35% 28% 43% 40% 46% Other Latvia Romania Czech Republic Poland Hungary 4% Western Europe 5% 29% 17% 14% 20% 9% 13% 11% 17% 14% 18% 14% 8% 79% 84% 71% 58% 80% 66% 73% 0 €150-€500k<€150k No dedicated budget currently assigned>€10m€5-€10m€500k-€5m Compliance budget Strategy budget Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
16 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Most CEE banks regard PSD2 as an opportunity or with neutral outcome 47% 24% 14% 14% 20% 27% 42% 21% 24% 43% 43% 40% 9% 8% 11% 17% 14% 14% 20% 55% 21% 21% 35% 29% 29% 20% 9% 29% Neither Other 11 Threat 5 Don’t know Latvia Opportunity Czech RepublicHungary 719 Poland 17 Romania 7 Western Europe 24 Do you perceive PSD2 to be a strategic threat or opportunity for your organisation? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
17 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Analysis of responses by country reveals that most CEE banks are considering the cooperative approach 12% 14% 29% 12% 42% 12% 43% 20% 46% 16% 47% 43% 14% 40% 13% 12% 14% 9% 42% 16% 14% 27% 26% 17% 29% 40% 18% 25% 4% 24 4% Western EuropeLatviaCzech RepublicPoland 7 115 OtherHungary 17 719 Romania Aggressive Cooperative Wait and see Other Defensive Still evaluating How would you characterise your strategic response to PSD2? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
© Deloitte Latvia 18 Rudīte Sprinģe Manager, CGEIT, CISM, PRINCE2 Deloitte Latvia Email: rspringe@deloittece.com Mobile: +371 29226670 Janis Kaulins, CFA, FCCA, CAMS, CISSP Assistant Director Deloitte Latvia Email: jkaulins@deloitteCE.com Mobile: +371 2515 0995 Deloitte experts profile Janis Kaulins is an Assistant Director with more than 9 years of professional experience in financial services industry. Janis serves as the AML, Sanctions and Financial Crime Leader at Deloitte Central Europe, and leads the Financial Services Industry (FSI) Advisory and Forensic services in the Baltic States. Rudite has more than 13 years of professional and project management experience in ICT governance, solution architecture, requirements definition, security design, as well business process re- engineering and ICT development quality assurance engagements. Rudite has been engaged as Advisory project leader and ICT professional in number of IT deployments for public sector and private clients.
Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see www.deloitte.com/about to learn more about our global network of member firms. Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 244,000 professionals are committed to becoming the standard of excellence. This communication contains general information only, and none of Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively, the “Deloitte Network”) is, by means of this communication, rendering professional advice or services. No entity in the Deloitte network shall be responsible for any loss whatsoever sustained by any person who relies on this communication. © 2018. For information, contact Deloitte Touche Tohmatsu Limited

Recommended

Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Latvijas Banka
 
PSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcijaPSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcija
Latvijas Banka
 
Berlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumiBerlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumi
Latvijas Banka
 
Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2
Pushpalanka Jayawardhana
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baFrederik Adriaensen
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)
Omar Ghazi
 
Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr... Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr...
WSO2
 
PISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKPISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UK
WSO2
 

Recommended

Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Regulējošie tehniskie standarti stingrai autentifikācijai un drošai komunikāc...
Latvijas Banka
 
PSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcijaPSD2: Latvijas Komercbanku asociācijas pozīcija
PSD2: Latvijas Komercbanku asociācijas pozīcija
Latvijas Banka
 
Berlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumiBerlin Group aktualitātes un citi API tehniskie jautājumi
Berlin Group aktualitātes un citi API tehniskie jautājumi
Latvijas Banka
 
Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2
Pushpalanka Jayawardhana
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baFrederik Adriaensen
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)
Omar Ghazi
 
Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr... Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr...
WSO2
 
PISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKPISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UK
WSO2
 
Brugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKBrugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UK
AmniAugustine
 
A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)
Kullarat Phongsathaporn
 
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
Kullarat Phongsathaporn
 
NACHA Compliance
NACHA ComplianceNACHA Compliance
NACHA Compliance
EComplish
 
OpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateOpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking Update
MikeLeszcz
 
Payments Testing @ Thinksoft
Payments Testing @ ThinksoftPayments Testing @ Thinksoft
Payments Testing @ ThinksoftThinksoft Global
 
Building a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceBuilding a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 Compliance
WSO2
 
Direct Debit System
Direct Debit SystemDirect Debit System
Direct Debit System
Newgen Software Technologies Limited
 
A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)
Kullarat Phongsathaporn
 
6 simple things to remember about kyc verification
6 simple things to remember about kyc verification6 simple things to remember about kyc verification
6 simple things to remember about kyc verification
Shufti Pro
 
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La..."Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
DevClub_lv
 
What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions
Blockchain Council
 
Danske Bank
Danske BankDanske Bank
Danske Bank
Oslo Business Region
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for banking
karim.abdulkarim
 
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
Kullarat Phongsathaporn
 
VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)
VCC Live
 
Embracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsEmbracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven Overhauls
Cognizant
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbean
EquiGov Institute
 
EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019
Roger Coenen
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpr
audrey miguel
 

More Related Content

What's hot

Brugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKBrugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UK
AmniAugustine
 
A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)
Kullarat Phongsathaporn
 
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
Kullarat Phongsathaporn
 
NACHA Compliance
NACHA ComplianceNACHA Compliance
NACHA Compliance
EComplish
 
OpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateOpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking Update
MikeLeszcz
 
Payments Testing @ Thinksoft
Payments Testing @ ThinksoftPayments Testing @ Thinksoft
Payments Testing @ ThinksoftThinksoft Global
 
Building a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceBuilding a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 Compliance
WSO2
 
Direct Debit System
Direct Debit SystemDirect Debit System
Direct Debit System
Newgen Software Technologies Limited
 
A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)
Kullarat Phongsathaporn
 
6 simple things to remember about kyc verification
6 simple things to remember about kyc verification6 simple things to remember about kyc verification
6 simple things to remember about kyc verification
Shufti Pro
 
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La..."Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
DevClub_lv
 
What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions
Blockchain Council
 
Danske Bank
Danske BankDanske Bank
Danske Bank
Oslo Business Region
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for banking
karim.abdulkarim
 
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
Kullarat Phongsathaporn
 
VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)
VCC Live
 

What's hot (16)

Brugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UKBrugu software solutions Private Ltd | Hyderabad | India | UK
Brugu software solutions Private Ltd | Hyderabad | India | UK
 
A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)A11: TAI | FinTech (3 Aug 2020)
A11: TAI | FinTech (3 Aug 2020)
 
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
S2: FinTech Markets and Laws in Thailand (20 Oct 2021)
 
NACHA Compliance
NACHA ComplianceNACHA Compliance
NACHA Compliance
 
OpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking UpdateOpenID Foundation/Open Banking Workshop - Open Banking Update
OpenID Foundation/Open Banking Workshop - Open Banking Update
 
Payments Testing @ Thinksoft
Payments Testing @ ThinksoftPayments Testing @ Thinksoft
Payments Testing @ Thinksoft
 
Building a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 ComplianceBuilding a Fool Proof Security Strategy for PSD2 Compliance
Building a Fool Proof Security Strategy for PSD2 Compliance
 
Direct Debit System
Direct Debit SystemDirect Debit System
Direct Debit System
 
A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)A7: Chulalongkorn University | E-Payment and FinTech (2018)
A7: Chulalongkorn University | E-Payment and FinTech (2018)
 
6 simple things to remember about kyc verification
6 simple things to remember about kyc verification6 simple things to remember about kyc verification
6 simple things to remember about kyc verification
 
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La..."Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
"Client authentication in e-commerce solutions" by Jānis Kūliņš from Tieto La...
 
What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions What Is The Blockchain kyc solutions
What Is The Blockchain kyc solutions
 
Danske Bank
Danske BankDanske Bank
Danske Bank
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for banking
 
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
S26: Techsauce | A New World of FinTech Regulation: What the Future Holds (23...
 
VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)VCC Live OptiChannel Debt Collector (English)
VCC Live OptiChannel Debt Collector (English)
 

Similar to PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR

Embracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsEmbracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven Overhauls
Cognizant
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbean
EquiGov Institute
 
EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019
Roger Coenen
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpr
audrey miguel
 
2015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 050520152015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 05052015Jan Dhont
 
Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit
Sean Bailey
 
Consumer Data Rights
Consumer Data RightsConsumer Data Rights
Consumer Data Rights
Bikram Paul Choudhury
 
Gdpr action plan
Gdpr action plan Gdpr action plan
Gdpr action plan
Ulf Mattsson
 
General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Compliance
accenture
 
Pytch psd2 compliance pack
Pytch psd2 compliance packPytch psd2 compliance pack
Pytch psd2 compliance pack
Cemal Hamitogullari
 
Pytch psd2 compliance pack
Pytch psd2 compliance packPytch psd2 compliance pack
Pytch psd2 compliance pack
Cemal Hamitogullari
 
Horner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPRHorner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPR
Jenny Ferguson
 
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readinessGeneral Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
Omo Osagiede
 
Data protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and BirdData protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and Bird
Coadec
 
How IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity LegislationHow IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity Legislation
IBM Security
 
Fasten Your Belts for #GDPR
Fasten Your Belts for #GDPRFasten Your Belts for #GDPR
Fasten Your Belts for #GDPR
"John "Jeb"" Beckwith
 
Fasten Your Belts for GDPR
Fasten Your Belts for GDPRFasten Your Belts for GDPR
Fasten Your Belts for GDPR
"John "Jeb"" Beckwith
 
What's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) ChangesWhat's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) Changes
Ogilvy Consulting
 

Similar to PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR (20)

Embracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven OverhaulsEmbracing Digital Convergence amid Regulatory-Driven Overhauls
Embracing Digital Convergence amid Regulatory-Driven Overhauls
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbean
 
EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019EU regulatory agenda 2018 2019
EU regulatory agenda 2018 2019
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpr
 
2015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 050520152015-0318 GAC Presentation - BCR - 05052015
2015-0318 GAC Presentation - BCR - 05052015
 
Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit
 
Consumer Data Rights
Consumer Data RightsConsumer Data Rights
Consumer Data Rights
 
Gdpr action plan
Gdpr action plan Gdpr action plan
Gdpr action plan
 
General Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) ComplianceGeneral Data Protection Regulation (GDPR) Compliance
General Data Protection Regulation (GDPR) Compliance
 
Pytch psd2 compliance pack
Pytch psd2 compliance packPytch psd2 compliance pack
Pytch psd2 compliance pack
 
Pytch psd2 compliance pack
Pytch psd2 compliance packPytch psd2 compliance pack
Pytch psd2 compliance pack
 
Horner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPRHorner Downey & Co Newsletter- GDPR
Horner Downey & Co Newsletter- GDPR
 
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readinessGeneral Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
 
Data protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and BirdData protection for Lend.io - legal analysis by Bird and Bird
Data protection for Lend.io - legal analysis by Bird and Bird
 
How IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity LegislationHow IBM Supports Clients around GDPR and Cybersecurity Legislation
How IBM Supports Clients around GDPR and Cybersecurity Legislation
 
Fasten Your Belts for #GDPR
Fasten Your Belts for #GDPRFasten Your Belts for #GDPR
Fasten Your Belts for #GDPR
 
Fasten Your Belts for GDPR
Fasten Your Belts for GDPRFasten Your Belts for GDPR
Fasten Your Belts for GDPR
 
What's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) ChangesWhat's Next - General Data Protection Regulation (GDPR) Changes
What's Next - General Data Protection Regulation (GDPR) Changes
 

More from Latvijas Banka

Ekspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. martsEkspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. marts
Latvijas Banka
 
MNI Connect
MNI Connect MNI Connect
MNI Connect
Latvijas Banka
 
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļosLatvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas Banka
 
Human capital as the key to economic development
Human capital as the key to economic developmentHuman capital as the key to economic development
Human capital as the key to economic development
Latvijas Banka
 
Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.
Latvijas Banka
 
Makroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembrisMakroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembris
Latvijas Banka
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas Banka
 
Digitālo finanšu drošība
Digitālo finanšu drošībaDigitālo finanšu drošība
Digitālo finanšu drošība
Latvijas Banka
 
Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023
Latvijas Banka
 
Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023
Latvijas Banka
 
Procentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanaiProcentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanai
Latvijas Banka
 
Inflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēmInflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēm
Latvijas Banka
 
Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023
Latvijas Banka
 
Makroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada martsMakroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada marts
Latvijas Banka
 
MNI Connect
MNI ConnectMNI Connect
MNI Connect
Latvijas Banka
 
Ekspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratībuEkspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratību
Latvijas Banka
 
Tautsaimniecības aktualitātes
Tautsaimniecības aktualitātesTautsaimniecības aktualitātes
Tautsaimniecības aktualitātes
Latvijas Banka
 
Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023
Latvijas Banka
 
Kurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļākaKurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļāka
Latvijas Banka
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas Banka
 

More from Latvijas Banka (20)

Ekspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. martsEkspertu sarunas prezentācija 2024. gada 13. marts
Ekspertu sarunas prezentācija 2024. gada 13. marts
 
MNI Connect
MNI Connect MNI Connect
MNI Connect
 
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļosLatvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
Latvijas cilvēkkapitāls ekonomikas mainīgajos apstākļos
 
Human capital as the key to economic development
Human capital as the key to economic developmentHuman capital as the key to economic development
Human capital as the key to economic development
 
Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.Ekspertu saruna Latvijas Bankā 19.10.2023.
Ekspertu saruna Latvijas Bankā 19.10.2023.
 
Makroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembrisMakroekonomisko Norišu Pārskats. 2023. gada septembris
Makroekonomisko Norišu Pārskats. 2023. gada septembris
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Septembris 2023
 
Digitālo finanšu drošība
Digitālo finanšu drošībaDigitālo finanšu drošība
Digitālo finanšu drošība
 
Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023Darba tirgus apskats un aktualitātes 2023
Darba tirgus apskats un aktualitātes 2023
 
Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023Nodokļu politika un tās iespējas 2023
Nodokļu politika un tās iespējas 2023
 
Procentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanaiProcentu likmju celšana inflācijas mazināšanai
Procentu likmju celšana inflācijas mazināšanai
 
Inflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēmInflācijas ietekme uz personīgajām finansēm
Inflācijas ietekme uz personīgajām finansēm
 
Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023Ekonomikas aktualitātes 2023
Ekonomikas aktualitātes 2023
 
Makroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada martsMakroekonomisko Norišu Pārskats. 2023. gada marts
Makroekonomisko Norišu Pārskats. 2023. gada marts
 
MNI Connect
MNI ConnectMNI Connect
MNI Connect
 
Ekspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratībuEkspertu saruna par finanšu pratību
Ekspertu saruna par finanšu pratību
 
Tautsaimniecības aktualitātes
Tautsaimniecības aktualitātesTautsaimniecības aktualitātes
Tautsaimniecības aktualitātes
 
Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023Latvia`s Macro Profile 2023
Latvia`s Macro Profile 2023
 
Kurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļākaKurā pusē sētai zāle zaļāka
Kurā pusē sētai zāle zaļāka
 
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
Latvijas tautsaimniecības makroekonomiskā attīstība | Marts 2023
 

Recently uploaded

The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...
The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...
The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...
beulahfernandes8
 
USDA Loans in California: A Comprehensive Overview.pptx
USDA Loans in California: A Comprehensive Overview.pptxUSDA Loans in California: A Comprehensive Overview.pptx
USDA Loans in California: A Comprehensive Overview.pptx
marketing367770
 
What price will pi network be listed on exchanges
What price will pi network be listed on exchangesWhat price will pi network be listed on exchanges
What price will pi network be listed on exchanges
DOT TECH
 
Instant Issue Debit Cards - School Designs
Instant Issue Debit Cards - School DesignsInstant Issue Debit Cards - School Designs
Instant Issue Debit Cards - School Designs
egoetzinger
 
where can I find a legit pi merchant online
where can I find a legit pi merchant onlinewhere can I find a legit pi merchant online
where can I find a legit pi merchant online
DOT TECH
 
What website can I sell pi coins securely.
What website can I sell pi coins securely.What website can I sell pi coins securely.
What website can I sell pi coins securely.
DOT TECH
 
Instant Issue Debit Cards
Instant Issue Debit CardsInstant Issue Debit Cards
Instant Issue Debit Cards
egoetzinger
 
what is the future of Pi Network currency.
what is the future of Pi Network currency.what is the future of Pi Network currency.
what is the future of Pi Network currency.
DOT TECH
 
how can I sell/buy bulk pi coins securely
how can I sell/buy bulk pi coins securelyhow can I sell/buy bulk pi coins securely
how can I sell/buy bulk pi coins securely
DOT TECH
 
一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理
一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理
一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理
obyzuk
 
Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...
Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...
Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...
Quotidiano Piemontese
 
Webinar Exploring DORA for Fintechs - Simont Braun
Webinar Exploring DORA for Fintechs - Simont BraunWebinar Exploring DORA for Fintechs - Simont Braun
Webinar Exploring DORA for Fintechs - Simont Braun
FinTech Belgium
 
how to sell pi coins at high rate quickly.
how to sell pi coins at high rate quickly.how to sell pi coins at high rate quickly.
how to sell pi coins at high rate quickly.
DOT TECH
 
how can i use my minded pi coins I need some funds.
how can i use my minded pi coins I need some funds.how can i use my minded pi coins I need some funds.
how can i use my minded pi coins I need some funds.
DOT TECH
 
can I really make money with pi network.
can I really make money with pi network.can I really make money with pi network.
can I really make money with pi network.
DOT TECH
 
Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...
Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...
Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...
Godwin Emmanuel Oyedokun MBA MSc ACA ACIB FCTI FCFIP CFE
 
Commercial Bank Economic Capsule - May 2024
Commercial Bank Economic Capsule - May 2024Commercial Bank Economic Capsule - May 2024
Commercial Bank Economic Capsule - May 2024
Commercial Bank of Ceylon PLC
 
US Economic Outlook - Being Decided - M Capital Group August 2021.pdf
US Economic Outlook - Being Decided - M Capital Group August 2021.pdfUS Economic Outlook - Being Decided - M Capital Group August 2021.pdf
US Economic Outlook - Being Decided - M Capital Group August 2021.pdf
pchutichetpong
 
The Role of Non-Banking Financial Companies (NBFCs)
The Role of Non-Banking Financial Companies (NBFCs)The Role of Non-Banking Financial Companies (NBFCs)
The Role of Non-Banking Financial Companies (NBFCs)
nickysharmasucks
 
一比一原版(UoB毕业证)伯明翰大学毕业证如何办理
一比一原版(UoB毕业证)伯明翰大学毕业证如何办理一比一原版(UoB毕业证)伯明翰大学毕业证如何办理
一比一原版(UoB毕业证)伯明翰大学毕业证如何办理
nexop1
 

Recently uploaded (20)

The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...
The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...
The Evolution of Non-Banking Financial Companies (NBFCs) in India: Challenges...
 
USDA Loans in California: A Comprehensive Overview.pptx
USDA Loans in California: A Comprehensive Overview.pptxUSDA Loans in California: A Comprehensive Overview.pptx
USDA Loans in California: A Comprehensive Overview.pptx
 
What price will pi network be listed on exchanges
What price will pi network be listed on exchangesWhat price will pi network be listed on exchanges
What price will pi network be listed on exchanges
 
Instant Issue Debit Cards - School Designs
Instant Issue Debit Cards - School DesignsInstant Issue Debit Cards - School Designs
Instant Issue Debit Cards - School Designs
 
where can I find a legit pi merchant online
where can I find a legit pi merchant onlinewhere can I find a legit pi merchant online
where can I find a legit pi merchant online
 
What website can I sell pi coins securely.
What website can I sell pi coins securely.What website can I sell pi coins securely.
What website can I sell pi coins securely.
 
Instant Issue Debit Cards
Instant Issue Debit CardsInstant Issue Debit Cards
Instant Issue Debit Cards
 
what is the future of Pi Network currency.
what is the future of Pi Network currency.what is the future of Pi Network currency.
what is the future of Pi Network currency.
 
how can I sell/buy bulk pi coins securely
how can I sell/buy bulk pi coins securelyhow can I sell/buy bulk pi coins securely
how can I sell/buy bulk pi coins securely
 
一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理
一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理
一比一原版(GWU,GW毕业证)加利福尼亚大学|尔湾分校毕业证如何办理
 
Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...
Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...
Turin Startup Ecosystem 2024 - Ricerca sulle Startup e il Sistema dell'Innov...
 
Webinar Exploring DORA for Fintechs - Simont Braun
Webinar Exploring DORA for Fintechs - Simont BraunWebinar Exploring DORA for Fintechs - Simont Braun
Webinar Exploring DORA for Fintechs - Simont Braun
 
how to sell pi coins at high rate quickly.
how to sell pi coins at high rate quickly.how to sell pi coins at high rate quickly.
how to sell pi coins at high rate quickly.
 
how can i use my minded pi coins I need some funds.
how can i use my minded pi coins I need some funds.how can i use my minded pi coins I need some funds.
how can i use my minded pi coins I need some funds.
 
can I really make money with pi network.
can I really make money with pi network.can I really make money with pi network.
can I really make money with pi network.
 
Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...
Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...
Tax System, Behaviour, Justice, and Voluntary Compliance Culture in Nigeria -...
 
Commercial Bank Economic Capsule - May 2024
Commercial Bank Economic Capsule - May 2024Commercial Bank Economic Capsule - May 2024
Commercial Bank Economic Capsule - May 2024
 
US Economic Outlook - Being Decided - M Capital Group August 2021.pdf
US Economic Outlook - Being Decided - M Capital Group August 2021.pdfUS Economic Outlook - Being Decided - M Capital Group August 2021.pdf
US Economic Outlook - Being Decided - M Capital Group August 2021.pdf
 
The Role of Non-Banking Financial Companies (NBFCs)
The Role of Non-Banking Financial Companies (NBFCs)The Role of Non-Banking Financial Companies (NBFCs)
The Role of Non-Banking Financial Companies (NBFCs)
 
一比一原版(UoB毕业证)伯明翰大学毕业证如何办理
一比一原版(UoB毕业证)伯明翰大学毕业证如何办理一比一原版(UoB毕业证)伯明翰大学毕业证如何办理
一比一原版(UoB毕业证)伯明翰大学毕业证如何办理
 

PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR

  • 1. Intersections of PSD2 and GDPR Deloitte Latvia May 25, 2018
  • 2. © Deloitte Latvia 2 The EC have set out an agenda of payments regulatory change which will force the European Payments market to become open, more competitive, innovative whilst protecting its citizens Payment Services Directive 2 New entrants Foster innovation Promote competition Protect consumers Respond to changes in the payments landscape 1 Deliver a competitive, innovative and open European Payments market 2 Provide level playing field for new entrants competing with Banks 3 • Recognize Third Party Providers (TPPs) • Define PISP and AISP services • Require TPPs to be licensed and regulated as Payment Institutions • Banks forced to allow TPPs access to their platforms via a standard API • No contracts for standard AISP/PISP services • New payment services will compete with cards • Transaction fees and banking charges are expected to come under pressure in time • Improved authentication and data protection measures • Decreased user liability in case of unauthorized payment A better consumer experience when using payment services within the EU
  • 3. © Deloitte Latvia 3 Who Would be a Bank? FinTech and BigTech are eroding Banking revenues New Market Players Evolution of the Business Model Enhanced Services Offering Organizational Impact Strategic Options
  • 4. © Deloitte Latvia 4 General Data Protection Regulation The key concepts GDPR New rules on personal data protection New rights GDPR brings for consumers a full range of new rights in the area of the data privacy. The main rights are: right to data portability, right to be erased (right to be forgotten), right to object, right to rectification, right to restriction of processing, etc. Increases of fines GDPR introduces a new maximum monetary penalty of 20 000 000 EUR or 4% of annual global turnover that can be imposed in cases of serious non-compliance with new regulatory rules for data privacy protection International Reach Organizations based outside the EU that process data to offer goods or services to European residents, or to monitor the behavior of European residents will also be subject to GDPR requirements New obligations Increased demands on data controllers and new obligations for personal data processors. The GDPR requires organizations to take a more proactive approach towards privacy compliance including new consent, documents, organization roles and processes and technology design and sets forth new principles such as data minimization.
  • 5. © Deloitte Latvia 5 Scope of the General Data Protection Regulation (GDPR) Quick GDPR Overview Broader territorial scope Enforcement Accountability Expanded definitions Data subjects rights Consent Data breach notification One-stop shop International data transfers General Data Protection Regulation Applies to players not established in the EU but whose activities consist of targeting data subjects in the EU Data Protection Authorities will be entitled to impose fines ranging between 2 to 4% of annual turnover Explicit obligation to the controller as well as the processor to be able to demonstrate their compliance to the GDPR Personal data now explicitly includes location data, IP addresses, online and technology identifiers; Reinforced rights: Access, rectification, restriction, erasure, objection to processing; no automated processing and profiling Spelled out more clearly and focus on ability of individuals to distinguish a consent Report a personal data breach to the Data Protection Authority within 72h… Data Protection Authorities (DPA) of main establishment can act as lead DPA, supervising processing activities throughout the EU BCRs as tools for data transfers outside the EU and EEA are now embedded in law
  • 6. © Deloitte Latvia 6 General Data Protection Regulation GDPR mainly impacts four layers of the business model Governance, organisation & people Processes Data Technology New GDPR requirements will mean changes to the ways in which technologies are designed & managed, including a focus on profiling, security & Privacy by design Organization tasked with data governance and data management will be challenged to provide clearer, more proactive oversight on data storage, journeys, and lineage Policies and processes to allow companies to deliver value to customers in a consistent and scalable manner Determine the “GDPR vision” and adopt an organizational model to lead, manage and coordinate a program aligned with it. Governance, organisation & people Policies and Processes Data Technology InformationSecurityandRiskManagement
  • 7. © Deloitte Latvia 7 Proposition of GDPR and PSD2 in to the financial ecosystem Payer Bank account payeee Bank account payer Clearing Settlement Payee Traditional payments chain Operator DistributorDistributor Producer New consumer & merchant propositions Rise of parallel payment infrastructures PSD2 as disruptive enabler GDPR as compliance trigger
  • 8. © Deloitte Latvia 8 Leverage mandatory investment and embrace “open banking” as an opportunity PSD2 key requirements • Adapt current compliance and risk mechanisms to new PSD guidelines • Mitigate fraud risk of opening up the access to Third Party Providers • Ensure 2-factor authentication for secure payment transactions and access to payment data (already applicable for internet payments since mid 2015) Security Services IT development • Assess what services to offer to third-parties that require the development of APIs • Consider how to make the APIs flexible while complying with the standards • Budget and plan for significant IT investment to grant TPPs access to account information through APIs and to allow access differentiation
  • 9. © Deloitte Latvia 99 Data Protection Strategy Organization & Accountability Policies & Procedures Communication, Training & Awareness Privacy Operations IT Risk Management Technology & Architecture Data Governance Data Subject Rights Capabilities Demonstrate “privacy by default”, assure compliance for business process and IT GDPR key requirements
  • 10. © Deloitte Latvia 10 Main concepts – similarities and differences Intersections of both regulations – Usage of personal data GDPR PSD2 No common structure between GDPR and PSD2 definition for Sensitive and Sensitive payment data ? Personal data Sensitive data Data protection (as prescribed by the GDPR) should therefore be fully considered in the design and implementation of all PSD2 related services. PSD2 defines this as ‘data, including personalized security credentials which can be used to carry out fraud’ ‘personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.’ Personal data Sensitive payment data
  • 11. © Deloitte Latvia 11 PSD2 states that a PSP may only access, process and retain the personal data necessary for the provision of their payment services with the explicit consent of the payment service user. This is on the whole in line with the GDPR Legitimate bases for banks to process personal data 1. Compliance with the legal obligations 2. Contract 3. Vital interests 4. Explicit consent Intersections of both regulations - Consent Main concepts – similarities and differences consent for separate processing operations Can be withdrawn at any time contract performance must not be conditional on consent Any freely given, specific, informed and unambiguous indication of data subject`s wishes 1. Is separate consent is needed and under which specific GDPR/ PSD2 rules 2. Purpose of processing ?
  • 12. © Deloitte Latvia 12 Relations among parties Intersections of both regulations – Transfer to the third parties Main concepts – similarities and differences Contractual liability Data subjects Joint- Controller Controller Processor • As TPP’s will want to use (process) personal financial data of European customers will be required to take the GDPR rules into account. • Banks who provide financial data are also obligated to do so in accordance with the GDPR, as sharing personal data is also a form of processing. 1. Consent management issue 2. Legitimate ground for processing ? Under GDPR, banks are the data controllers of their customers’ information and are responsible for the purposes and the manner in which personal data is processed and shared PSD2 adds additional data protection requirements by stating that TPPs are only permitted to access information for the specific purpose(s) “explicitly requested by the customer” relating to the provision of the account information or payment initiation services, and not for any other reason.
  • 13. © Deloitte Latvia 13 Strong authentication Management of Consent Base for digital banking business model Security Intersections of both regulations – Technology readiness Main concepts – similarities and differences • Push to develop open banking by legislation • Banks forced to open their platforms via APIs to provide TPPs access to previously privileged data Physical Online Channels Client Web / App Bank Branch / Terminal • Movement towards opening up banks data to third party providers (TPPs) • New propositions that help consumers and businesses transact, save, borrow, lend and invest Prospectively – Open banking Open APIs App-Store 3rd Party Developers Banking as a platform
  • 14. 14 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Enable Comply Reconfigure Innovate Advancedpayment& dataservices Account and access provider XS2APISP&AISP Enable TPPs via premium APIs and or use of banking license Strategic Responses Banks are asking how they develop a PSD2 strategy, the question should be how do Banks wish to position themselves in a interconnected economy Retire and reconfigure platforms and products Internally driven proposition innovation
  • 15. 15 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Differences among CEE countries can be well illustrated on budgets assigned for PSD2 regulatory and strategy initiatives 10% 29% 28% 40% 36% 16% 18% 29% 20% 18% 13% 16% 18% 43% 29% 50%12%21% 58% 35% 28% 43% 40% 46% Other Latvia Romania Czech Republic Poland Hungary 4% Western Europe 5% 29% 17% 14% 20% 9% 13% 11% 17% 14% 18% 14% 8% 79% 84% 71% 58% 80% 66% 73% 0 €150-€500k<€150k No dedicated budget currently assigned>€10m€5-€10m€500k-€5m Compliance budget Strategy budget Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
  • 16. 16 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Most CEE banks regard PSD2 as an opportunity or with neutral outcome 47% 24% 14% 14% 20% 27% 42% 21% 24% 43% 43% 40% 9% 8% 11% 17% 14% 14% 20% 55% 21% 21% 35% 29% 29% 20% 9% 29% Neither Other 11 Threat 5 Don’t know Latvia Opportunity Czech RepublicHungary 719 Poland 17 Romania 7 Western Europe 24 Do you perceive PSD2 to be a strategic threat or opportunity for your organisation? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
  • 17. 17 | Copyright © 2018 Deloitte Central Europe. All rights reserved. Analysis of responses by country reveals that most CEE banks are considering the cooperative approach 12% 14% 29% 12% 42% 12% 43% 20% 46% 16% 47% 43% 14% 40% 13% 12% 14% 9% 42% 16% 14% 27% 26% 17% 29% 40% 18% 25% 4% 24 4% Western EuropeLatviaCzech RepublicPoland 7 115 OtherHungary 17 719 Romania Aggressive Cooperative Wait and see Other Defensive Still evaluating How would you characterise your strategic response to PSD2? Source: Deloitte analysis based on the European PSD2 Voice of the Banks survey by Deloitte, further details are available in a separate Deloitte report .
  • 18. © Deloitte Latvia 18 Rudīte Sprinģe Manager, CGEIT, CISM, PRINCE2 Deloitte Latvia Email: rspringe@deloittece.com Mobile: +371 29226670 Janis Kaulins, CFA, FCCA, CAMS, CISSP Assistant Director Deloitte Latvia Email: jkaulins@deloitteCE.com Mobile: +371 2515 0995 Deloitte experts profile Janis Kaulins is an Assistant Director with more than 9 years of professional experience in financial services industry. Janis serves as the AML, Sanctions and Financial Crime Leader at Deloitte Central Europe, and leads the Financial Services Industry (FSI) Advisory and Forensic services in the Baltic States. Rudite has more than 13 years of professional and project management experience in ICT governance, solution architecture, requirements definition, security design, as well business process re- engineering and ICT development quality assurance engagements. Rudite has been engaged as Advisory project leader and ICT professional in number of IT deployments for public sector and private clients.
  • 19. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see www.deloitte.com/about to learn more about our global network of member firms. Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 244,000 professionals are committed to becoming the standard of excellence. This communication contains general information only, and none of Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively, the “Deloitte Network”) is, by means of this communication, rendering professional advice or services. No entity in the Deloitte network shall be responsible for any loss whatsoever sustained by any person who relies on this communication. © 2018. For information, contact Deloitte Touche Tohmatsu Limited