Frequently Asked Questions

Can't find the answer for your question below? Feel free to contact us here.

 

General

  • To help people and businesses prosper, Santander believes in giving them: "what they need, when they need it, in the context they need it." Open Banking will thus not only be limited to traditional banking services, but instead be a platform that will contain a myriad of services that truly goes beyond banking.

  • Due to regulation our PSD2 APIs will be launched first, but don't worry, our API product catalog will continue to grow and new services will soon be available for you to implement in all the new, cool and innovative solutions you are developing.

  • We believe that the Payment Services Directive 2 (PSD2) is an important enabler for Open Banking and that most banks will aim to offer a broader value proposition for their customers and third parties developers. We will continuously work on developing new APIs with rich functionality and our goal is to be truly open and let our partners get access to the same services that we use internally. We value your feedback and encourage everyone to contribute with your thoughts if you wish to impact our roadmap.

Payment Services Directive 2 (PSD2)

  • Payment Services Directive 2 (PSD2) is a European Union regulative which imposes banks to give third parties access to their customers' payment accounts. The regulation means that banks need to offer APIs so that third parties can retrieve account information, transactions and initiate payments on behalf of the customer if they have a valid constent.

  • The legislation will come into force at the 14th of September in Norway.

  • The following PSD2 APIs are available in our sandbox. Click the links below for more information and documentation.

  • No. The PSD2 APIs are free to use for authorized third parties (TPP).

  • Santander is offering a sandbox environment for TPP's to develop and test the PSD2 applications before the application is launched in the market.

  • To get access to our PSD2 APIs you need to contact us at open.banking@santanderconsumer.no.

     

    We are currently working on a self-service onboarding process. More information will be provided as soon as we have something ready.

  • Strong Customer Authentication (SCA) is a way to ensure security in the payments space. SCA is a necessity for the TPPs to retrieve account information and initiate payments on behalf of the customer. SCA consists of a combination of at least two out of three elements which can be classified as knowledge, ownership and inherence. Knowledge is something the user knows and could be a password or pin. Ownership is somehing the user possesses and could be a mobile device, token or similar. Inherence is something the user is, in other words biometrics of the form of fingerprint, face- or voice recognition. In Norway "BankID" and "BankID on mobile" are used for SCA.

  • Account Information Service Providers are the banks or third party services that access consumers' bank accounts and retrieve financial details. For the consumers these services can aggregate data from multiple accounts in multiple banks and provide a financial overview within a single application.

  • Payment Initiaition Service Providers are the banks or third party services that can initiate payments on behalf of a consumer. This will offer flexibility for the consumers and enable payments outside the traditional online bank delivered directly by the banks.

  • Third Party Providers is a common way to describe the new players that will emerge from PSD2. The TPPs are the consumers of the APIs delivered by banks - in this context the AISP's and PISP's.

  • This is subject to change and for the most recent information we recommend to look at the API documentation.

  • Currently there are different endpoints for the different countries in the Nordics, which will entail three separate integrations and onboarding processes between the countries. However, all API's are based on the Berlin Group NextGen PSD2 standard.

  • The European Banking Association (EBA) has published a leaflet which explains the rights for you as a consumer under PSD2. This is called "EU Commission leaflet on consumer rights under PSD2" and can be found in detail by following the attached link, provided by the Norwegian FSA (Finanstilsynet).

     

    https://www.finanstilsynet.no/nyhetsarkiv/nyheter/2019/forbrukerrettigheter-ved-betalinger-innen-eueos/

Account Information Service (AIS)

  • Account Information Services are the services delivered by the financial institutions to give access to the customers accounts through a TPP registered as an AISP.

  • PSD2 only require that the banks or Account Servicing Payment Service Providers (ASPSP), give third parties (AISPs) access to payment accounts. In reality this limits the possible service-offering for the TPPs and Santander believes that in order to truly deliver on "Open Banking" and provide true value for customers, banks should strive to open up more than required and deliver services beyond PSD2 compliance. Santander will continuously review and extend the service offering as the Open Banking platform matures and we receive feedback from both partners and customers on our roadmap.

Payment Initiation Service (PIS)