BCBS Report on Open Banking and Application Programming Interfaces
BCBS published a report that monitors the evolving trend of open banking and application programming interfaces (APIs) in certain Basel Committee member jurisdictions. The report presents key trends and challenges identified in this area through the information gathered from 25 Basel Committee members from 17 jurisdictions, with focus on supervised banks and customer-permissioned data. The report also discusses the implications of these developments for banks and bank supervision. The report builds on the findings of BCBS paper on the implications of fintech developments for banks and bank supervisors.
The following are the key findings of the report with respect to the open banking frameworks:
- Traditional banking is evolving into open banking. A number of jurisdictions have adopted, or are considering adopting, open banking frameworks to require, facilitate, or allow banks to share customer-permissioned data with third parties.
- Open banking frameworks vary across jurisdictions in terms of stage of development, approach, and scope. Open banking is still in the early stages of development in a number of jurisdictions. Approximately half of the Basel Committee members have not observed significant open banking developments in their jurisdictions. There are benefits and challenges associated with each approach to open banking, when balancing bank safety and soundness, encouraging innovation, and consumer protection.
- Data privacy laws can provide a foundation for an open banking framework. Many jurisdictions that have adopted open banking frameworks also updated or plan to update their data protection and/or privacy laws.
- Multi-disciplinary features of open banking may require greater regulatory coordination. Within each jurisdiction, multiple authorities can have a role in addressing issues related to banks’ sharing of customer-permissioned data with third parties owing to the multi-disciplinary aspects of open banking.
Open banking comes with not only benefits but also various challenges for banks, such as risks to the business models and reputation and issues regarding data, cyber security, and third-party risk management. Therefore, banks and bank supervisors would need to pay more attention to the challenges that accompany the increased sharing of customer-permissioned data and growing connectivity of various entities involved in the provision of financial services. The report identifies the following key challenges for banks and supervisors:
- Challenges of adapting to the potential changes in business models
- Challenges of ensuring data and cyber-security in an open banking framework
- Time and cost to build and maintain APIs and the lack of commonly accepted API standards
- Oversight of third parties can be limited, especially in cases where banks have no contractual relationship with the third party, or where the third party has no regulatory authorization
- Assigning liability in the event of financial loss, or in the event of erroneous sharing or loss of sensitive data, which is more complex with open banking, as more parties are involved
- Increase in reputational risk, even in jurisdictions where there are established liability rules
Related Links
Keywords: International, Banking, Open Banking, API, Operational Risk, Governance, Fintech, Cyber Risk, BCBS
Featured Experts
María Cañamero
Skilled market researcher; growth strategist; successful go-to-market campaign developer
Pierre-Etienne Chabanel
Brings expertise in technology and software solutions around banking regulation, whether deployed on-premises or in the cloud.
Nicolas Degruson
Works with financial institutions, regulatory experts, business analysts, product managers, and software engineers to drive regulatory solutions across the globe.
Previous Article
IASB Publishes Summary of October Meeting of Global Preparers ForumRelated Articles
EBA Updates List of Validation Rules for Reporting by Banks
EBA issued a revised list of validation rules with respect to the implementing technical standards on supervisory reporting.
EBA Responds to EC Call for Advice to Strengthen AML/CFT Framework
EBA published its response to the call for advice of EC on ways to strengthen the EU legal framework on anti-money laundering and countering the financing of terrorism (AML/CFT).
NGFS Advocates Environmental Risk Analysis for Financial Sector
NGFS published a paper on the overview of environmental risk analysis by financial institutions and an occasional paper on the case studies on environmental risk analysis methodologies.
MAS Issues Guidelines to Promote Senior Management Accountability
MAS published the guidelines on individual accountability and conduct at financial institutions.
APRA Formalizes Capital Treatment and Reporting of COVID-19 Loans
APRA published final versions of the prudential standard APS 220 on credit quality and the reporting standard ARS 923.2 on repayment deferrals.
SRB Chair Discusses Path to Harmonized Liquidation Regime for Banks
SRB published two articles, with one article discussing the framework in place to safeguard financial stability amid crisis and the other article outlining the path to a harmonized and predictable liquidation regime.
FSB Workshop Discusses Preliminary Findings of Too-Big-To-Fail Reforms
FSB hosted a virtual workshop as part of the consultation process for its evaluation of the too-big-to-fail reforms.
ECB Updates List of Supervised Entities in EU in September 2020
ECB updated the list of supervised entities in EU, with the number of significant supervised entities being 115.
OSFI Identifies Focus Areas to Strengthen Third-Party Risk Management
OSFI published the key findings of a study on third-party risk management.
FSB Extends Implementation Timeline for Framework on SFTs
FSB is extending the implementation timeline, by one year, for the minimum haircut standards for non-centrally cleared securities financing transactions or SFTs.
