BCBS Report on Open Banking and Application Programming Interfaces
BCBS published a report that monitors the evolving trend of open banking and application programming interfaces (APIs) in certain Basel Committee member jurisdictions. The report presents key trends and challenges identified in this area through the information gathered from 25 Basel Committee members from 17 jurisdictions, with focus on supervised banks and customer-permissioned data. The report also discusses the implications of these developments for banks and bank supervision. The report builds on the findings of BCBS paper on the implications of fintech developments for banks and bank supervisors.
The following are the key findings of the report with respect to the open banking frameworks:
- Traditional banking is evolving into open banking. A number of jurisdictions have adopted, or are considering adopting, open banking frameworks to require, facilitate, or allow banks to share customer-permissioned data with third parties.
- Open banking frameworks vary across jurisdictions in terms of stage of development, approach, and scope. Open banking is still in the early stages of development in a number of jurisdictions. Approximately half of the Basel Committee members have not observed significant open banking developments in their jurisdictions. There are benefits and challenges associated with each approach to open banking, when balancing bank safety and soundness, encouraging innovation, and consumer protection.
- Data privacy laws can provide a foundation for an open banking framework. Many jurisdictions that have adopted open banking frameworks also updated or plan to update their data protection and/or privacy laws.
- Multi-disciplinary features of open banking may require greater regulatory coordination. Within each jurisdiction, multiple authorities can have a role in addressing issues related to banks’ sharing of customer-permissioned data with third parties owing to the multi-disciplinary aspects of open banking.
Open banking comes with not only benefits but also various challenges for banks, such as risks to the business models and reputation and issues regarding data, cyber security, and third-party risk management. Therefore, banks and bank supervisors would need to pay more attention to the challenges that accompany the increased sharing of customer-permissioned data and growing connectivity of various entities involved in the provision of financial services. The report identifies the following key challenges for banks and supervisors:
- Challenges of adapting to the potential changes in business models
- Challenges of ensuring data and cyber-security in an open banking framework
- Time and cost to build and maintain APIs and the lack of commonly accepted API standards
- Oversight of third parties can be limited, especially in cases where banks have no contractual relationship with the third party, or where the third party has no regulatory authorization
- Assigning liability in the event of financial loss, or in the event of erroneous sharing or loss of sensitive data, which is more complex with open banking, as more parties are involved
- Increase in reputational risk, even in jurisdictions where there are established liability rules
Related Links
Keywords: International, Banking, Open Banking, API, Operational Risk, Governance, Fintech, Cyber Risk, BCBS
Featured Experts
María Cañamero
Skilled market researcher; growth strategist; successful go-to-market campaign developer
Nicolas Degruson
Works with financial institutions, regulatory experts, business analysts, product managers, and software engineers to drive regulatory solutions across the globe.
Patrycja Oleksza
Applies proficiency and knowledge to regulatory capital and reporting analysis and coordinates business and product strategies in the banking technology area
Previous Article
EBA Single Rulebook Q&A: First Update for May 2019Related Articles
BIS and Central Banks Experiment with GenAI to Assess Climate Risks
A recent report from the Bank for International Settlements (BIS) Innovation Hub details Project Gaia, a collaboration between the BIS Innovation Hub Eurosystem Center and certain central banks in Europe
Nearly 25% G-SIBs Commit to Adopting TNFD Nature-Related Disclosures
Nature-related risks are increasing in severity and frequency, affecting businesses, capital providers, financial systems, and economies.
Singapore to Mandate Climate Disclosures from FY2025
Singapore recently took a significant step toward turning climate ambition into action, with the introduction of mandatory climate-related disclosures for listed and large non-listed companies
SEC Finalizes Climate-Related Disclosures Rule
The U.S. Securities and Exchange Commission (SEC) has finalized the long-awaited rule that mandates climate-related disclosures for domestic and foreign publicly listed companies in the U.S.
EBA Proposes Standards Related to Standardized Credit Risk Approach
The European Banking Authority (EBA) has been taking significant steps toward implementing the Basel III framework and strengthening the regulatory framework for credit institutions in the EU
US Regulators Release Stress Test Scenarios for Banks
The U.S. regulators recently released baseline and severely adverse scenarios, along with other details, for stress testing the banks in 2024. The relevant U.S. banking regulators are the Federal Reserve Bank (FED), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC).
Asian Governments Aim for Interoperability in AI Governance Frameworks
The regulatory landscape for artificial intelligence (AI), including the generative kind, is evolving rapidly, with governments and regulators aiming to address the challenges and opportunities presented by this transformative technology.
EBA Proposes Operational Risk Standards Under Final Basel III Package
The European Union (EU) has been working on the final elements of Basel III standards, with endorsement of the Banking Package and the publication of the European Banking Authority (EBA) roadmap on Basel III implementation in December 2023.
EFRAG Proposes XBRL Taxonomy and Standard for Listed SMEs Under ESRS
The European Financial Reporting Advisory Group (EFRAG), which plays a crucial role in shaping corporate reporting standards in European Union (EU), is seeking comments, until May 21, 2024, on the Exposure Draft ESRS for listed SMEs.
ECB to Expand Climate Change Work in 2024-2025
Banking regulators worldwide are increasingly focusing on addressing, monitoring, and supervising the institutions' exposure to climate and environmental risks.