Featured Product

    HKMA Outlines Consumer Protection Measures for Open API Framework

    October 29, 2019

    HKMA published a circular to clarify its expectations on the consumer protection measures of authorized institutions in respect of the Open Application Programming Interface (Open API) framework. The Annex to the circular lists sound consumer protection practices for Open API Phase II and beyond. To strike a balance between innovation and consumer protection, HKMA emphasizes that authorized institutions should adopt a risk-based approach and implement the consumer protection measures that are commensurate with the risks involved.

    The circular also clarifies the requirements about engagement of intermediaries by the authorized institutions, as the use of third-party service providers under Open API Framework may constitute the use of intermediaries by authorized institutions. For the avoidance of doubt, Simple Redirection Model is not considered as use of intermediaries by authorized institutions and the authorized institutions should still comply with the HKMA-issued applicable requirements for engagement of intermediaries. Authorized institutions should establish clear liability and settlement arrangement with the partnering third-party service providers for compensating customers’ loss arising from unauthorized transactions, with clear upfront communication to customers. They should also and adhere to the principle that a bank customer should not be responsible for any direct loss suffered by him/her as a result of unauthorized transactions conducted through his/her account attributable to the services offered by the third-party service providers using the Open API of authorized institutions, unless the customer acts fraudulently or with gross negligence.

    Authorized institutions are expected to put in place consumer protection measures when implementing the Open API framework. These institutions are expected to uphold consumer protection principles set out in the Code of Banking Practice and comply with other applicable regulatory requirements; this is expected regardless of the underlying technology adopted for the banking products and services and regardless of whether the authorized institutions provide the products and services themselves or in partnership with the third-party service providers.

    Keywords: Asia Pacific, Hong Kong, Banking, Open API Framework, Fintech, Open API Phase II, HKMA

    Related Articles
    News

    APRA Plans to Assess Climate Risks and Develop Prudential Guidance

    APRA published a letter that outlines its plans to undertake a climate change vulnerability assessment and develop a prudential practice guide focused on climate-related financial risks.

    February 24, 2020 WebPage Regulatory News
    News

    APRA to Transition to Annual Stress Testing of Large Banks in 2020

    APRA published key findings of the stress testing assessment conducted on authorized deposit-taking institutions.

    February 21, 2020 WebPage Regulatory News
    News

    IAIS Statement on Monitoring Period of Insurance Capital Standard

    IAIS published a statement from its Secretary General Jonathan Dixon on the Insurance Capital Standard (ICS) monitoring period.

    February 21, 2020 WebPage Regulatory News
    News

    EC Consults on Review of Non-Financial Reporting Directive

    EC is launched a consultation on the review of the Non-Financial Reporting Directive or NFRD (Directive 2014/95/EU, as part of its strategy to strengthen sustainable investment in Europe.

    February 20, 2020 WebPage Regulatory News
    News

    EIOPA Consults on Standards for Supervisory Reporting Under PEPP Rule

    EIOPA is consulting on the implementing technical standards for supervisory reporting and cooperation, as mandated by the Pan-European Personal Pension Product (PEPP) Regulation (Regulation 2019/1238).

    February 20, 2020 WebPage Regulatory News
    News

    ECB Report on Transfer of Liquidity from EONIA Products to €STR

    ECB published a report on the transfer of liquidity from the cash and derivatives products of the Euro Overnight Index Average (EONIA) to the Euro Short-Term Rate (€STR).

    February 19, 2020 WebPage Regulatory News
    News

    ESRB Publishes Report on Systemic Cyberattacks

    ESRB published a report that explores systemic implications of cyber incidents, such as cyberattacks.

    February 19, 2020 WebPage Regulatory News
    News

    FSB Chair Sets Out Key Deliverables for G20 Presidency of Saudi Arabia

    FSB published a letter from the Chair Randal K. Quarles to the G20 finance ministers and Central Bank governors ahead of the meetings in Riyadh on February 22-23.

    February 19, 2020 WebPage Regulatory News
    News

    CFTC Proposes Rules on Derivative Position Limits and Swap Execution

    CFTC approved a proposed rule on position limits for derivatives and a proposed rule amending requirements for certain Swap Execution Facilities and real-time reporting.

    February 19, 2020 WebPage Regulatory News
    News

    BIS Appoints Heads of Innovation Hubs in Singapore and Switzerland

    BIS announced key personnel appointments to the Innovation Hubs in Singapore and Switzerland.

    February 19, 2020 WebPage Regulatory News
    RESULTS 1 - 10 OF 4717