Screen scraping works by duplicating the data of another website. In payments, clients provide their credentials to the third-party provider (TPP) that enables the latter to access their bank account on their behalf to complete online transactions. This enables funds to be withdrawn directly from accounts.
The EBA believes that screen scraping should no longer be permitted under PSD2. The European Commission has pushed for it to be allowed as a back-up method in case a bank’s systems fail.
Jerry Norton, CGI |
Jerry Norton, vice-president, financial services, at banking services provider CGI, says: “Last week, the EBA made an announcement that they reject screen scraping and do not think it should be allowed as a fall-back option.
“The point is a very specific one in the EBA’s response to PSD2. They agree with the EC’s amendments to its regulatory technical standards (RTS), but there are difficulties with the number of contradictions.”
In its statement, the banking authority explains: “The EBA... is of the view that the suggested changes would negatively impact the fine trade-off previously found by the EBA in achieving the various competing objectives of the PSD2.”