Thursday 05 Sep 2019 @ 09:25
techUK
Printable version

SCA: enforcement delayed

The FCA has taken the decision to delay the enforcement of strong customer authentication (SCA), set in the Payment Services Regulations 2017 (PSRs), by a further 18 months.

Strong Customer Authentication, are intended to enhance the security of payments and limit fraud during this authentication process.  SCA affects the way banks or other payment services providers check that the person requesting access to their account or trying to make a payment is the person permitted to make a payment and validate specific payment instructions.

SCA applies when a payer:

  • initiates an electronic payment transaction
  • accesses their payment account online
  • carries out any action remotely that may imply a risk of payment fraud

The new deadline for enforcement of SCA is now 14 March 2021. Any firm that fails to comply with the requirements for SCA, after this date, will be subject to full FCA supervisory and enforcement action as appropriate.

The FCA indicated that all parties involved in card-not-present transactions, both FCA regulated and unregulated, should continue to work together over the next 18 months to ensure the smooth and timely implementation of SCA by 14 March 2021.

SCA and PSD2: same deadline but a 6-month transition period

Account servicing payment service providers are required to have a PSD2-compliant way to provide TPPs with access to account data and payment functionality by 14 September 2019. This is either by a dedicated interface based on application programming interface standards or a modified customer interface. This remains the case.

However, to avoid disruption to consumers and TPPs the FCA has agreed an adjustment period of six months. Therefore, in certain circumstances, firms have until 14 March 2020 to implement SCA for online banking.

After 14 March 2020, failure to comply with the requirements for SCA and identification will be subject to full FCA supervisory and enforcement action as appropriate.

This is likely to mean that some, but not all, customers may not be asked for strong customer authentication when accessing their account online until 14 March 2020. Firms are expected to communicate with customers about any relevant changes to their online banking, including timings of such changes.

Channel website: http://www.techuk.org/

Original article link: https://www.techuk.org/insights/news/item/15981-sca-enforcement-delayed

Share this article

Latest News from
techUK

techUK leads members delegation to the 8th edition of the UK-US SME Dialogue in Belfast

17/04/2024 16:25:00

On 15 and 16 April, techUK organized a members delegation to the 8th edition of the UK-US SME Dialogue in Belfast, Northern Ireland.

techUK announces its first delegation to VivaTech Paris

17/04/2024 13:20:00

techUK is delighted to announce its first-ever delegation to VivaTech on 22-25 May in Paris. VivaTech is France’s biggest technology conference and one of the largest in Europe with over 11,400+ startups and 2600+ investors in attendance covering every tech vertical. The key themes of the conference are AI, Climate Tech, Smart Mobility, Deeptech, Internet & Democracy, the Creative Economy and Gaming & E-Sports. You can see all the sessions here.

AUKUS Trilateral Advanced Capabilities Forum bring industry together for first time

17/04/2024 12:05:00

Four UK trade associations have partnered to form the first Trilateral AUKUS Advanced Capabilities Industry Forum.

The UK's Competition Authority seeks to address concerns in markets for AI Foundation Models

16/04/2024 09:05:00

A summary of the CMA's latest paper on AI Foundation Models (FM), and its plans to help encourage open, fair competition and good consumer outcomes in the FM sector.

UK Government to partner on AI Safety with The Republic of Korea

15/04/2024 14:05:00

The strategic partnership announced recently (12 April 2024), bolsters the UK Government's ambition to be world leader in AI.

UK to partner on AI Safety with The Republic of Korea

12/04/2024 16:20:00

The UK and the Republic of Korea announced today, they are pressing forward with plans for the upcoming wave of global discussions on the safe development of Artificial Intelligence technologies, with the AI Seoul Summit scheduled for May 21st and 22nd, which will take place partially virtually.

As the Data Protection and Digital Information (No. 2) Bill progresses through the Parliament, techUK addresses some of the misconceptions around this legislation

11/04/2024 11:20:00

Concerns have been raised about some of the DPDI Bill’s provisions, some of which stem from misunderstandings of the Bill’s approach and its legislative intent. techUK addresses these misconceptions.

Explaining AUKUS – What is it?

11/04/2024 10:25:00

Announced in September 2021, AUKUS is a trilateral Defence and Security agreement between the United Kingdom, United States and Australia.

Our Ask from the Next Mayor of West Midlands

10/04/2024 10:05:00

As the Mayoral election is approaching, techUK asked the Centre for the New Midlands for their ‘asks’ of the winning candidate.

How Lambeth Council undertakes effective know your citizen (KYC) / ID checks to prevent fraud