PSD2 Gateway
Fabrick Gateway is a software solution that allows banks and ASPSPs to be PSD2 compliant, offering them an API interface for TPPs (Third Party Providers) that provides access to the end customer’s current account allowing them to offer innovative and more personalized services and products.
The ASPSPs that use our compliance solution to PSD2
Fabrick Gateway allows ASPSPs to be fully PSD2 compliant by exposing ASPSP APIs to allow end customers to access their accounts from third party applications.
Architecture
The business architecture enabled by the Fabrick PSD2 Gateway is the one provided by the XS2A interface (Access to accounts) required by the PSD2 Directive.
Through the Public Layer PSD2-API, the Fabrick PSD2 Gateway provides Third Party Providers (TPPs) with the access interface to payment accounts of Payment Service Users (PSUs).
A TPP can get access to a PSUs’ account as Account Information Service Providers (AISP) and/or Payment Initiation Service Provider (PISP).
Through the ASPSPs Interface Layer, the Fabrick PSD2 Gateway enables connection to Account Servicing Payment Service Providers (ASPSPs).
Fabrick Platform adopts the Berlin Group standards, a set of pan-European payments interoperability standards and an harmonization initiative with the primary objective of defining open and common schemes and processor-independent standards for the API initiatives of the European open-banking ecosystem.
The Berlin Group has released three main versions of the XS2A interface standard to date. Fabrick Platform is in line with the most recent version, which is the Version 1.3 dated 19 October 2018.
TPP Authentication
Check of a TPP’s eIDAS certificate providing the proof of its origin, information concerning the TPP’s identity and the corresponding PSD2 roles. If any critical regulatory data of the PPT changes, instant notifications enable immediate blocks of the unauthorized TTPs
Accounts and Cards Access Managemen
Functionalities enabling TPPs to execute specific API calls concerning balance request, transactions list and funds availability to ASPSPs to access payment data according to the Berlin Group standards. It is also possible to set the maximum number of unattended calls.
Consents Management
Set of dedicated APIs that, within the PSD2 perimeter, allow TPPs to request access to online payment accounts and manage the “consent register”, ensuring that their respective PSUs have given consent.
Payment Request management
API calls enabling PIS Providers to execute payments directly through servicing accounts and, on PISPs’ request, to manage the SCA for each single payment.
PSU Authentication through SCA
The PSU authentication system adheres to the Berlin Group’s standards and, as required by PSD2, provides SCA functionality via dynamic OTP connections. Each ASPSP can choose which methods to expose to its customers.
Benefits
Rely on the stability of Berlin Group standards
Our system adopts the Berlin Group standards, a set of pan-European payments interoperability standards and an harmonization initiative with the primary objective of defining open and common schemes and processor-independent standards for the API initiatives of the European open-banking ecosystem.
Modular system architecture
The business architecture enabled by the Fabrick PSD2 Gateway is the one provided by the XS2A interface (Access to accounts) required by the PSD2 Directive. Through the Public Layer PSD2-API, the Fabrick PSD2 Gateway provides TPPs with the access interface to payment accounts of PSUs. On the other side, through the ASPSPs Interface Layer, the Fabrick PSD2 Gateway enables connection to Account Servicing Payment Service Providers (ASPSPs).