Payment Services Directive 2 (PSD2) and Open Banking Information

Payment Services Directive 2 (PSD2)

For more information on PSD2, its background scope and what's changing for our EFS-CPS Corporate Customers, please review the European Commission Fact Sheet and continue to watch this space for additional information.

For more information on the rights of consumers under this Directive and related EU law, see the EU Commission Leaflet – Your Rights When Making Payments in Europe.


Strong Customer Authentication (SCA)

What is SCA? Strong Customer Authentication (SCA) ensures that card issuers must confirm the cardholder as being the genuine owner of the payment card before they approve the ecommerce online transaction. To prove that they are the genuine owner of the card, cardholders must provide at least two out of three possible authentication factors to their card issuer when requested.

Authentication Factors:

These can include any combination of two of the following: 

  • Knowledge – this refers to something only the cardholder and their card issuer knows. A passcode or memorable secret word can be used to satisfy this requirement.
    Knowledge Icon
  • Possession – this is something the cardholder has which is recognised by their card issuer. A mobile phone can be used to satisfy this requirement.
    Possession Icon
  • Inherence – this is something unique to the cardholder and verifiable by their card issuer. A fingerprint, facial and voice recognition, or an iris scan are examples of authentication factors.
    Inherence Icon

When is SCA required to be implemented? The European Banking Authority recognised the complexity and challenges of implementing this directive within the payments environment and has extended its original deadline of 14 September 2019. The new deadline for Online eCommerce compliance is 31 December 2020 in Europe. The additional time is needed to ensure that all stakeholders in the ecosystem; banks, acquirers, gateway providers and merchants are able to equip themselves with the relevant tools to fully implement PSD2.

For an overview on SCA, please view this video

Open Banking Information

AISP Dedicated Interface Testing

Commission Delegated Regulation (EU) 2018/389 of 27 November 2017 supplementing Directive (EU) 2015/2366 of the European Parliament and of the Council with regard to regulatory technical standards for strong customer authentication and common and secure open standards of communication.

PSD2 Common and Secure Open Banking: if you are a Third-Party Provider known as an “AISP”, please use the link below in order to test Elavon’s dedicated interface. Elavon has partnered with Token.IO Limited (UK) to provide and support open banking/dedicated access.

AISP Webpage Interface


Access Interfaces - Key Performance Indicator Reports

  Q1 Q2 Q3 Q4

May 2019

Jun 2019

July 2019

Aug 2019

Sept 2019

Q4 Quarterly Report 2019

Oct 2019

Nov 2019

Dec 2019


Q1 Quarterly Report 2020

Jan 2020

Feb 2020

Mar 2020

Q2 Quarterly Report 2020

Apr 2020

May 2020

Jun 2020

Q3 Quarterly Report 2020

Jul 2020

Aug 2020

Sept 2020

Q4 Quarterly Report 2020

Oct 2020

Nov 2020

Dec 2020


Q1 Quarterly Report 2021

Jan 2021

Feb 2021

Mar 2021

Q2 Quarterly Report 2021

Apr 2021

May 2021

Jun 2021

Q3 Quarterly Report 2021

Jul 2021

Aug 2021

Sept 2021

Q4 Quarterly Report 2021

Oct 2021

Nov 2021

Dec 2021


Q1 Quarterly Report 2022

Jan 2022

Feb 2022

Mar 2022

Q2 Quarterly Report 2022

Apr 2022

May 2022

Jun 2022

Q3 Quarterly Report 2022

Jul 2022

Aug 2022

Sept 2022