Payment Services Directive 2 (PSD2) and Open Banking Information


Payment Services Directive 2 (PSD2)

For more information on PSD2, its background scope and what's changing for our EFS-CPS Corporate Customers, please review the European Commission Fact Sheet and continue to watch this space for additional information.

For more information on the rights of consumers under this Directive and related EU law, see the EU Commission Leaflet – Your Rights When Making Payments in Europe.


Strong Customer Authentication (SCA)

What is SCA? Strong Customer Authentication (SCA) ensures that card issuers must confirm the cardholder as being the genuine owner of the payment card before they approve the ecommerce online transaction. To prove that they are the genuine owner of the card, cardholders must provide at least two out of three possible authentication factors to their card issuer when requested.

Authentication Factors:

These can include any combination of two of the following: 

  • Knowledge – this refers to something only the cardholder and their card issuer knows. A passcode or memorable secret word can be used to satisfy this requirement.
  • Possession – this is something the cardholder has which is recognised by their card issuer. A mobile phone can be used to satisfy this requirement.
  • Inherence – this is something unique to the cardholder and verifiable by their card issuer. A fingerprint, facial and voice recognition, or an iris scan are examples of authentication factors.

When is SCA required to be implemented? The European Banking Authority recognised the complexity and challenges of implementing this directive within the payments environment and has extended its original deadline of 14 September 2019. The new deadline for Online eCommerce compliance is 31 December 2020 in Europe. The additional time is needed to ensure that all stakeholders in the ecosystem; banks, acquirers, gateway providers and merchants are able to equip themselves with the relevant tools to fully implement PSD2.

For an overview on SCA, please view this video

Open Banking Information

AISP Dedicated Interface Testing

Commission Delegated Regulation (EU) 2018/389 of 27 November 2017 supplementing Directive (EU) 2015/2366 of the European Parliament and of the Council with regard to regulatory technical standards for strong customer authentication and common and secure open standards of communication.

PSD2 Common and Secure Open Banking: if you are a Third-Party Provider known as an “AISP”, please use the link below in order to test Elavon’s dedicated interface. Elavon has partnered with Token.IO Limited (UK) to provide and support open banking/dedicated access.

AISP Webpage Interface


Access Interfaces - Key Performance Indicator Reports

  Q1 Q2 Q3 Q4

May 2019

June 2019

July 2019

Aug 2019

Sept 2019

Q4 Quarterly Report 2019

Oct 2019

Nov 2019

Dec 2019


Q1 Quarterly Report 2020

Jan 2020

Feb 2020

Mar 2020

Q2 Quarterly Report 2020

April 2020

May 2020

June 2020

Q3 Quarterly Report 2020

July 2020

Aug 2020

Sept 2020

Q4 Quarterly Report 2020

Oct 2020

Nov 2020

Dec 2020