The notion of open banking is often met with fear from IT leaders and executives given the enormous transformation it entails. But what about the other side of the coin? We look at how open banking is fueling collaboration.
Open banking has reached a fever pitch as the initiative takes off overseas. While banking and fintech ecosystems are both maturing in sometimes opposing directions, the lack of data-sharing threatens to hamper innovation. Incumbent banks are rich with data but it is the fintechs that have been harnessing and presenting data in imaginative ways to develop valuable new customer relationships.
Open banking promises to merge the best of both worlds by opening up a treasure trove of data to third parties via APIs and by governing this data-sharing with processes that allay the inherent risks that come with connection. While challenges remain around data sharing and security, overall collaboration could spark new heights of innovation. Opportunities are emerging daily, with proactive players standing to capitalize the most.
While the EU is center stage for the open banking movement, the U.S. is not just an understudy. Several large U.S. banks are making moves of their own, committing to data-sharing deals with innovative fintech partners (e.g. Chase’s partnership with Intuit). However, the U.S. also lacks the centralized approach to data governance that the EU has, making these partnerships hard to scale and more of a medley than anything repeatable.
The U.S. Office of the Comptroller of the Currency has begun accepting national bank charter applications from nonbank/fintech companies. This move seems to be aimed at paving a smoother path for nonbanks to edge into the financial services market and subsequently, teasing out data-sharing protocols not unlike PSD2. More will certainly come to light in 2020 as some of these partnerships continue to develop and gain momentum.
In the EU, open banking is rooted in the regulatory initiative meant to improve innovation and security via increased competition and accessibility. By opening data to third parties through APIs, financial institutions would widen the fintech ecosystem and facilitate greater consumer choice through the availability of data. Shifting to this innovative state requires some groundwork. Financial institutions have found themselves grappling with digital transformation, evolving models and platforms, and emerging technologies.
To say that transitioning to an open-API environment is easy would be untrue. Not only are there technical specifications that need to be addressed but also new thinking around customer data and how it’s used. Two of the biggest concerns among financial institutions are 1) will we lose control of our customers’ data? and 2) how will we address evolving data security concerns in a new open banking environment?
Both are founded concerns. With open availability of customer data, it is possible that competitors can take, understand, and use customer data better than an incumbent bank has, for example. When third parties layer analytics capabilities on top of this data, it may be easier to glean valuable insights from data than it traditionally has been in the past.
In terms of security, the PSD2 has outlined very specific language about the fundamental security of API services per defined protocols like third party verification and secure customer authentication. That said, other overlapping regulations must be adhered to in tandem, including the General Data Protection Regulation (GDPR), which acknowledges the rights associated with personal data and defines rules around how it is used.
While the challenges defined around data are very real, there are also tangible solutions to address them. On the competitive front, financial institutions need to be proactively developing additional capabilities to engage with technology and garner insights and analytics. Machine learning can be tapped for these purposes. The key is to determine the use cases, and then to leverage technology to solve for it and better serve the needs of customers.
In many cases, institutions still need to determine the appropriate way to ask customers for their data and for permission to use it to conduct effective analytics. Per GDPR, organizations must earn the right to have access. In cases where institutions are shifting their models and how they work, they may need to go back to customers and ask for new permissions to work with their data.
The payoff of effectively handling customer data is lucrative. Not only do organizations improve existing customer experiences but they gain the ability to develop new revenue streams. In most cases, services borne under this model are a boon to both consumers and providers. Consider those like WeChat or AliPay, which are enhanced ecommerce platforms that give customers a wide range of payment options in addition to a streamlined and personalized experience.