Introduction
PSD2 Compliance is a customer-centered regulation that is intended to improve the general user experience, which should benefit both the customers and the banks/payment service providers. Drafted and administrated by EU, PSD2 enforces a set of regulatory rules that requires banking institutions to make interfaces available to third-party payment institutions.
As a result of the Act, WorldFirst is also subject to the regulations, and provides a set of PSD2 APIs. These interfaces include functions such as account inquiry and making transfer requests.
Basic concepts
The following terms are used in this document:
- Partner: A third-party agency authorized by WorldFirst that integrates with WorldFirst and supplies Customers with services such as account binding and transfer services. In this case, a Partner is also known as a Third Party Provider(TPP).
- Customer: A User who receives services from a Partner. A Customer can access the WorldFirst website and perform business operations.
How it works
With the WorldFirst PSD2 APIs, the following roles are involved:
- Customer
- Partner
- WorldFirst
Figure 1. Relationship between Customer, Partner, and WorldFirst
For a Partner that has integrated with WorldFirst to process payout requests from Customers, the Partner needs to undergo the following workflow:
Figure 2. Process for account authorization
Figure 3. Process to query account information
Figure 4. Process to authorize and confirm a transfer request
User Experience
Step 1. Customer select an account.
Step 2. WorldFirst redirects the User to a payment confirmation page
Step 3. User lands on the payment confirmation page.
Step 4. User complete the Strong Customer Authentication process