Operational Guidelines

TPP Guidelines

This version is:

Published 4 years ago 25 Jun 2020

These Operational Guidelines (OGs) help TPPs deliver innovative, competitive and secure products and services within the evolving Open Banking Ecosystem.

Other pages in this section

They are designed to:

• Encourage excellence in TPPs operating in the Open Banking Ecosystem.
• Support the ecosystem with stable, trustworthy and reliable customer-focused services.
• Bring focus to critical operational factors around security, data custody and proposition testing.

We recognise that every TPP will have requirements that are specific to its business needs and should tailor these recommendations. Where appropriate, we have provided links to relevant regulatory publications.

In this chapter

Change Management

OBIE will continue to publish new versions of the Open Banking Standard to cater for regulatory changes / clarifications, Open Banking Roadmap requirements and other approved changes including new functionality, fixing defects, and erratas.

This version was published 4 Years & 4 Months ago 25 Jun 2020

Data Ethics

Open Banking enabled services facilitate the transfer of high-quality datasets from the consumer to the TPP. How you collect, collate, draw insight and inference from the data, and how you store it, use it and share it and for what purpose, all have ethical implications.

This version was published 4 Years & 4 Months ago 25 Jun 2020

Data Privacy / GDPR

Compliance with data privacy laws and GDPR requires a risk based approach tailored to the nature of personal data and the type of processing employed. The checklist below provides signposts to the relevant sources.

This version was published 4 Years & 4 Months ago 25 Jun 2020

Testing

An overview of the Testing approach and act as a ‘hub’ from which participants can access relevant support documentation.

This version was published 4 Years & 4 Months ago 25 Jun 2020

Issues and Disputes

This section provides guidance on issues and disputes, including customer complaints and infrastructural failures. TPPs should incorporate these into their operational capability.

This version was published 4 Years & 4 Months ago 25 Jun 2020

Contract and Supplier Management

This section sets out the key considerations when you are procuring or contracting services. Taking a systematic approach will increase speed to contract, minimise risk and help drive more value from the supplier.

This version was published 4 Years & 4 Months ago 25 Jun 2020

Business Continuity and Disaster Recovery

Business Continuity and Disaster Recovery are processes that all firms should have but should never want to use. In the event of either being required, if a firm does not have them it could be catastrophic for the firm. There can be confusion between the two, but they are quite easy to distinguish: Business Continuity…

This version was published 4 Years & 4 Months ago 25 Jun 2020

Disclaimer: Nothing contained in these OGs amounts to, or constitutes, legal advice. It is the sole responsibility of TPPs to ensure they understand and meet their legal and regulatory obligations. While drafted with regard to relevant regulatory provisions including without limitation, PSRs, PSD2, GDPR, consumer protection laws, anti-money laundering regulation and applicable best practice(s), they are not a complete list of the regulatory or legal obligations that apply to TPPs. The OGs are intended to be consistent with regulations and laws, however, in the event of any conflict with such regulations and laws, those regulations and laws will take priority.

Understand and Download the Checklist Previous

Change Management Next

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Advertisement

Others