Good Practice – Introduction

These guidelines are designed to:

• Encourage excellence in TPPs operating in the Open Banking Ecosystem.
• Support the ecosystem with stable, trustworthy and reliable customer-focused services.
• Bring focus to critical operational factors around security, data custody and proposition testing.

We recognise that every TPP will have requirements that are specific to its business needs and should tailor these recommendations. Where appropriate, we have provided links to relevant regulatory publications.

Disclaimer: Nothing contained in these OGs amounts to, or constitutes, legal advice. It is the sole responsibility of TPPs to ensure they understand and meet their legal and regulatory obligations. While drafted with regard to relevant regulatory provisions including without limitation, PSRs, PSD2, GDPR, consumer protection laws, anti-money laundering regulation and applicable best practice(s), they are not a complete list of the regulatory or legal obligations that apply to TPPs. The OGs are intended to be consistent with regulations and laws, however, in the event of any conflict with such regulations and laws, those regulations and laws will take priority.