30 november 2020
Does DNB qualify the use, by payment service providers, of 3rd party technology platforms, with strong customer authentication (SCA) capabilities, in compliance with Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication?
Yes. Payment service providers may use 3rd party technology platforms, such as a smartphone fingerprint reader, to support SCA and to ensure they fulfill all the security measures established in the Delegated Regulation. When using 3rd party technology platforms, the SCA procedure must be designed in such manner that the payment service provider has proof that the authentication has been performed using two or more elements categorized as knowledge, possession and inherence.
Related law and regulations