Open Banking Rule Comments: Deep Divides Revealed - News Directory 3

Open Banking Rule Comments: Deep Divides Revealed

October 26, 2025 Victoria Sterling Business
News Context
At a glance
  • Okay, here's a ⁣breakdown of the ⁤key arguments presented in the text regarding the CFPB's proposed open banking ⁣rule, categorized by stakeholder:
  • * ‍⁢ ‍ Model: Advocates for a system similar to the UK's open banking framework, where only account issuers are obligated to share data.
  • * ⁢ Fraud⁤ Risk: ‍ ⁤ Broad data-sharing mandates increase vulnerability to fraud.
Original source: pymnts.com

Okay, here’s a ⁣breakdown of the ⁤key arguments presented in the text regarding the CFPB’s proposed open banking ⁣rule, categorized by stakeholder:

1. Apple:

* ‍⁢ ‍ Model: Advocates for a system similar to the UK’s open banking framework, where only account issuers are obligated to share data. This prioritizes privacy while still enabling innovation.
* Fees: Strongly ⁣opposes “use case” surcharges (fees ⁤based on how the data is used).‍ Permitted fees should be limited to cost recovery only.
* Liability: Supports a “liability follows the data” rule – the firm transferring data shouldn’t be held responsible if a data breach ⁣occurs‍ at the recipient’s end. ⁢ This incentivizes secure data handling throughout the process.

2.Axos Bank (Smaller Institutions/Banks):

* ⁢ Fraud⁤ Risk: ‍ ⁤ Broad data-sharing mandates increase vulnerability to fraud. Access should be ‍limited to entities with fiduciary responsibilities.
* Costs & Fees: ⁢Argues that a complete ban on fees would be detrimental, especially for smaller banks and⁣ credit unions. They ‍need to be⁢ able to charge reasonable fees to cover compliance and security upgrades.
* Timelines: Concerns about meeting new response timelines and‍ technology requirements.
* Priorities: Ensuring ⁢consumer protections keep pace with increased data⁢ exposure.

3. Suncoast Credit union (credit Unions):

* Supports Open Banking (with caveats): Generally supportive of open banking but emphasizes the need for a secure habitat.
* ⁢ Security Standards: Advocates for‍ mandatory use of secure communication standards (FAPI ⁣2.0, Mutual TLS) and independent security audits (SOC 2 Type II, ISO 27001).
* Cost Recovery: Should be allowed to recover marginal costs of compliance (estimates $0.05 – $0.25 per request).
* Phased ⁤Rollout: Suggests⁢ a phased implementation based on institution size (24 months for large,⁢ 18⁢ for midsize, 12 for small).
* Continuous Compliance: Proposes a continuous-compliance certification program (like CMMC) for third-party⁢ data access.

4. American⁢ FinTech Council (FinTechs):

* ‍ Free Access: ⁣ Argues that access to consumer data must remain free. They view Section 1033 as requiring free data access.

In essence, the core debate revolves around:

* Cost: Who bears the cost of implementing and maintaining open banking infrastructure and security?
* Security: How to balance innovation ⁣with robust data protection.
* ⁣ Access: How open should access⁤ to data be, and who should be allowed to access it?
* ⁤ Liability: Who is responsible when data breaches occur?

Let‍ me know if you’d like me to elaborate on any specific point or compare/contrast the arguments further!

, , , , , , , , , ,