This episode of Alles Legal – Fintech-Recht kompakt focuses on strong customer authentication (SCA) in the context of PSD3 and PSR. What are the new obligations for payment service providers? Which pain points remain? Tune in now!
New rules, new tech, new questions – In episode #109 of Alles Legal, Dana Wondra and Peter Frey take a deep dive into strong customer authentication (SCA) – a topic familiar from PSD2 that is gaining complexity under PSD3 and PSR.
One key change
SCA will soon be governed directly by the PSR as an EU regulation – making it immediately applicable across all member states. A new obligation requires providers to offer accessible alternatives for vulnerable user groups, such as those without smartphones or with limited digital skills.
From a technical angle, passkeys are increasingly recognised as SCA-compliant and could replace traditional passwords. Delegated authentication will still be allowed but will now be considered an outsourcing arrangement – bringing DORA into play.
Telecommunications providers are also entering the picture
They will be required to actively support fraud prevention by implementing protective technical measures.
Peter Frey explains what all this means in practice and where open issues remain.
About this podcast
Alles Legal – Fintech Recht Kompakt delivers sharp, weekly insights into legal and compliance matters in the world of banking. (in German only)
This podcast is a collaboration between Payment & Banking and PayTechLaw.
Each Wednesday, we unpack the legal developments shaping the financial world – clearly, concisely, and without the legal jargon.
Since 2021, PayTechLaw authors and Annerton attorneys have brought depth and clarity to complex topics.
Whether it’s PSD3, DORA, or FiDA – we provide the legal context you need.
In 20 minutes. No detours.
