Transparency and access to data and APIs has led to exponential growth in almost every industry but banking. Will 2021 be the year?
Frustrated with siloed departments at Amazon in 2002, Jeff Bezos’ sent an internal memo to all teams that left little room for misinterpretation. Effective immediately, they were to communicate solely through service interfaces that expose one another’s data and functionality. No backdoors, design everything to be externalizable, and “anyone who doesn’t do this will be fired.”
The Bezos Mandate was a pivotal moment for Amazon. With that level of shared data and functionality, the company’s efficiency and innovation skyrocketed above any competition. This internal openness eventually led to external growth: the exposed model made it possible to launch Amazon Web Services (AWS) and provide APIs to other organizations.
Nearly two decades later, nearly every industry has benefited from mimicking this level of transparency and access to data and APIs—but banking hasn’t. Open banking could change that.
Open banking has the potential to not just create Amazon-level efficiency within banks, but also grant customers more power and simplicity when it comes to managing their finances.
It works by allowing third-party access to data (with customer consent) through APIs. This streamlines the exchange of information between banks, lenders, and investment and other financial firms, making it possible for customers to manage all of their financial data and explore financial products in one place with the help of third-party providers (TPPs) such as fintech companies.
Understandably, talking about increasing access to financial data sets off security alarm bells for banks. Providing customers’ information to third parties could dissolve the foundation of trust that banking is built on.
To address this, countries adopting open banking also adopt strict security protocols like strong customer authentication (SCA) requirements. While increased access will always come with some risk, fintech companies are held to these standards and an expectation to leverage sensitive data securely.
Hoping to benefit economically, countries across the world are adopting open banking as a mandatory model.
Allowing TPP access to data across banks and financial firms makes it easier for customers to use fintech to compare financial products across providers, making the market more competitive.
In 2015, the Revised Payment Services Directive (PSD2) laid out a 2018 deadline for European states and banks to ensure all electronic payment services conform to open banking standards.
The idea was to boost innovation, competition, and efficiency in the European Union (EU). A few years and a pandemic later, we’re seeing the results. Open banking is now also regulated in the UK, India, and Australia. Turkey and Mexico will soon follow.
Taking a less hands-on approach, the governments of Canada, Brazil, South Africa, and others have industry initiatives or regulatory interest in open banking. The governments of the US and Japan, meanwhile, play only a facilitating or coordinating role in open banking without seeking to regulate it.
Yet even with global spread, the actual usage of the model is hard to measure. For example, the 2 million registered daily users who have consented to open banking in the UK only constitute only 3% of the population; traditional paper checks from unregistered customers remain more popular.
This restraint is likely due to a few challenges.
Open banking promises better customer experiences and a more competitive financial industry, but the security considerations are complex. It’s not just about keeping customer data secure. Banks also want to be sure that the people initiating transactions and loans are actually who they say they are, and that the fintech companies accessing data are following security protocols.
Banks have a long history of ensuring secure payments and data, authenticating identities, and buffering against privacy concerns, earning unrivaled trust with their customers.
Thanks to strict protocols like the ones found in PSD2, fintechs are just starting to look under the waterline of the security iceberg. For their part, Fintechs also do bring unrivaled ability to innovate and connect with customers through technology in an increasingly digital world. Once they have a handle on security and working under the supervision of financial authorities, the strengths of banks and fintechs combined may revolutionize banking.
In some places, it’s already started.
Open banking is just one of many things swept up into the long list of accelerated evolutions spurred by the pandemic. Allied Market Research reports that the global open banking market will reach $43.15 billion by 2026, six times its value in 2018.
This global market includes a diverse array of approaches to open banking. HSBC Hong Kong is identifying fintechs to build new products for existing customers. Meanwhile, Commerzbank in Germany offers a premium partnership API track for building fintech relationships. In Taiwan, Taishin Bank developed an open bank that integrates all banking services into one platform.
And while Europe dominated early growth, North America is expected to have the highest growth between now and 2026 according to the Allied report.
Perhaps this isn’t surprising, considering that 72% of the top 50 banks by market cap have API platforms—including eight of the ten U.S. banks on that list. Charles Schwab even signed an agreement with Finicity, an open-banking software provider now under Mastercard, in September 2020.
All of this doesn’t even touch on Plaid, the dominant U.S. open banking provider connecting apps like Venmo, Betterment, and Chime to customers’ banks. Plaid was recently acquired by Visa for $5.3 billion.
Slowly but surely, banks are opening up to open banking.
Part of this willingness on the part of banks may be due to the growing “need for speed”. When lockdowns kept customers out of branches, call centers were overwhelmed. Banks scrambled to adopt solutions like chatbots and AI that, under normal circumstances, may have taken years to launch.
Fintech companies with integrated APIs were at a distinct advantage, often rolling out tools and products in 90 days or less. As consumers increasingly come to expect financial solutions to be quickly and easily available, banks that can’t keep up may miss out.
What will we see as these rapid rollouts enable innovation? Currently, account management and secure payments dominate the open banking market. But with the industry picking up steam over the last year, fintechs have stepped up with additional services like account verification, data enrichment, and credit extension.
Banks stand to gain from partnerships with fintech companies if they can navigate open banking in a way that meets their needs for data security. APIs unlock new market segments and extend a bank’s value chain, when done right. This fact creates optimism for some experts about open banking’s future:
“Because of the opportunity it presents, and enabling technologies such as payment orchestration now making it easier to adopt, we believe that 2021 is the year that companies can finally embrace the open banking opportunity.”
-Brian Coburn, CEO, Bridge
With this expansion of services, consumers would have more choice in how and they do their banking, and who they do it with. Previously underbanked customers may find that they qualify for credit under different terms than traditional lenders use, for example.
This doesn’t have to be a situation where banks lose.
With increased consumer comfort with (and preference for) apps, and especially with government support, the stage is set for foundational changes to the financial industry. Approached strategically, banks can partner with fintechs in ways that ensure everyone, including customers, comes out on top.
To do open banking right, banks need to ensure they’re offering the same level of security that has earned customer trust for decades. Open banking efforts depend on consent to data use, so banks will need to ensure customers they are protecting customer privacy. Multi-factor authentication, AI, and machine learning can all play a role here, but most important will be acknowledging the ever-evolving nature of risk and the need for continual security education and upgrade.
Moving forward, banks should continue to scrutinize third parties’ security capabilities and monitor their protocols. External-facing applications are especially vulnerable, and fraudsters can quickly exploit breaches. Strong identity verification and authentication help, but the ability to act quickly if the volume of suspicious activity spikes will be critical.
A system is only as strong as its weakest link. With strict security certification processes for third parties and diligent security practices, banks and fintechs can work together to create a data-sharing ecosystem that customers trust.
Sandeep: Tell me a bit about the early part of your career.
Tom: I spent a decade helping to build start-ups focused on application and database software. This was where I learned how to sell and do business development. I was fortunate to be part of one company going public and another being sold to IBM.
Sandeep: What is something you learned during this time that helped you with consulting?
Tom: I began to appreciate how different customers achieved varying levels of success with the same foundational technology. This made me understand just how critical getting your team and process right can be.
Sandeep: This is something I only came to appreciate years into consulting, especially after the sale of my first consultancy to Capital One.I saw teams in different parts of the company trying to solve challenges like real-time messaging. Same corporate culture, same technology, same internal support mechanisms. Night and day outcomes.
Tom: We saw a lot of the same thing after selling our practice to EMC (sold to Dell in 2015). This is probably the thing I'm most proud of when it comes to the teams I've helped to build: the ability to perform well in a variety of contexts, sometimes in ways that inspires the client team to up their game as well.
Sandeep: Yes. It's particularly cool to see your team succeed in individual ways after an acquisition...consulting skills definitely translate into the corporate environment.
Tom: Totally. We have people who've stayed on at Dell and risen up the ranks, while others took the opportunity to become successful executives at other Fortune 100 companies....or to start their own agencies and startups.
Sandeep: We've both been around a while. My first consulting project was a Y2K thing for Cisco back in 1998. You've been around a little longer than that :). How do you think consulting has changed most during the past five years?
Tom: I think because there is so much infrastructure available now, consulting has become more delivery and outcome-oriented. A better blend of strategic and tactical. Public Cloud has also enabled velocity to increase at a pace unfathomable 5 years ago.
Sandeep: What has stayed the same?
Tom: It's still mostly about people. People who thrive on change and are focused on their personal and professional development. I love that this has not and will not change...it's what I love about consulting.
Sandeep: I know you're adjusting your work style to COVID. You're still a dude who clearly prefers to drive an hour for a socially-distanced hike or outdoor meeting over Zoom any day of the week :) But personal styles aside, what is specifically compelling about a remote agency during the era of COVID?
Tom: Kunai has been remote for years, which gives them an inherent advantage. There is something about the communication and management styles that just works in a way that other organizations are still figuring out.
Sandeep: Yeah, I think what a lot of people fail to realize is that remote work isn't just office work over Zoom. it's an entirely new paradigm. There needs to be an understanding for asynchronous efficiency...and this just takes time and effort to develop. How do you approach remote work and family? What are you learning about separating work and personal time?
Tom: No matter what the form of interaction, Focus. Be present. Quality over quantity. The best weeks are the weeks where I proactively schedule work and personal time. Neil (Kunai's Head of Delivery) shared a great quote with me "With discipline comes freedom." When I am proactively addressing the majority of my professional and personal commitments, I find I earn a little flexibility. A little freedom.
Sandeep: Tell us about a business hero of yours that I may not have heard of before.
Tom: Paul O'Neill is someone you may not know. His work in both the public and the private sector created a profound impact
Sandeep: We are both over forty years old :). How have you learned how to work smarter during the past decade or so? What do you wish you knew about consulting when you were 25 that you know now?
Tom: Consultants want to make lasting change. Lasting change is often not the act of a single person. Today I work much harder bringing others along on the journey.
Sandeep: Last question. What are you doing here? :) Why join a small consulting company this late in your career when you could have a cushy job somewhere else?
Tom: I love a good challenge personally and professionally. When I turned 40, I decided I would run a 10K every Thanksgiving weekend and try to have my finishing time be less than my age. With the exception of one year where I did not run due to a health issue, I have met the goal. I also recently completed the Leadville 100 Mountain Bike race. So, I guess I'm here because I'm a glutton for punishment :) Jokes aside, our customers have a job to do and I intend to put Kunai in a position to execute flawlessly on their behalf. I love committing jointly to audacious goals for our customers and our business.
Ninety percent of e-grocery customers will continue buying food online even after the pandemic. What does this shift mean for other merchants and their payment networks?
To compete in the digital market, financial apps and websites require secure and seamless onboarding experiences. Tech companies have risen to the challenge.