As digitization has impacted every industry, consumers expect more protection of their personal information. Nearly two-thirds of respondents said they are very or extremely concerned about data privacy when using fintech apps, according to a 2018 survey of 1,500 U.S. consumers conducted by The Clearing House (TCH). Fifty-six percent said they want to control which financial accounts and types of data that third parties can access.
Federal financial regulators and other government agencies have encouraged efforts to enhance security, privacy and innovation. In response, FDX has introduced an interoperable standard and operating framework centered on an application programming interface (API), called the Durable Data API or DDA, unveiled by FS-ISAC earlier this year.
DDA will benefit consumers, financial institutions and fintech companies. Consumers will have better control over their personal financial data through improved access authorization options. When permissioned by consumers, financial institutions will have a simple, consistent process for securely sharing consumer data with fintech and other companies. Fintech companies will be able to access consumer financial information and provide services that consumers want.
DDA will replace the need for screen scraping and credential sharing - both commonly used today. Screen-scraping is third-party use of consumer log-in information to access accounts and “scrape” data to provide services. Adoption of DDA reduces instances of consumer login credentials being stored by fintechs, who will only retrieve account information essential to their services.
“The launch of FDX marks an industry turning-point toward the standardization of more secure financial data sharing,” said Lila Fakhraie, co-chair of FDX and manager of the Digital Banking API team, including the data sharing program, at Wells Fargo. “Our efforts will improve the efficiency and security around the exchange of financial information and empower consumers to control exactly what account data is shared with third-party applications.”
FDX’s board of directors comprises: Bank of America, BB&T, Capital One, Charles Schwab, Citigroup, Experian, Fannie Mae, Fidelity Investments, Finicity, FS-ISAC, Intuit, JPMorgan Chase, PNC Bank, N.A., Quicken Loans, SIFMA, TD Bank, TCH, USAA, U.S. Bank, Wells Fargo, Xero and Yodlee.
“Together, we will fundamentally change financial data sharing while helping consumers and businesses use data to make better financial decisions,” said Steve Smith, co-chair of FDX and CEO of Finicity. “By settling questions of standardization and interoperability, FDX will allow industry to focus on serving their customers and create a strong foundation to encourage innovation.”
To support effective and consistent use of DDA, FDX has constructed an operating framework, policies, membership and developer support. Membership is now open to financial institutions, fintech companies and industry groups who wish to support the development of protocols for data sharing, security standards, and other FDX activities.
The Financial Data Exchange is a non-profit financial industry organization dedicated to promoting and enhancing a common interoperable standard and operating framework for sharing consumer financial data. FDX puts consumers in control of their personal financial data. Open to all financial institutions and fintech companies, FDX facilitates collaboration in the development, growth and industry acceptance of the standard and security requirements. FDX is a subsidiary of FS-ISAC. For more information and to join, visit www.financialdataexchange.org/
The Financial Services Information Sharing and Analysis Center (FS-ISAC) is a non-profit corporation that was established in 1999 and is funded by its 7,000 member firms headquartered in 45 countries with users in 72 countries. FS-ISAC is a member-driven organization whose mission is to help assure the resilience and continuity of the global financial services infrastructure and individual firms against acts that could significantly impact the sector’s ability to provide services critical to the orderly function of the global economy. FS-ISAC shares threat and vulnerability information, conducts coordinated contingency planning exercises, manages rapid response communications for both cyber and physical events, conducts education and training programs and fosters collaborations with and among other key sectors and government agencies. Follow us on Twitter @FSISAC, on LinkedIn or visit www.fsisac.com.