The Path to Open Banking: A Fintech Startup’s Journey Under PSD2

/blog/avatar-andrii-minchekov.png

March 14, 2025, written by

Andrii Minchekov

[object Object]

How one visionary founder turned PSD2 regulation headaches into game-changing solution...

Introduction

Meet Michael, the founder of 'Wealth Management App'—a Fintech startup on a mission to unify all your financial data in one seamless experience. Michael initially assumed PSD2 (Payment Services Directive 2) would only complicate life for traditional banks, forcing them to open secure APIs. But he soon realized that while Open Banking is a massive opportunity for third-party providers (TPPs), it also brings technical challenges to any fintech that wants to do it right.

Below, we explore the key pain points 'Wealth Management App' encountered—and how Michael turned these into competitive advantages. Whether you’re a bank or a fintech, there’s plenty to learn about thriving under PSD2.

1. PSD2 Basics and Who’s Involved

PSD2 is an EU directive pushing banks—known as ASPSPs—to provide secure access to payment account data. Regulated third-party providers (TPPs) can leverage these APIs to build new financial services. End users (PSUs) remain in control, granting or revoking consent for data access.

Key Roles

  1. ASPSP (Banks) - Account Servicing Payment Service Provider.
    Holds customers’ accounts and must offer secure APIs to share that data (with permission).
  2. PSU (End Users) - Payment Service User.
    The account owner who decides whether to grant access to a TPP.
  3. TPP (Third-Party Provider).
    A regulated fintech or payment service that brings new financial solutions—like account aggregation or payment initiation.
    • AISP: Account Information Service Provider aggregates account info into a single dashboard (the data wizard).
    • PISP: Payment Initiation Service Provider initiates payments directly from the bank on your behalf (the payment guru).
  4. Regulators, e.g. EBA in Europe.
    They set and enforce the rules. Compliance is non-negotiable if you want to stay in business.

At first glance, it might seem like banks bear the heaviest burden. While that’s partially true—they must host robust APIs—TPPs also face complex requirements around licensing, secure integrations, token management, and data unification. 'Wealth Management App', acting as a TPP aggregator, felt all these challenges firsthand.

2. Pain Points from a TPP’s Perspective

Pain Point 1: Obtaining Licensing & Compliance

Pain Point 2: Integrating with Fragmented Bank APIs

Pain Point 3: Handling User Consent & Token Management

Pain Point 4: Security & Liability

Pain Point 5: Data Normalization & Value-Added Services

3. The 'Wealth Management App' System Architecture

PSD2 TPP Fintech Architecture

  1. User Frontend (Web/Mobile)
    • Users sign in, manage consents, and view a consolidated financial dashboard.
  2. API Gateway
    • Central entry point, handling load balancing, rate limiting, and request validation.
  3. Identity & Access Management
    • Enforces user authentication, roles, and possibly MFA.
  4. Consent Management
    • Tracks each bank’s tokens and the user’s scopes/permissions. Handles token refresh and revocation flows.
  5. Data Orchestration
    • Coordinates fetching from multiple banks, normalizing data into a cohesive format.
  6. Bank Adapters
    • Connect to various PSD2 APIs, ensuring mutual TLS and compliance with each bank’s unique specs.
  7. Aggregated Data DB
    • Stores unified account data, fueling analytics, dashboards, and advanced insights.

4. Turning Pain into Competitive Advantage

For Michael, PSD2 wasn’t just about satisfying regulators. By systematically addressing these TPP pain points, he created 'Wealth Management App':

Conclusion: Embrace the Challenge, Reap the Rewards

It’s true that banks shoulder the lion’s share of building out PSD2 APIs—but fintechs (TPPs) also face non-trivial hurdles in licensing, integration, consent and token management, and security. Yet these very hurdles can become powerful differentiators if approached as opportunities:

Michael’s journey with 'Wealth Management App' proves that fintech startups can turn regulatory complexity into a strategic foundation for innovation and user delight. If you’re venturing into the Open Banking space, consider each “pain point” a chance to refine your product, build trust, and stand out in a crowded field.

FinTech
Open Banking
PSD2
TPP System Architecture
Wealth Management