Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Banks, credit card companies: Give me an API for accessing my own data. Give me an opportunity to set a callback address that gets pinged whenever my card is used somewhere. Even better: make it possible for this callback to decline transactions (obviously this comes with certain problems).

This would open up innovation and I'm sure this would lead to interesting solutions for combatting the fraud.



I am sure the scammers would love such an API as well. Then the could model their fraudulent transactions on yours.

For example, they would make sure to go to the gas stations that you frequent. Or to the electronics store that you made a purchase at recently.

I worked at Citibank. They are barely competent. Don't ask for more access, they will probably screw it up.


In EU something a little bit like this will become mandatory for banks. To my understanding one part of Payment Service Directive 2 (PSD2) is that banks will be required to allow third party access to bank account statements (on customers permission, of course).

http://europa.eu/rapid/press-release_MEMO-15-5793_en.htm?loc...


Presumedly, those third party providers need to have some sort of security audit, bonded or somehow "known".




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: