The Datafication of Open Banking: A critical interrogation into the data privacy issues and cybersecurity risk implications of cross-border data flows under Canada’s proposed Open Banking Framework
Date
2024-01-11
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
Banks have always served as the chief custodians of financial data and in this role, they regulate the activities between customers, technology, and merchants. The worldwide consumer demands have added pressure to financial institutions to adopt more streamlined methods when it comes to accessing financial data. This comes at a time when the financial services industry sits on the verge of pending reforms through digitisation and crossborder transactions. Open banking is one such change which is predicted to shake up the traditional banking model and is expected to bring a plethora of benefits to both customers and the financial industry. Open banking provides access to consumer banking, transactions, and other financial information to third party providers (TPPs) via application programming interfaces (APIs). Open banking has the possibility of expanding to include user consent-based movement of information for investments, insurance, telecommunications, utilities and more. This ability to share financial data through APIs could promote faster, easier, and more secure payments, particularly crossborder transactions. There are three major challenges with open banking that this research covers. The first is that open banking introduces a consumer data portability feature at a time when there is no existing right under the current law. The second is that open banking is a consent-based system that will require a higher standard of consent from a privacy law perspective especially in relation to crossborder transactions. The third is that open banking exacerbates existing cybersecurity risks while creating new ones which may require additional protections through either the financial or privacy law regimes. It is useful to explore that each country imposes separate regulatory limits on what personal data can be transferred or stored in their markets and whether there can ultimately be interoperability of these structures for crossborder transactions. Open banking raises concern that it may become a dangerous route for criminals to trick naïve consumers into disclosing secret information, allowing illegal access to their personal data. As such, there is no room for error in rolling out open banking as a model, as its failure could result in harsh economic impacts across the financial sector.
Description
Keywords
Open Banking, Privacy and Cybersecurity, Crossborder Banking
Citation
McKnight, F. A. (2024). The datafication of open banking: a critical interrogation into the data privacy issues and cybersecurity risk implications of cross-border data flows under Canada’s proposed open banking framework (Master's thesis, University of Calgary, Calgary, Canada). Retrieved from https://prism.ucalgary.ca.