What are the Card Based Payment Instrument Initiation (CBPII) journeys as identified by the UK's Open Banking Implementation Entity?
The UK's Open Banking Implementation Entity (<a href="/glossarycollection/open-banking-implementation-entity" style="color:#48277C;" target="_blank" title="Open Banking Implementation Entity"><u>OBIE</u></a>) identifies the following journeys related to card-based payment instrument initiation:<br/><br/>
Consent for Confirmation of Funds (CoF);<br/><br/>
Access Dashboard & Revocation;<br/><br/>
Confirmation of Funds – Y/N Response;<br/><br/>
Revocation of Consent;<br/><br/>
Re-authentication of CoF access at the Account Servicing Payment Services Provider (<a href="/glossarycollection/account-servicing-payment-service-provider" style="color:#48277C;" target="_blank" title="Account Servicing Payment Services Provider"><u>ASPSP</u></a>).<br/><br/>
In addition they provide the following information:<br/><br/>
"Open Banking Application Programming Interface (<a href="/glossarycollection/application-programming-interface" style="color:#48277C;" target="_blank" title="Application Programming Interface"><u>API</u></a>) specifications support CoF services for Card Based Payment Instrument Issuers (<a href="/glossarycollection/card-based-payment-instrument-issuer" style="color:#48277C;" target="_blank" title="Card Based Payment Instrument Issuer"><u>CBPII</u></a>. These services allow Payment Service Users (<a href="/glossarycollection/payment-service-user" style="color:#48277C;" target="_blank" title="Payment Service User"><u>PSU</u></a>) to provide explicit consent to an Account Servicing Payment Services Provider (<a href="/glossarycollection/account-servicing-payment-service-provider" style="color:#48277C;" target="_blank" title="Account Servicing Payment Services Provider"><u>ASPSP</u></a>) so that they can respond to confirmation of funds requests from CBPIIs limited to a Y/N. CBPIIs can subsequently submit confirmation of funds requests to the ASPSP provided that the PSU has also provided their explicit consent to the CBPII and has initiated a payment transaction with the payment instrument for the amount in question. This section describes how each of the Participants (CBPIIs and ASPSPs) in the delivery of these services can optimise the customer experience for these. Furthermore, it provides some clarifications to these participants on the usage of the APIs, which are not covered by the technical specifications and some best practice guidelines for implementation of the customer journeys.<br/><br/>
Please note that, unlike API journeys, the consent given to ASPSPs and CBPIIs can be “until further notice” and does not expire after 90 days. Thus, authentication does not need to occur after the initial set up for the specific CBPII has been completed. The consent to CBPIIs access will generally be ongoing or setup for a set period of time, after which PSUs will need to renew it."