Is Open Banking secure?

Yes. Open Banking operates using modern data protection mechanisms, encryption technologies, and Strong Customer Authentication (SCA).Access to accounts or payment initiation is possible only after your consent has been confirmed. All Open Banking participants must comply with the requirements of the National Bank of Ukraine and undergo the appropriate authorization procedures.

Who can access my data?

Access to account information may only be granted to third-party payment service providers (TPPs) that are properly authorized and included in the Register of Payment Infrastructure maintained by the National Bank of Ukraine.Data sharing is performed исключительно with your consent and only within the scope of permissions you approve.

Can I withdraw my consent?

Yes. You may withdraw your consent at any time in accordance with the functionality of the service or the bank’s digital channels.Once consent is withdrawn, access to account information or payment initiation services will be terminated.

What data can be accessed through Open Banking?

Depending on the consent you provide, a third-party payment service provider may access: account information; account balances; transaction history; or payment initiation services. The scope of access is always defined and approved by you during the consent confirmation process.

Is Open Banking a paid service?

Open Banking services for clients of JSC “CREDITWEST BANK” are provided free of charge.

Where can I check my active permissions?

Information about active consents will be available through the bank’s digital channels.

Creditwest Bank

Open Banking

A modern approach to financial management - secure access to accounts and payment services via open APIs.

*The service will be available soon

What is Open Banking?

Open Banking is a modern approach to providing financial services that allows bank customers to securely grant access to their accounts or initiate payments through the services of third-party payment providers (TPPs).

Data exchange is carried out:

exclusively with the customer’s consent;
via secure APIs;
in accordance with the Law of Ukraine “On Payment Services”;
in accordance with the requirements of the National Bank of Ukraine.

Legal Basis for Open Banking

Open Banking in Ukraine has been implemented in accordance with Ukrainian law and European standards governing payment services and the protection of users’ financial data.

The legal basis for the operation of Open Banking is the Law of Ukraine “On Payment Services,” which implements the provisions of the European PSD2 (Payment Services Directive 2) and establishes a regulatory framework for the development of modern financial services and the secure exchange of financial data via APIs.

The official launch of Open Banking in Ukraine took place on August 1, 2025, in accordance with the regulatory requirements of the National Bank of Ukraine.

Key Legal and Regulatory Bases

Law of Ukraine “On Payment Services”;
Resolution of the NBU Board No. 80 “On Approval of the Regulations on Open Banking in Ukraine”;
Open Banking Concept of the National Bank of Ukraine;
European PSD2 Directive (Payment Services Directive 2);
regulatory acts of the NBU in the field of payment services and information security.

What Open Banking Offers

Account aggregation

View accounts from different banks in a single app or service

Payment initiation

Pay for goods and services without having to switch between banking apps

A Comprehensive Financial Overview

Get up-to-date information on balances and transactions all in one place

Quick access to financial services

Take advantage of modern fintech solutions and digital services

Business Automation

Integrate accounting systems, ERP, and financial services via API

Access Control

Manage permissions and revoke access to data at any time

How does Open Banking work?

Step 1

You choose a service or app from a third-party payment provider (TPP)—for example, a financial app, payment platform, or expense tracking service that supports Open Banking.

Step 2

The service requests your permission to access account information, view your balance and transaction history, or initiate a payment from your account.

Step 3

To confirm your consent, you are automatically redirected to the secure environment of JSC “CREDITWEST BANK”, where you can review the details of the request.

Step 4

You complete the authentication process and confirm access using security measures and Strong Customer Authentication (SCA), independently determining the scope and duration of the permission granted.

Step 5

After confirming your consent, the service will have access strictly within the limits of the permissions you have granted and in accordance with legal requirements and Open Banking security standards. You can revoke access at any time.

Data Security and Control

Access Control

Only the customer decides:

who to grant access to;
which accounts;
and for how long.

The customer may revoke their consent at any time.

Data Protection

Data is transmitted via:

secure APIs;
state-of-the-art encryption methods;
OAuth2;
qualified security certificates.

Regulation and Oversight

All Open Banking participants:

are subject to verification;
hold the necessary permits;
are listed in the NBU’s Payment Infrastructure Register.

Open Banking Technology Operator

To facilitate interaction via specialized Open Banking APIs, JSC “CREDITWEST BANK” utilizes the solutions provided by the technology provider - PJSC “Ukrainian Processing Center” (UPC).

UPC facilitates technical interaction between the bank and third-party payment service providers (TPPs) in accordance with the requirements of the National Bank of Ukraine and Open Banking standards.

The solution is implemented using modern data protection and information security mechanisms and supports interaction via Open API to provide account access services and initiate payment transactions.

Information for Developers and Third-Party Providers

Available APIs

AIS (Account Information Service)

Provides access to information about user accounts, balances, and transaction history.

PIS (Payment Initiation Service)

Initiates payment transactions with the user’s consent.

Technical Capabilities

REST API
JSON
OAuth2
QWAC / QSealC
Sandbox environment
Swagger / OpenAPI documentation

Information Resources

Developer Portal
API Documentation
Sandbox
Service Availability Status

FAQ

What is Open Banking?
Open Banking is a modern approach to financial services that enables secure sharing of account information and payment initiation through third-party payment service providers (TPPs).
Data exchange is performed only with the customer’s consent through secure APIs in accordance with the requirements of the National Bank of Ukraine.
Is Open Banking secure?
Yes. Open Banking operates using modern data protection mechanisms, encryption technologies, and Strong Customer Authentication (SCA).
Access to accounts or payment initiation is possible only after your consent has been confirmed. All Open Banking participants must comply with the requirements of the National Bank of Ukraine and undergo the appropriate authorization procedures.
Who can access my data?
Access to account information may only be granted to third-party payment service providers (TPPs) that are properly authorized and included in the Register of Payment Infrastructure maintained by the National Bank of Ukraine.
Data sharing is performed исключительно with your consent and only within the scope of permissions you approve.
Can I withdraw my consent?
Yes. You may withdraw your consent at any time in accordance with the functionality of the service or the bank’s digital channels.
Once consent is withdrawn, access to account information or payment initiation services will be terminated.
What data can be accessed through Open Banking?
Depending on the consent you provide, a third-party payment service provider may access:
- account information;
- account balances;
- transaction history;
- or payment initiation services.
The scope of access is always defined and approved by you during the consent confirmation process.
Is Open Banking a paid service?
Open Banking services for clients of JSC “CREDITWEST BANK” are provided free of charge.
Where can I check my active permissions?
Information about active consents will be available through the bank’s digital channels.

Looking for tech support?

For questions regarding connection, testing, and interaction via Open Banking APIs, support for the Sandbox environment, or the operation of the developer portal, please contact the support team at the technology operator UPC.

UPC Support Email: ob@upc.ua

Our managers will help you

For more detailed advice on the service, please contact our managers by phone:

+38 (044) 365-00-07, +38 (044) 365-00-05

or at a branch of the Bank.