-(2).png&w=3840&q=75)
-(4).png&w=3840&q=75)
Legal Basis for Open Banking
Open Banking in Ukraine has been implemented in accordance with Ukrainian law and European standards governing payment services and the protection of users’ financial data.
The legal basis for the operation of Open Banking is the Law of Ukraine “On Payment Services,” which implements the provisions of the European PSD2 (Payment Services Directive 2) and establishes a regulatory framework for the development of modern financial services and the secure exchange of financial data via APIs.
The official launch of Open Banking in Ukraine took place on August 1, 2025, in accordance with the regulatory requirements of the National Bank of Ukraine.
Key Legal and Regulatory Bases
- Law of Ukraine “On Payment Services”;
- Resolution of the NBU Board No. 80 “On Approval of the Regulations on Open Banking in Ukraine”;
- Open Banking Concept of the National Bank of Ukraine;
- European PSD2 Directive (Payment Services Directive 2);
- regulatory acts of the NBU in the field of payment services and information security.
What Open Banking Offers
Account aggregation
View accounts from different banks in a single app or service
Payment initiation
Pay for goods and services without having to switch between banking apps
A Comprehensive Financial Overview
Get up-to-date information on balances and transactions all in one place
Quick access to financial services
Take advantage of modern fintech solutions and digital services
Business Automation
Integrate accounting systems, ERP, and financial services via API
Access Control
Manage permissions and revoke access to data at any time
How does Open Banking work?
Step 1
You choose a service or app from a third-party payment provider (TPP)—for example, a financial app, payment platform, or expense tracking service that supports Open Banking.
Step 2
The service requests your permission to access account information, view your balance and transaction history, or initiate a payment from your account.
Step 3
To confirm your consent, you are automatically redirected to the secure environment of JSC “CREDITWEST BANK”, where you can review the details of the request.
Step 4
You complete the authentication process and confirm access using security measures and Strong Customer Authentication (SCA), independently determining the scope and duration of the permission granted.
Step 5
After confirming your consent, the service will have access strictly within the limits of the permissions you have granted and in accordance with legal requirements and Open Banking security standards. You can revoke access at any time.
Data Security and Control
Access Control
Only the customer decides:
- who to grant access to;
- which accounts;
- and for how long.
The customer may revoke their consent at any time.
Data Protection
Data is transmitted via:
- secure APIs;
- state-of-the-art encryption methods;
- OAuth2;
- qualified security certificates.
Regulation and Oversight
All Open Banking participants:
- are subject to verification;
- hold the necessary permits;
- are listed in the NBU’s Payment Infrastructure Register.
-(5).png&w=3840&q=75)
Information for Developers and Third-Party Providers
Available APIs
AIS (Account Information Service)
Provides access to information about user accounts, balances, and transaction history.
PIS (Payment Initiation Service)
Initiates payment transactions with the user’s consent.
Technical Capabilities
- REST API
- JSON
- OAuth2
- QWAC / QSealC
- Sandbox environment
- Swagger / OpenAPI documentation
Information Resources
- Developer Portal
- API Documentation
- Sandbox
- Service Availability Status
FAQ
What is Open Banking?
Open Banking is a modern approach to financial services that enables secure sharing of account information and payment initiation through third-party payment service providers (TPPs).Data exchange is performed only with the customer’s consent through secure APIs in accordance with the requirements of the National Bank of Ukraine.Is Open Banking secure?
Yes. Open Banking operates using modern data protection mechanisms, encryption technologies, and Strong Customer Authentication (SCA).Access to accounts or payment initiation is possible only after your consent has been confirmed. All Open Banking participants must comply with the requirements of the National Bank of Ukraine and undergo the appropriate authorization procedures.Who can access my data?
Access to account information may only be granted to third-party payment service providers (TPPs) that are properly authorized and included in the Register of Payment Infrastructure maintained by the National Bank of Ukraine.Data sharing is performed исключительно with your consent and only within the scope of permissions you approve.Can I withdraw my consent?
Yes. You may withdraw your consent at any time in accordance with the functionality of the service or the bank’s digital channels.Once consent is withdrawn, access to account information or payment initiation services will be terminated.What data can be accessed through Open Banking?
Depending on the consent you provide, a third-party payment service provider may access:- account information;
- account balances;
- transaction history;
- or payment initiation services.
The scope of access is always defined and approved by you during the consent confirmation process.Is Open Banking a paid service?
Open Banking services for clients of JSC “CREDITWEST BANK” are provided free of charge.Where can I check my active permissions?
Information about active consents will be available through the bank’s digital channels.
-(7).png&w=3840&q=75)
Our managers will help you
For more detailed advice on the service, please contact our managers by phone:
+38 (044) 365-00-07, +38 (044) 365-00-05
or at a branch of the Bank.