Ask a question

What is Open Banking?

Open Banking is a mandatory change introduced by The Competition & Market Authority (CMA).

It is a secure way for you to share your information with Third Party Providers, as well as offering alternative payment methods. It will make it easier for companies to offer different and innovative services, while giving you more choice and more control over your money and financial information.

This will be achieved by banks and building societies making certain information accessible to other approved companies in a standardised, straightforward and secure way and only ever with your explicit consent. All companies will be approved by the Financial Conduct Authority.

Do I need to share my information/data/details?

No, the use of Open Banking is entirely down to you. You're in complete control; if you want to use Open Banking, you will be asked to provide explicit consent to a company accessing your data, choosing how long and what they can do with this data. These companies will only be able to access account information once you have provided your consent to them. If you decide not to take part in Open Banking and take no action, nothing will change.

When we receive a request from a third party, we will check our records to ensure we have a valid consent from you before sending data to them.

If you do opt to use the services of a Third Party Provider, it’s very important for you to read the Terms and Conditions of the service to understand exactly what information they’ll be accessing and how they’ll use that data.

Is sharing my information using Open Banking safe?

Yes - Everyone involved in Open Banking must comply with Data Protection Laws and will need to be approved by the Financial Conduct Authority.

Third parties are not permitted to take any action on any account without the explicit consent of the account holder. This is a binding legal requirement placed on authorised third parties. Your information is protected and encrypted to the same level of security as the Bank’s Anytime Internet Banking Banking.

Is sharing my information using Open Banking secure?

Yes, Open Banking has created software and security systems that give you the option to share your

Account information securely. Your data is encrypted and its usage is tracked; only companies regulated by the Financial Conduct Authority or other competent authorities can use it if you have provided your consent to them.

Who are the Third Party Providers?

A Third Party Provider could be any company who wants to offer you a service, and therefore needs your transaction history to do so. Third Party Providers are approved by the Financial Conduct Authority (FCA) before they can take part in Open Banking. All approved Third Parties will appear on the FCA Open Banking Directory.

We don't know which companies will apply to become an authorised third party provider, but these could be other big high street banks, newer smaller banks, or other companies that aren't banks but provide similar services e.g. credit reference agencies, and comparison websites. Major retailers are also on the current list, including Argos, John Lewis and Amazon.

How do I give my consent to third parties in Open Banking?

Once you’ve decided to use a third party, you'll be asked to give explicit consent to share your information with them. You'll give your consent on the third party's website; once given you will be redirected to your Anytime Internet Banking or Mobile App login page, where you’ll enter your login details directly. Only once authorised by you, and the Bank has checked the third party is authorised by the FCA, will we share your data securely. We'll store your consent and check it every time the third party requests access to your account. You'll be able to check your consents via your Anytime Internet Banking or Mobile App.

How do I sign up for Open Banking?

To use Open Banking you must be registered with Anytime Internet Banking. To sign up for Open Banking you’ll need to give initial consent via a third parties site. You’ll need to provide separate consents for every third party you use. These consents will expire after 90 days so you’ll need to renew these, if you wish consents to continue beyond this time.

I only have a credit card, can I still use Open Banking?

Yes, you can choose to share your credit card information; however, you must be registered for Anytime Internet Banking to do this.

I don't want to use Open Banking.

That’s fine; you do not need to do anything. Without your explicit consent, third parties will not be able to access any of your account information. 

How do I stop sharing my information in Open Banking?

To stop sharing your information, you will be required to withdraw your consent for each third party you want to stop sharing your information with.

You can withdraw your consent either by going to the third parties website and revoking consent there, or by accessing your consent preferences via Anytime Internet Banking or mobile banking app and revoking each consent.

How do I access my consent preferences in Anytime Internet Banking?

Sign into your Anytime Internet Banking as you would normally and select the Security tab from the menu on the left hand side. In the security page, in the first box (Change login and access details), click on the text “find out how to view or change your consent preferences”. You’ll then be taken to the sign on page where you will be prompted to enter your customer number, allowing you to access your consents.

Within the consent portal you be able to see all third parties with a consent, clicking on each one will allow you to view more details and cancel consent if desired.

How do I access my consent preferences in my mobile app?

Sign into your mobile app as you would normally. To manage your open banking consents on mobile banking, first tap on the profile icon Next tap on "Settings" followed by, "Manage permissions"... then enter your customer number as prompted You will then be able to see all third parties with a consent, clicking on each one will allow you to view more details and cancel consent if desired

I can’t access my consent preferences as I’ve forgot my Customer Number, what do I do?

If you’ve forgotten your Customer Number, you can go back to your Anytime Internet Banking account summary page where the details are held. The last four digits are displayed and your date of birth (ddmmyy) is masked. Alternatively if you are in the mobile app, then, it's in the 'More' tab, tap 'Need Help' and then 'My customer number'.

How do I revoke a consent I have given to a Third party in Open Banking?

You can revoke your consent either by going to the third party’s website and revoking consent there, or by accessing consent preferences via your online or mobile banking app and revoking each consent.

Is there a limit to the amount that can be made in a payment using Open Banking?

There is a £20,000 payment limit through Open Banking. If the payment is to a new payee you will require your card reader to authorise the payment.

Who do I contact if I suspect Fraud?

If you suspect Fraud, please contact us on 0800 051 9010 (Overseas +44 126 850822)

How do I make a complaint?

We are sorry you feel the need to complain. You can tell us what went wrong here (opens in a new window)

Why do I keep getting sent back to the Third Party Provider (TPP)?

In this instance, there may be a number of reasons why your request to aggregate your accounts or make a payment with a Third Party Provider (TPP) may have not completed and the page keeps being redirected to the Third Party Provider (TPP). This may be due to an issue with the Third Party Provider (TPP) or the connection between the bank and the Third Party Provider (TPP).

We would recommend that you log in to Anytime Internet Banking before attempting to connect with the Third Party Provider (TPP) to ensure that the details being entered are correct and to prevent locking yourself out of the account.

If you continue to experience problems logging in, then please chat to Cora, your digital assistant.

Have you met Cora, your digital assistant?
Cora can help you with a wide range of queries, including this one.

Ask Cora

Why do I need a one time passcode?

For extra security, we may ask you for a one time passcode to make sure it’s you logging into Anytime Internet Banking, via Open Banking. This mirrors the introduction of One Time Passcodes being required for Anytime Internet Banking earlier this year.

If we have your mobile number, you'll get a text with a one time passcode. If you don't, but have a card reader you can also use this, but we recommend you update your mobile number so you don't need your card reader and card to access Anytime Internet Banking.

If the number we have for you isn't correct, please see How do I update my email address or mobile number? on how to update it.

Lost your card reader? You can order a new one in Anytime Internet Banking, and it will arrive in 5-7 working days.

What is Strong Customer Authentication (SCA)?

Strong Customer Authentication (SCA) is part of the Payment Services Directive 2. It is made up several different initiatives to ensure that we continue to keep you safe and secure when you are using Anytime Internet Banking, the mobile app, making online debit and credit card payments and using Contactless.

One of these initiatives is the widespread use of two-factor authentication. These factors must be a combination of the following:

  • something you own (possession)
  • something you are (inherence)
  • something you know (knowledge)

So, for example, when you log onto Anytime Internet Banking, we could ask you for your password (knowledge) and either to use your card reader (possession) or receive an OTP to your mobile phone (possession)