Arbuthnot Latham & Co., Limited

OB Standards

Implement Open Data v2.2	N/A	Not Implemented
Implement Read/Write API Specification v3.1	06 Jun 2019	Initially just /Accounts /Balances /Transactions
Implement Customer Experience Guidelines v1.1		TBC
Implement App-to-App Redirection		TBC
Implement OB Security Profile Implementer's Draft v1.1.2		TBC
Implement FAPI Profile Implementers Draft 2		TBC
Implement CIBA Profile Implementers Draft 1	N/A	Not Implemented
Implement Dynamic Client Registration v1.1	N/A	Not Implemented
Implement Dynamic Client Registration v3.1		TBC
Decommission Read/Write API Specification v1.x/2.x	N/A	Not Implemented
Decommission OB Security Profile Implementer's Draft v1.x	N/A	Not Implemented
Article 10 SCA Exemption (for 90 days)		Resources covered (delete as appropriate): Accounts, Balances, Transactions, Beneficiaries, Direct Debits, Standing Orders, Products, Offers, Parties, Scheduled Payments, Statements

Method of Identification

Commence support for eIDAS QWAC certificates
Commence support for eIDAS QSEAL certificates
Commence support for OBIE QWAC-like certificates
Commence support for OBIE QSEAL-like certificates
Cease support for OBIE non eIDAS-like certificates for transport
Cease support for OBIE non eIDAS-like certificates for signing
Support for MTLS token endpoint authentication
Support for private_key_jwt token endpoint authentication
Cease support for client id and client secret token endpoint authentication

Implementation

Directory?	Open Banking
Location of Well Known Endpoints?	OB Technical Directory
API Standard Implemented?	Open Banking
Name of Account Holder Implementation Date?
Supported identification method?	MTLS, OB Certificates
Major Milestones	14 Sep 2019	(Inc Other Products, API Updates, API Deprecations, etc)
FAPI Compliant?	TBC
CIBA	No
Using Open Banking as your eIDAS Trust Framework?	TBC
Are you caching the Directory?	No
Transaction IDs

Customer Journey

Implementing Customer Experience Guidelines?	Yes
Implementing Bespoke User Journeys?	No
Implementing App to App?	No
App to App Implementation Date?	N/A
Options on 90 day re-authentication?	90 day Re-authentication
Support Embedded Flow?	No

PSD2

Dispute Management System?	Yes
FCA Adjustment Period - Maintaining Screen Scraping?
Seeking Fallback Exemption?	Yes
Adjusted or Fallback Interface?	No
Adjusted or Fallback URL?	N/A
Contact Email or Phone Number?	TPPsupport@arbuthnot.co.uk	Please use this contact for any queries, issues or support requests.
Dev Portal URL?	https://www.arbuthnotlatham.co.uk/developers/
Test Facility Implementation Date?	02 May 2019
Production Interface Implementation Date?	06 Jun 2019	14 Sep 2019 With additional conditional endpoints
Authentication Method - Open Banking Channel (Browser)?	OTP
Authentication Method - Open Banking Channel (APP)?	Biometric or PIN and Registered device
Authentication Method - Private Channel (Browser)?	OTP
Authentication Method - Private Channel (APP)?	Biometric or PIN and Registered device
Authentication Method Implementation Date (Open Banking Channel)?	Live
Authentication Method Implementation Date (Private Channel)?	Live
SCA Implementation Date?	14 Sep 2019
SCA Scope? (will it inhibit non PSD2 accounts)	No	SCA will only apply to PSD2 accounts as non-PSD2 accounts won’t be accessible via the OB channel.