The Payments Association

MARCH 21, 2025

With consulting revenues soaring, choosing the right partner means defining objectives, setting scope, and avoiding solutions that miss the markor your watch. The market for consulting services continues to expand rapidly, with global revenues estimated between $100 billion and $200 billion in 2024.

Consulting 88

Consulting Adjustments Assessments Agreements 88

The Payments Association

FEBRUARY 14, 2025

The FCAs consultation closed in December 2024, with final rules expected in mid-2025. Although we must wait until the final policy proposals to determine the final rules, the FCAs consultation indicates that future regulatory scrutiny on safeguarding will be significantly more stringent than before.

Stablecoins 88

Stablecoins Payment APIs and Integration Regulatory Compliance Compliance 88

VISTA InfoSec

OCTOBER 21, 2024

ICT Risk Management The first pillar of the DORA ICT risk management implies that financial entities must implement strong risk management frameworks to identify, assess, and mitigate risks related to Information and Communication Technology (ICT). This is where VISTA InfoSec’s expert consulting and audit service comes into play.

Compliance 182

Compliance Third-Party Service Provider Risk Assessment Audit 182

Fintech Finance

APRIL 3, 2025

This will enable the PSR to assess the impact and effectiveness of these changes and help to shape decisions on future regulatory interventions, if any are necessary. This should reduce costs to acquirers. Better pricing governance to address the PSR’s concerns around the schemes’ pricing decisions. . What happens next?

Process 59

Process Consulting Visa Acquirers 59

The Payments Association

FEBRUARY 10, 2025

Businesses must proactively assess fraud risks, implement adequate procedures, leverage technology for fraud detection, and foster a culture of compliance to avoid regulatory penalties. Compliance requires proactive fraud risk assessment, the implementation of preventive procedures, and a culture of accountability. What’s next?

Crime 88

Crime Fraud Prevention Risk Assessment Due Diligence 88

VISTA InfoSec

MARCH 13, 2025

Regular monitoring and testing of networks: Performing routine security assessments. appeared first on Information Security Consulting Company - VISTA InfoSec. Implementing strong access control measures: Limiting access to cardholder data based on job responsibilities. The latest version PCI DSS v.4.0

PCI DSS 165

PCI DSS Data Breach Breach Compliance 165

The Payments Association

NOVEMBER 25, 2024

Their guidance urges banks to adopt a proportionate approach, assessing MSBs individually rather than applying blanket policies that exclude entire sectors. Banks continue to sever ties with MSBs like PFS without individualised assessments, often citing AML concerns or geopolitical risks associated with countries like Iran.

Risk 88

Risk Financial Crimes AML Financial Inclusion 88

Fintech Finance

NOVEMBER 26, 2024

The UK government is currently consulting on draft legislation to bring BNPL products under regulation, which is set to close on 29 November 2024. Craig Tebbutt added: “Change is on the horizon, with the UK government’s consultation on BNPL regulation set to close on none other than Black Friday.

BNPL 97

BNPL Regulations Consulting Consumer 97

VISTA InfoSec

NOVEMBER 4, 2024

This comprehensive assessment identifies any discrepancies between your existing frameworks and the regulatory standards, enabling you to pinpoint areas that require enhancement. This could be from risk assessments to incident response, by incorporating these practices into day-to-day workflows you strengthen your organizations resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

NOVEMBER 4, 2024

This comprehensive assessment identifies any discrepancies between your existing frameworks and the regulatory standards, enabling you to pinpoint areas that require enhancement. This could be from risk assessments to incident response, by incorporating these practices into day-to-day workflows you strengthen your organizations resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

NOVEMBER 4, 2024

This comprehensive assessment identifies any discrepancies between your existing frameworks and the regulatory standards, enabling you to pinpoint areas that require enhancement. This could be from risk assessments to incident response, by incorporating these practices into day-to-day workflows you strengthen your organizations resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

NOVEMBER 4, 2024

This comprehensive assessment identifies any discrepancies between your existing frameworks and the regulatory standards, enabling you to pinpoint areas that require enhancement. This could be from risk assessments to incident response, by incorporating these practices into day-to-day workflows you strengthen your organizations resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

SEPTEMBER 27, 2024

Providing advice on and monitoring the performance of impact assessments related to data protection. Proficiency in assessing and managing data protection risks, including conducting Data Protection Impact Assessments (DPIAs). An external DPO is where the function is outsourced to a third-party consultant or firm.

CCPA 130

CCPA Privacy Assessments Laws 130

The Fintech Times

DECEMBER 15, 2024

To ensure this doesn’t continue, it has proposed a consultation to price cap remedy to protect firms. Mastercard and Visa were not able to show that they undertook any specific assessment when deciding to increase their fees and the PSR has seen no evidence that the pre-increase fee levels were not working. What’s next?

Cross-Border 59

Cross-Border Caps Consulting Visa 59

Neopay

FEBRUARY 13, 2025

Instead, a consultation on the systems implementation will take place in April 2025. In April 2024, the PSR initially consulted on requiring PSPs to use Pay.UKs RCMS, outlining its potential benefits in enhancing transparency, standardisation, and compliance monitoring. What happens next?

Scams 52

Scams Consulting Rules Process 52

VISTA InfoSec

OCTOBER 7, 2024

ICT Risk Management The first pillar of the DORA ICT risk management implies that financial entities must implement strong risk management frameworks to identify, assess, and mitigate risks related to Information and Communication Technology (ICT). This is where VISTA InfoSecs expert consulting and audit service comes into play.

Compliance 130

Compliance Third-Party Service Provider Risk Assessment Audit 130

Neopay

MARCH 13, 2025

Businesses, particularly acquirers and merchants, struggle to navigate complex and incomplete fee structures, making it difficult to negotiate better deals or accurately assess the impact of these costs. As a result, they either absorb the increased fees or pass them on to consumers, affecting pricing, profitability, and investment potential.

Process 52

Process Visa Acquirers Assessments 52

Neopay

APRIL 25, 2024

The FCA are consulting on proposed changes to its Financial Crime Guide. Why the FCA are consulting The FCA are proposing updates to the Financial Crime Guide in relation to sanctions, proliferation financing and transaction monitoring. Your feedback will also instruct future updates to the Guide.

Financial Crimes 52

Financial Crimes Crime Consulting Money Laundering 52

The Payments Association

JANUARY 13, 2025

The Financial Conduct Authority (FCA) recently outlined significant changes to the safeguarding regime for payments and e-money firms in its consultation paper CP24/20. This is, after all, one of the purposes of such consultations (unless youre a total cynic): essentially, ''This is what we propose; what do you think?'

Compliance 88

Compliance Audit Legal Reconciliation 88

Finovate

FEBRUARY 10, 2025

It combines behavioral biometrics, behavioral analytics, advanced malware detection, and network and device assessment to provide active and preemptive defense against threats. The company also recently partnered with Nordic digital transformation consultancy Knowit. Founded in 2003, Backbase is headquartered in Amsterdam.

Financial Crimes 65

Financial Crimes Crime Fraud Prevention Account Takeovers 65

The Fintech Times

DECEMBER 13, 2023

e& enterprise has launched its ‘Sustainability Consultancy Programme’ in the UAE and the Kingdom of Saudi Arabia. Salvador Anglada, the CEO of e& enterprise “Our launch of the Sustainability Consultancy Programme is not just an initiative; it’s a commitment to a sustainable future.

Consulting 59

Consulting Regulatory Compliance Assessments Best Practices 59

Neopay

MARCH 15, 2024

HM Treasury has initiated an open consultation aimed at refining the Money Laundering Regulations (MLRs) to bolster their effectiveness while reducing burdens on legitimate customers. To read the Improving the effectiveness of the Money Laundering Regulations consultation document, click here.

Money Laundering 52

Money Laundering Consulting Treasury Regulations 52

Fi911

FEBRUARY 26, 2025

Requirements : Completion of a Self-Assessment Questionnaire (SAQ) and quarterly external scans. Regularly Test Security Systems and Processes : Conduct routine penetration tests and vulnerability assessments. Conduct a PCI-DSS Gap Assessment: Identify deficiencies in your security posture compared to PCI-DSS requirements.

PCI DSS 53

PCI DSS Compliance MFA Assessments 53

Global Fintech & Digital Assets

FEBRUARY 26, 2024

By Simon Hawkins and Adrian Fong On 7 February 2024, the Hong Kong Monetary Authority (HKMA) released a consultation paper on its proposal for implementing new regulations on the prudential treatment of cryptoasset exposures (Consultation Paper). The standard is scheduled to be implemented by member jurisdictions by 1 January 2025.

Consulting 52

Consulting Regulations Distributed Ledger Technology (DLT) Stablecoins 52

VISTA InfoSec

SEPTEMBER 30, 2024

Advising on Data Protection Obligations DPO is required to provide advice to the organization on how they should handle data in line with legal obligations, especially for processing activities and data protection impact assessments (DPIAs). You can also book a free one time consultation on our website today.

CCPA 130

CCPA Privacy Laws Data Breach 130

VISTA InfoSec

OCTOBER 21, 2024

Advising on Data Protection Obligations DPO is required to provide advice to the organization on how they should handle data in line with legal obligations, especially for processing activities and data protection impact assessments (DPIAs). 3.Data You can also book a free one time consultation on our website today.

CCPA 130

CCPA Privacy Laws Data Breach 130

Fintech News

OCTOBER 8, 2024

The Monetary Authority of Singapore (MAS) has released a consultation paper , inviting public feedback on its proposed regulatory framework for Digital Token Service Providers (DTSPs). The consultation paper outlines MAS’ proposed approach to licensing and regulating DTSPs.

Service Provider 103

Service Provider Due Diligence AML Money Laundering 103

FloQast

JANUARY 17, 2024

In May 2023, the Financial Reporting Council (FRC) published its consultation on the UK’s Corporate Governance Code. While the government has since delayed some Corporate Governance Code reforms, including the introduction of ARGA, the FRC has signalled its commitment to moving forward with other key proposals from the consultation.

Governance 102

Governance Government AAP Audit 102

VISTA InfoSec

MARCH 6, 2024

assessment, understanding these changes to Requirement 10 will help you strategize your implementation approach. Other Logs Review "periodically" based on the company's risk assessment Periodic review is still required but now explicitly mentioned in Requirement 10.4.2 Maintains the risk assessment step. assessment.

PCI DSS 130

PCI DSS Procedures Best Practices Risk Assessment 130

Fintech Finance

NOVEMBER 18, 2024

Financial services firms now have just one month to respond to a consultation proposing major regulatory changes to protect consumers, by bringing regulated payment firms under the CASS (Client Assets) system of managing customer funds.

Consulting 97

Consulting Payments Regulations Procedures 97

VISTA InfoSec

MARCH 5, 2024

Now is the time for organizations to re-evaluate their physical security strategies, conduct updated risk assessments, and refine their protection processes to align with these enhanced standards. certifications too right from scoping to Readiness Assessment, Advisory and Final Certification. We have completed multiple PCI DSS 4.0

PCI DSS 147

PCI DSS Procedures Assessments Checks 147

Fintech News

DECEMBER 6, 2023

This release, accompanied by a self-attestation checklist , marks the culmination of a public consultation process that spanned from June to August 2023. Detailed information about the CoC and the checklist, as well as MAS’ responses to the public consultation are available on MAS’ website.

Consulting 106

Consulting Authorization Governance Government 106

PYMNTS

OCTOBER 11, 2020

Ex- National Security Agency head Michael Rogers shared the assessment prior to appearing at an event FT is hosting. Rogers ran the NSA from 2014 to 2018 and now is a director at a consultancy called CyberCube that works with insurance companies. The hacking technique is called "spear fishing.".

Ransomware 116

Ransomware Assessments Consulting On-Demand 116

The Fintech Times

DECEMBER 19, 2023

Here Akshata Namjoshi, associate partner, and Ratul Roshan , senior associate, at legal consulting firm KARM Legal Consultants, explore the evolving regulatory landscape of BNPL services in the United Kingdom, Australia, Ireland, and the United Arab Emirates (UAE).

BNPL 113

BNPL Regulations Finance Consumer Protection 113

VISTA InfoSec

OCTOBER 11, 2023

In this process, you’ll come across key terms like PCI SAQ (Self-Assessment Questionnaire), AOC (Attestation of Compliance), and PCI ROC (Report on Compliance). Among other things, the AOC confirms that the merchant has completed a valid Report on Compliance (ROC) and Self-Assessment Questionnaire (SAQ). Let’s focus on the ROC for now.

PCI DSS 130

PCI DSS Audit Compliance Assessments 130

Stax

DECEMBER 12, 2024

Merchant service accounts and how they work Merchant service providers assess your credit history, business type, and expected transaction volume during application. service providers, consultants). It can also help minimize errors and risks of bounced checks. Once approved, you get access to your merchant account.

Small Business 88

Small Business Online and Mobile Banking Volume Checks 88

Fintech News

JANUARY 10, 2024

Lawrence Wong Wong’s statement said, “MAS will continue to work with financial institutions to assess additional measures for higher risk transactions, including those relating to transfers to overseas payees and access of bank accounts from overseas locations.

Accounts 106

Accounts Scams Phishing Payee 106