PRODUCTS
PSD2 and Open Banking, certified solutions ready for Instant Payments
QWAC and QSEAL for the new European instant payments ecosystem, Verification of Payee (VoP), and Open Banking
What is a PSD2 Compliance Certificate
The Payment Services Directive (PSD2) was introduced with the regulatory objective of enabling the development and consolidation of payment initiation and aggregation services, within a framework that ensures consumers receive adequate protection for both their payments and the account information associated with them.
Under the Regulatory Technical Standards (RTS), the use of qualified certificates in accordance with eIDAS is mandatory.
QWAC and QSEAL: The Technical Foundation of European Open Banking
Two qualified certificates compliant with the ETSI TS 119 495 standard, which are essential for operating within the PSD2 ecosystem
QWAC PSD2
Qualified Website Authentication Certificate
TLS/mTLS authentication between financial institutions and payment service providers. Ensures qualified identity in the Open Banking channel.
mTLS PSP ↔ ASPSP
Secure access to XS2A
QSEAL PSD2
TLS/mTLS authentication between financial institutions and payment service providers. Ensures qualified identity in the Open Banking channel.
Signing JSON/XML payloads
SEPA Payment Integrity
Regulatory traceabilityTrazabilidad regulatoria
New European Regulation
The PSD2 ecosystem is evolving toward Instant Payments
The European Union is accelerating the transition to SEPA Instant Payments, strengthening fraud prevention and banking interoperability.
Transfers settled in less than 10 seconds, 24/7/365.
Mandatory beneficiary validation before executing the payment.
Common framework for banks, PSPs, and fintechs across the EU.
Regulatory Roadmap
UE
1
APIs Open Banking, QWAC y QSEAL
SEPA Instant Payments mandatory for EU PSPs
3
Prior validation of the payee
4
Verification of Payee
Verification of the payee before processing the payment
TLS/mTLS authentication between financial institutions and payment service providers. Ensures qualified identity in the Open Banking channel.
Bank
Request verification
VoP validation
IBAN ↔ Beneficiary match
Checkout < 10s
Fraud Reduction
Fewer Operational Errors
Detects inconsistencies between name and account number
Regulatory Compliance
Aligned with the new EU Instant Payments Regulation
User Trust
The payer verifies the recipient’s identity in real time
Interoperability
Compatible with pan-European schemes such as SEPA VoP
Full audit trail
Traceability certified by QSEAL for each validation.
Use Cases
Designed for the new European financial ecosystem
A single qualified certification infrastructure for all PSD2 and Open Finance flows.
Secure access to XS2A and AISP/PISP interfaces
European QTSP with experience in PSD2 infrastructure
Over two decades of issuing qualified digital identities in compliance with European regulations.
European Qualified Trust Service Provider (QTSP)
Proven expertise in issuing PSD2 certificates
Infrastructure ready for Instant Payments and VoP
Compliance with eIDAS, ETSI TS 119 495, and ETSI EN 319 411
Specialized technical support for Open Banking
Fast and auditable issuance processes
Certificates recognized in all 27 Member States of the European Union
Regulatory Compliance Guarantee
Qualified Trust Services Provider
With over 20 years of experience delivering certification services and developing software, ANF AC offers 100% eIDAS-accredited services.
Our organization and services are independently audited every year by CAB eIDAS auditors. We take full responsibility for our professional practice with our clients and partners.
International interoperability and legal effectiveness to meet the most demanding compliance standards.
Classic PSD2 vs. the New Instant Payments Ecosystem
What Changes for Banks, PSPs, and Fintechs Under the New Regulatory Framework
Features
Classic PSD2
New Instant Payments Ecosystem
APIs Open Banking
Instant payments
Limited
Verification of Payee
–
Beneficiary validation
–
New regulatory roles
Basic
Expanded
We answer your questions about PSD2 and Instant Payments
What is an electronic certificate used for?
What is an electronic signature?
QWAC is used to authenticate identity on TLS/mTLS channels, while QSEAL is used to electronically seal messages, ensuring their integrity and authenticity.
Will the government accept ANF AC certificates?
It is a mechanism that verifies that the payee specified in a transfer is the same as the actual owner of the recipient account before the payment is processed.
How long are certificates issued by ANF AC valid?
La normativa europea exige que los PSPs ofrezcan servicios de verificación del beneficiario en operaciones de pago instantáneo SEPA.
How many certificates can I have in my name?
Banks, payment service providers (PSPs), fintech companies, aggregators, Open Banking integrators, payment platforms, and service providers regulated under PSD2.
Are all certificates the same?
Yes. They form the technical basis for qualified identity required to access PSD2 APIs (XS2A) and AISP, PISP, and CBPII services.
How can I tell if a qualified certificate is fake, genuine, or valid?
It is a two-way TLS authentication mechanism in which both the client and the server present certificates, commonly used in communications between financial institutions.
Can I use my certificate with all government agencies?
Yes, ANF AC is a Qualified Trust Service Provider in Europe, supervised in accordance with the eIDAS Regulation.
Los precios mostrados no incluyen IVA
Do you have any questions?
We're here to help
ANF AC necesita la información de contacto que nos proporcionas para ponernos en contacto contigo acerca de nuestros productos y servicios. Puedes darte de baja de estas comunicaciones en cualquier momento. Para obtener información sobre cómo darte de baja, así como nuestras prácticas de privacidad y el compromiso de proteger tu privacidad, consulta nuestra Política de privacidad.