The aggregation of financial data has become a great business for some companies in the fintech market, that collect and store bank data: information on accounts, transactions, credit-card operations, loans, investments... These companies' APIs give entities access to new markets and new customers and there are many practical reasons why the aggregation of financial data is a formula for generating benefits, largely because it is useful for customers that have a diversified investment portfolio.
The aggregation of financial data has become a great business for some companies in the fintech market. The idea is simple: all the personal and banking data of a customer is available in a single space, which makes it much easier to consult information and operations of all kinds. These great volumes of data, grouped together into a kind of single portfolio, can serve as a launch pad for companies and banks to generate income.
There are many practical reasons why the aggregation of financial data is a formula for generating benefits, largely because it is useful for customers (whether individuals or companies) that have a diversified investment portfolio:
● It provides a general overview: when you have an extensive investment portfolio it can become difficult to get a comprehensive idea of your own financial situation, unless the whole picture is available in a single space. This gives a comprehensive vision and has advantages for management.
● It provides real knowledge of investment and consumption habits: the aggregation of financial data brings gives customers a more accurate knowledge of how they invest and manage their money. It includes all the movements of their accounts and the final destination of their money. In allows them to manage their expenses better.
● Control of cash assets: some entities facilitate financial products for their customers dedicated exclusively to savings. Aggregation of banking data increases the control people have over the portfolio dedicated to saving this cash.
● Process automation: when fintech data aggregation companies act as suppliers, they supply data in real time that are as up to date as possible. They do mechanical work and facilitate the analysis.
Banking data aggregators: APIs
There are three key elements that any bank data aggregation product or service must provide: information must be updated as precise as possible, operating in real time is key when we talk of monitoring financial data and managing investment portfolios; second, data aggregation makes sense if each provider brings together a broad list of entities; and third, a correct management of customer credentials.
As of today there are various banking data aggregators with application programming interfaces that are very well known by banks and by their development teams and operations: Eurobits Technologies, Yodlee, Plaid and Kontomatik are four particularly interesting examples in this sector.
● Eurobits Technologies: has a RESTful API that works under request-response model (it also has a SOAP API) in a robust and scalable way that it uses JSON Web Tokens (RFC 7519). Additionally, it has the following characteristics:
● Support for multiple login mechanisms, including authentication in 2 factors or through a second channel (OTP, Captcha etc).
● High security: TLS Protocol with Preventive Security Protection Encryption data and VPN option. Client implementations have been certified ISO 27001.
● High performance: high concurrency environment without “Single Point of Failure”.
● Unique feature: A pure Gateway, Eurobits does not store end user data for further processing.
● Evolutionary Design: Continuous iterative development, compatible with PSD 2.
Through the Eurobits aggregation platform it is possible to access all the content available in electronic banking, such as account information, deposits, investment funds, pension plans, etc. Not only for banking consumption, but also business banking. In turn, this platform offers access to information from the portals of users of companies of light, water or telecommunications, such as invoices, user data, consumptions, etc.
● Yodlee: has a RESTful API and a SOAP API, which gives access to the financial data of thousands of financial institutions or international sources of banking data (a total of 14,500) in the JSON and XML format. The development teams may program products in a number of languages: Java, C#, Ruby, PHP and also Python. The API offers authentication features; user registration (start of the session as customer); receipt of information related to the provider’s platform; management and elimination of accounts; transfers and access to information; invoices; cards; investments; loans…
The security of the Yodlee API is based on standard processes such as HTTPS. All the information and customer data can always be encrypted with account credentials and in a Public Key Infrastructure (PKI) in the higher part to shield the credentials. The API offers token-based access to prevent possible infringement and thus avoid problems with other customers.
They themselves highlight that “The intuitive API architecture, reduced code requirements, and simplified data model make it easy to integrate with our platform and speed your innovation to market.” Yodlee’s aim is to facilitate an application programming interface that allows the development of products and services for the management of financial information, planning of portfolios, advice, development of applications that give customers savings plans and costs…
● Plaid: it is a platform that offers fundamentally two services, aggregation of bank transactions and management of financial movements. Plaid collects and stores large volumes of high quality real-time bank and financial data. This is a complex job because there are hundreds of entities and millions of customers who carry out transactions every day. In addition, it has a simple integration platform for creating products and services thanks to its API.
The quickest way of beginning to work with Plaid is Plaid Link, a module with which customers can start the process of delivering credentials, authentication, award of the access token to develop the API and solution of possible errors. The API is an API REST based on HTTP calls whose responses are sent in JSON format. Security is based on the standard HTTPS protocol. Customers open an account in Plaid, and immediately receive a customer ID, a public key and a secret key to begin to operate with the interface.
● Kontomatik: this platform allows banks to create products and services for their customers with a more elegant and practical result. Services related to bank data aggregation, transaction information, data treatment and data analysis. Basically, what Kontomatik offers banks is access to data on activity and consumption of financial products by third-party customers, who operate with other organizations. Possible attraction of customers. Largely because the Kontomatik API is read-only for banks.
The platform allows the integration of a widget in HTML5 in any website, where bank users can access and operate with their entities. They select the country and entity and then login. This widget functions with all types of authentication processes: codes sent via text messages, CAPTCHAs, tokens or masked passwords. It also supports any form of invalid credentials, among them blocked accounts or session timeouts.
Open finance is expected to be regulated over the next few years, leading to a new open data ecosystem Open finance is making its way into the legal system through the consolidation of several initiatives that will lend it legal protection. Once this is complete, customers will have an open finance framework that protects their data […]
APIs have enormous potential for automating administrative processes and simplifying internal management Automating administrative processes becomes easier as APIs evolve and allow more and more integration both internally (private API) and externally (public). What can an API do for internal management? Can it eliminate some of the bureaucracy? Companies cannot function without their administrative tasks– […]
Ecommerce has continued to grow steadily in Spain, except during the pandemic, which has already been overcome in terms of online shopping. Ecommerce has been making inroads among the Spanish for over two decades. In 2000, it was a marginal and niche activity. Now it is almost universal. Almost all Spaniards with internet access shop online […]
Please, if you can't find it, check your spam folder
×
The email message with your ebook is on the way
We have sent you two messages. One with the requested ebook and one to confirm your email address and start receiving the newsletter and/or other commercial communications from BBVA API_Market
×
PROCESSING OF PERSONAL DATA
Who is the Data Controller of your personal data?
Banco Bilbao Vizcaya Argentaria, S.A. (“BBVA“) with registered address at Plaza de San Nicolás 4, 48005, Bilbao, España and Tax ID number A-48265169 . Email address: contact.bbvaapimarket@bbva.com
What for and why does BBVA use your personal data for?
For those activities among the following for which you give your consent by checking the corresponding box:
to receive newsletter from BBVA API_Market through electronic means;
to send you commercial communications, events and surveys relating to BBVA API_Market to the e-mail address you have provided.
For how long we will keep your data?
We will keep your data until you unsubscribe from receiving our newsletter or, if applicable, the commercial communications, events and surveys to which you have subscribed. Whether you unsubscribe or whether BBVA decides to end the service, your details will be deleted.
How can I unsubscribe to stop receiving newsletters and/or communications from BBVA API_Market?
You can unsubscribe at any time and without need to indicate any justification, by sending an email to the following address: contact.bbvaapimarket@bbva.com
To whom will we communicate your data?
We will not transfer your personal data to third parties, unless it is mandatory by a law or if you have previously agreed to do so.
What are your rights when you provide us with your information?
You will be able to consult your personal data included in BBVA files (access right)
You can modify your personal data when they are inaccurate (correction right)
You may request that your personal data not be processed (opposition right)
You may request your personal data be deleted (suppression right)
You can request a limitation on the processing of your data in the allowed cases (right of limitation of processing)
You will be able to receive, in electronic format, the personal data you have provided to us, as well as to transmit them to another entity (portability right)
You are responsible for the accuracy of the personal data you provide to BBVA and to keep them duly updated. If you believe that we have not processed your personal data in accordance with regulations, you can contact the Data Protection Officer of BBVA at the following address dpogrupobbva@bbva.com.
You can find more information in the “Personal Data Protection Policy” document on this website.
×
PROCESSING OF PERSONAL DATA
Who is the Data Controller of your personal data? Banco Bilbao Vizcaya Argentaria, S.A (“BBVA“), with registered address at Plaza de San Nicolás 4, 48005, Bilbao, España, and Tax ID No. A-48265169. Email address:contact.bbvaapimarket@bbva.com
What for and why does BBVA use your personal data for?
For the execution and management of your request, specifically, download the requested e-book/s.
BBVA informs you that, unless you indicate your opposition by sending an email to the following address: contact.bbvaapimarket@bbva.com, BBVA may send you commercial communications, surveys and events related to products and/or services of BBVA API Market through electronic means.
For how long we will keep your data?
We will keep your data as long as necessary for the management of your request, and to receive commercial communications, events and surveys. BBVA will keep your data until you unsubscribe to stop receiving our newsletters or, where appropriate, until the end of the service. Afterwards, we will destroy your data.
How can I unsubscribe to stop receiving newsletters and/or communications from BBVA API Market?
You can unsubscribe at any time and without need to indicate any justification, by sending an email to the following address: contact.bbvaapimarket@bbva.com
To whom will we communicate your data?
We will not transfer your personal data to third parties, unless it is mandatory by a law or if you have previously agreed to do so.
What are your rights when you provide us with your information?
You will be able to consult your personal data included in BBVA files (access right)
You can modify your personal data when they are inaccurate (correction right)
You may request that your personal data not be processed (opposition right)
You may request your personal data be deleted (suppression right)
You can request a limitation on the processing of your data in the allowed cases (right of limitation of processing)
You will be able to receive, in electronic format, the personal data you have provided to us, as well as to transmit them to another entity (portability right)
You can exercise before BBVA the aforementioned rights through the following address: contact.bbvaapimarket@bbva.com
You are responsible for the accuracy of the personal data you provide to BBVA and to keep them duly updated.
If you believe that we have not processed your personal data in accordance with the regulations, you can contact the Data Protection Officer at the following address: dpogrupobbva@bbva.com
You can find more information in the “Personal Data Protection Policy” document on this website.
We use our own and third-party cookies for analytics purposes and measurement of our website, to offer better functionality and personalization, as well as to show you advertising related to your preferences according to profiling based on your browsing habits. Check the Cookies Policy here for more information. By clicking "Accept", you accept that all cookies are saved in your device, or you can set up your preferred configuration or reject their use by clicking on "Cookie settings".
Cookie settings panel
These are the advanced settings for first-party and third-party cookies. Here you can change the parameters that will affect your browsing experience on this website.
Technical Cookies (required)
These cookies are used to give you secure access to areas with personal information and to identify you when you log in.
Name
Owner
Duration
Description
gobp.lang
BBVA
1 month
Language preference
aceptarCookies
BBVA
1 year
Configuration Accepted Cookies
_abck
BBVA
1 year
Helps protect against malicious website attacks
bm_sz
BBVA
4 hours
Helps protect against malicious website attacks
ADRUM_BTs
Salesforce Marketing Cloud
Session
Required for monitoring of the service, inherent to SFMC
ADRUM_BT1
Salesforce Marketing Cloud
Session
Required for monitoring of the service, inherent to SFMC
ADRUM_BTa
Salesforce Marketing Cloud
Session
Required for monitoring of the service, inherent to SFMC
ADRUM_BT
Salesforce Marketing Cloud
Session
Required for monitoring of the service, inherent to SFMC
xt_0d95e
Salesforce Marketing Cloud
Session
Remember user preferences (if any)
__s9744cdb192d044faa1bf201d29fafd1e
Salesforce Marketing Cloud
Session
Remember user preferences (if any)
wpml_browser_redirect_test
WPML
Session
Text translation in the portal
wp-wpml_current_language
WPML
24 hours
Text translation in the portal
They are used to track the activity or number of visits anonymously. Thanks to them we can constantly improve your browsing experience
Your browsing experience is constantly improving.
With your selection, we cannot offer you a continuously improved browsing experience.
Name
Owner
Duration
Description
AMCV_***
Adobe Analytics
Session
Unique Visitor IDs used in Cloud Marketing solutions
AMCVS_***
Adobe Analytics
2 years
Unique Visitor IDs used in Cloud Marketing solutions
demdex (safari)
Adobe Analytics
180 days
Create and store unique and persistent identifiers
sessionID
Adobe Analytics
Session
Launch's internal cookie used to identify the user
gpv_URL
Adobe Analytics
Session
Adobe Analytics plugin: getPreviousValue Capture the value of a certain variable in the following page view, in this case the prop1
gpv_level1
Adobe Analytics
Session
Cookie used to store the DataLayer levl1 of the previous page.
gpv_pageIntent
Adobe Analytics
Session
Cookie used to store the pageIntent of the previous page.
gpv_pageName
Adobe Analytics
Session
Cookie used to store the pagename of the previous page.
aocs
Adobe Analytics
Session
Cookie that stores the first values collected at the beginning of a process.
TTC
Adobe Analytics
Session
Cookie used to store the time between the App Page Visit event and the App Completed event.
TTCL
Adobe Analytics
Session
Cookie used to store the time between the LogIn event and App Completed.
s_cc
Adobe Analytics
Session
Determine if cookies are active
s_hc
Adobe Analytics
Session
Cookie used by Adobe for analytical purposes
s_ht
Adobe Analytics
Session
Cookie used by Adobe for analytical purposes
s_nr
Adobe Analytics
2 years
Determine the number of user visits
s_ppv
Adobe Analytics
Permanent
Adobe Analytics plugin: getPercentPageViewed Determine what percentage of the page a user views
s_sq
Adobe Analytics
Session
ClickMap/ActivityMap features
s_tp
Adobe Analytics
Session
Cookie used by Adobe for analytical purposes
s_visit
Adobe Analytics
2 years
Cookie used by Adobe to know when a session has been started.
They allow the advertising shown to you to be customized and relevant to you. Thanks to these cookies, you will not see ads that you are not interested in.
The advertising is customized to you and your preferences.
Your choice means you will not see customized ads, only generic ones.
Name
Owner
Duration
Description
OT2
VersaTag
90 days
VersaTag Cookie used to store a user id and the number of user visits.
u2
VersaTag
90 days
VersaTag Cookie where the user ID is stored
TargetingInfo 2
MediaMind
1 year
Cookie that serves to assign a unique random number that generates MediaMind.
These cookies are related to general features such as the browser you use.
Your experience and content have been customized.
With your selection, we cannot offer you a continuously improved browsing experience.
Name
Owner
Duration
Description
mbox
Adobe Target
9 days
Cookie used by Adobe Target to test user experience customization.