Make Kitco Your Homepage

JPMorgan gives fintechs July deadline to sign new data deals: sources

Kitco News

WASHINGTON/NEW YORK (Reuters) - JPMorgan Chase & Co (JPM.N) has told financial technology companies that they will be barred from accessing its customer information by July 30 if they do not sign data access agreements with the bank and agree to a plan to stop using customer passwords to gather the data.

The largest U.S. bank by assets set the new deadline in a letter sent to the companies in late January, in which it also said they must agree a “concrete plan” to transition to a new method of collecting customer data, according to two people familiar with the matter.

Otherwise, JPMorgan will block all automated access to the data, including through so-called screenscraping, or the process of collecting data from one application to use it in another, the people said.

A JPMorgan spokesman confirmed the contents of the letter and said the company already has agreements with more than 95 percent of companies that request data access.

The deadline is the latest move in the bank’s effort to transition fintechs and data aggregators to what it has said is a more secure way of accessing customer data.

Fintech startups, such as those that offer budgeting apps or digital wealth management, usually connect to a user’s bank account to gather the necessary data to provide their services. Some gather the data through aggregators such as Visa Inc (V.N) -owned Plaid or Yodlee, while others request that customers provide their password.

Through JPMorgan’s new method, fintechs will not be able to use customers’ passwords to access their entire financial data, but will instead connect to a set of bank programming code known as an API, that grants access only to limited account information authorized by the consumer.

The transition comes as large banks and fintech companies globally tussle over data-sharing. Banks have said their wariness to grant access to third parties stems from a need to protect highly sensitive information, such as transaction history and income.

Fintechs have been skeptical, arguing that it should be up to consumers, not banks, to decide what companies can look at that information.

JPMorgan said earlier this year that it was preparing to crack down on the use of customer passwords for data-sharing purposes, and had been discussing another method to access information since 2016.

However, some startups said they were surprised by the stringent requirements and strict deadline in the letter, according to one fintech source.

“We’ve been working on this with aggregators and fintechs since 2016 because our secure API is the best way to help our customers make smart money decisions more easily and safely,” Paul LaRusso, managing director of digital platforms at Chase, said in a written statement to Reuters.

The bank said companies that have agreed to JPM’s terms would be able to continue accessing customer data using existing tools, provided they have a concrete plan in place to move to the new method and are making progress toward that goal.

“Customers can still use their favorite apps and websites while these companies migrate to our API,” LaRusso said.

Reporting by Pete Schroeder and Anna Irrera; Editing by Michelle Price and Daniel Wallis

Disclaimer: The views expressed in this article are those of the author and may not reflect those of Kitco Metals Inc. The author has made every effort to ensure accuracy of information provided; however, neither Kitco Metals Inc. nor the author can guarantee such accuracy. This article is strictly for informational purposes only. It is not a solicitation to make any exchange in commodities, securities or other financial instruments. Kitco Metals Inc. and the author of this article do not accept culpability for losses and/ or damages arising from the use of this publication.