From the past few years, there has been an increase in the number of sectors like Travel, Retail, SAAS, etc expanding themselves into financial services.

Well, Banking and Fintech is a collaboration that is still very new in the Indian economy. The new normal has definitely shaken up the world and it has impacted the traditional banking system. From visiting a branch to opening an account online has been a major revamp in the industry – to be honest, this is just the start.

New Fintechs every day are disrupting the old traditional ways of banking and challenging our generation to think something out of the box now and then.

BaaS is a vast topic and the meaning of this is changing as per the ask of the end customer every day. Let’s try addressing the details one by one.

What is BaaS? 

In layman’s terms – BaaS is a process that allows fintechs and third parties to connect with banks via APIs. From opening an account to creating FD’s, etc everything can be done with the help of BaaS. 

Offering these services to an end customer is not so easy and requires a lot more regulatory processes to be in place. For eg: issuing prepaid cards – requires PPI license, giving credit to customers – requires NBFC license, and so on and so forth.

How does this work?

Banks obviously have licenses to offer various services, so they expose their systems to BaaS providers and these providers in return pay to banks for using their services. BaaS will allow businesses to fit the financial technologies and then the businesses will provide new solutions to end customers as per their needs and requirements.

Generally, the BaaS model begins with Fintechs, banks or Third party Providers paying fees to the BaaS platform. The financial institutions will open up their APIs to TPPs, thereby giving permission to access the systems and information required to build new banking products or offer white label banking services. 

Let’s understand how this is different from old traditional ways of banking

In today’s era, opening an account is just a matter of a few minutes compared to the days where opening a bank account required walking to the branch. 

Today, if someone has to send money to their children/relatives sitting abroad – trust me, it’s not a task anymore. Of course, this requires the regulatory practices to be in place, however, there are fintechs who are supporting this while simultaneously abiding by the regulatory guidelines.

To change the entire structure in the back end and front end for banks is not an easy task and requires a lot of investment. In this case, the banks approach BaaS or Tech service providers to plug in the system and provide end-to-end services to the customer. 

Future of BaaS

Everyday the financial industry is coming across a new development, the landscape is changing rapidly. Banks, Fintechs and businesses are coming across new requirements frequently. Reaching out to new segments of customers and solving a problem statement is also a new revenue stream for the banks as well as fintechs. 

Banks teaming up with the service providers and reaching out to end customers for providing innovative solutions is much required. APIs and applications play a major role in bringing these changes and need to be developed in a responsible way to provide long-term efficiency and scalability.

The credit card industry has achieved an unprecedented 50% growth in the last 3 years, thanks to the utilisation of co-branded cards. Large traditional banks and fintech businesses are aiming to cultivate stronger brand loyalty, increase brand visibility, and drive revenue growth by deploying more credit cards in the market. In addition to this, credit card issuers want access to a captive audience that the businesses have, in order to cross-sell other banking products.

Earlier, launching a credit card program took banks & businesses several quarters or sometimes even years. But, today, we live in a simpler, faster, super-modular world. Fintechs have changed the financial services landscape beyond recognition. With the rise of open banking, the credit-card stack is available for businesses and banks in an easy-to-integrate, plug-and-play fashion. In this article, we take a closer look at credit card-as-a-service.

What is Credit-card-as-a-Service?

Credit cards in India can be issued solely by Regulated Entities, which in most cases are Scheduled Commercial Banks (SCB) and rarely Regional Rural Banks through their sponsor SCBs or NBFCs with explicit approval from the regulator. Credit-card-as-a-service can be of the following types:

As Technology Service Provider (TSP) to Banks: To bolster the regulated entities’ tech capabilities for card issuance and management, the banks tend to outsource such services to technology service providers specialising in products like credit cards.

Co-Branding Integration: Partner Businesses can issue personalised co-branded cards to their customers by integrating with a Credit-card-as-a-service provider, which in turn does all the requisite plumbing with the issuing entity and the card networks. The role of the co-branding business partner in this transaction will be limited to that of a marketer/distributor.

Inside the Machine.

A credit-card-as-a-service provider takes care of the following modules, depending upon whether the card being issued is a secured or an unsecured one so that you can focus on your topline and bottomline.

Application Processing & Onboarding: The process of enrolling and setting up a new customer account with the credit card issuer.

Card Personalisation and Issuance: Customising and producing physical credit cards with personalised details for approved applicants.

Card Activation: Enabling the functionality of a newly issued credit card for the cardholder to start using it.

Card Replacement / Hot-listing / Renewal: Handling requests for replacing lost, stolen, or damaged credit cards, blocking cards reported as lost or stolen and renewal of expired cards.

Card Management: Overseeing the ongoing administration and maintenance of credit card accounts, including credit limits, usage monitoring, and account updates.

Card Plastic Specifications Compliance: Ensuring that the physical credit cards meet industry standards and compliance requirements.

Authorisation Processing: Verifying and approving transactions made using the credit card by checking available credit and account status.

Open to Buy: The remaining credit limit available for the cardholder to use after accounting for existing charges and pending transactions.

EMI: Enabling cardholders to convert large purchases into equal monthly instalments for easier repayment.

Billing Module: Generating and managing credit card statements with detailed transaction information and payment due dates.

Fee Management: Administering and collecting various fees associated with credit cards usage, such as annual fees or late payment fees.

Rewards Program: Implementing and managing a program that offers cardholders rewards or benefits based on their credit card spending.

Operations: The overall management and coordination of the credit card service, including settlement & recon, customer support, fraud prevention, and compliance.

Notifications & Alerts: Sending timely notifications and alerts to cardholders regarding transaction updates, payment reminders, and security alerts.

Delinquency Module: Managing and addressing instances of late or missed credit card payments by cardholders.

Data Management: Safeguarding and managing the collection, storage, and processing of cardholder data in compliance with data protection regulations.

How do the stakeholders interact?

Given below is a sample stakeholder diagram that illustrates how the different parties interact in the issuance & management of a secured credit card by a corporate / business.

CARD91 is building credit-card rails to help Indian businesses and banks launch their credit card programs at industry-best speeds. Reach out to us –

If you are a Bank, looking for a credit card issuance & management solution.
If you are a Business, planning to launch a co-branded credit card.
If you are a Corporate, planning to launch a corporate credit card program for employees.

Authored by Praveen Varghese, Product Manager, CARD91

Today, banks issue various prepaid instruments like prepaid cards, digital wallets, gift cards, fastags, etc. that are mandated to comply with certain regulations, as prescribed by the regulator in its master directions. At the same time, regulated entities carry out remittances, issue forex, international debit and international credit cards governed by tax laws. Any issuer providing multiple types of instruments, or partnering with multiple technology service providers is expected to follow these regulations and laws. The prepaid instrument regulations are meant to monitor/manage the level of prepaid instrument loading and usage at an individual customer level. The tax laws focus on collecting tax at source (TCS). These compliances demand a centralised repository that takes care of the following:

Uniquely identifying the customer and rolling up based on personally identifiable information (PII) sought from the customer at the time of onboarding.

Classifying customers based on their risk-profile categorisation.

Maintaining personalised limits at the customer level.

Controlling loading and usage at the issuer level.

Intimating the Bank / Regulated Entity on TCS applicability and rates.

This is precisely what the Centralised System of Records or C-SOR offers. A centralised System of Records (C-SOR) is a centrally managed repository that maintains customer-level records for a range of instruments issued by technology service providers (TSP) on behalf of the issuer. All customer actions undertaken by the TSP are sent to C-SOR for verification and validation. This means that only C-SOR-validated customer actions are treated as valid. Given below are a few scenarios that illustrate how the Centralised System of Records could be used by issuers in the context of various businesses they undertake.

Prepaid Cards: Bank and Non-bank PPI issuers issue prepaid cards through multiple TSPs. To maintain the balances and daily/monthly/yearly transactions allowed across transaction types and KYC types, be it full KYC or small PPI, the issuing entity should be employing a centralised system of records. For instance, a customer who was onboarded via both TSP1 and TSP2 will be identified as a single customer in the C-SOR system and the usage data should be managed accordingly.

Payments Bank: Payments Bank Savings Account balances plus balances contained in PPI or other internal wallets should not cross 2 Lakh INR at EOD. The differential should be swept into its partner Scheduled Commercial Bank’s deposit account. CSOR makes sure that the aggregate balance across applicable instruments doesn’t cross the prescribed limit.

LRS Limit Maintenance: Limits under the Liberalised Remittance Scheme (250,000 USD in a fiscal year) can be maintained by the C-SOR based on usage across instruments like Credit Cards, Debit Cards, Remittance Accounts and Forex Cards. The issuer can also be notified about usage that affects the TCS charged at a customer level.

CARD91 has built a robust centralised system of records as an API-led solution which lets issuers monitor its registered customers on a real-time basis. For more information, please reach out to sales@card91.io.

Written by Praveen Varghese, Product Manager, CARD91.

Over the past decade, technology has shown tremendous impact in many industries. With the change of customer behaviour and the emergence of regulatory compliances, the landscape of the financial industry is changing. Customers are demanding a multi- and cross-channel experience, which is real-time as well as available round the clock. Thus, Banks are changing their approach from traditional product-centric to a customer-centric approach. This has resulted in banks looking for new age solutions to redefine customer experience. Earlier if a customer wanted to send money abroad, then they might have to go to the bank or financial institution branch and it took 2-3 days to get funds credited to the receiver’s account but now money can be transferred at any time by just a few clicks using a mobile phone.

Consumer’s appetite has been ever increasing for high-end digital experiences including seamless and easy accessibility of all financial products at their fingertips. Responding to these demands, Fintechs are building revolutionary financial products and experiences by using APIs to quickly deploy a suite of advanced financial services and products.

What is an API and how does it work?

API stands for an Application Programming Interface. It’s a digital interface which acts as an intermediary to allow two different systems to talk to each other. 

A very prominent example of API usage which most of us have seen on many websites nowadays – “log-in using Google/Facebook/Twitter”. With just one click we automatically login on to the website or app but have you ever wondered how it works

It looks very easy and simple for users. Every time the application loads, it uses the API to check whether the user is already logged in using any social media platform. If not, when the user clicks the “Log-in Using google” button, a pop-up opens where the user is asked for confirmation to log in with the selected google profile. After the confirmation, the API interacts with the google system and provides the application with identification information to provide auto-login.

Digitalisation has fastened the transformation of the banking industry globally in the last few years. APIs are playing a very important role in the field of payments, Peer to peer management, Insurance, trading and many more. Fintech APIs are creating financial products and services faster and in more cost-effective than ever before. Now Banks, financial institutions and merchants can easily connect with third-party service providers and expand their products and services very quickly. Online shopping of groceries and household goods is a new trend all over the world, merchants are providing seamless payment experience with various payment methods to customers. Customers can easily transfer funds, make purchases, buy insurance, take loans and perform personal banking tasks on the go.

In short, APIs have transformed Financial institutions and Banks as a platform that offer customer-centric products and fill the gaps of legacy banking practices.

Fintech APIs provide access to data among the parties involved in financial transactions, including banks, third-party providers, websites and consumers.

Nowadays a new concept of Open APIs is on the rise. Open APIs allows third-party service providers to access the data and services of an organization in a controlled environment. It provides opportunities to create new products and adds new functionality to its core offering. 

Benefits of Fintech APIs 

• Real-Time Access: APIs have achieved real-time money transfer globally with minimal effort and are available to customers 24/7. APIs are changing how we interact with the world, and all these actions happen in real-time.

• Revenue Opportunity: Earlier banks were quite secretive about their client information due to security concerns. With APIs, the financial institutions can provide easy accessibility of big data which can help them in creating highly personalized financial services and enhance the decision capabilities of the business. 

• Cost-effectiveness: Instead of spending high cost in developing the system from scratch, the financial institutions can use these Fintech APIs and significantly reduce development costs.

• Accelerated time to market: By using fintech APIs Financial institutions can spend more time and resources to focus on innovation instead of repetitive development tasks. Create fully functional digital services within days instead of months.

To compete with the currency digitalisation banks and financial institutions need to transform their existing core banking services using Fintech APIs. Fintech APIs help in bridging the existing legacy gap between the financial institutions and customer’s requirements. Features and functions from legacy applications can be easily pulled out and combined into processes that authorised users and other applications can access from anywhere, anytime.