Below is a summary of the technical details for the Permanent TSB Dedicated Interface available to authorised TPPs. For more detailed information including the API swagger files please enrol on the Developer Portal.
The Account and Transactions, Payment Initiation and Confirmation of Funds Application Programming Interfaces (APIs) have been developed and designed in line with the Open Banking Standards. This market-enabling standard is designed to assist European account providers in meeting their PSD2 and RTS requirements. For detailed information on the Open Banking Standards including detailed specifications please visit www.openbanking.org.uk.
To enable AISPs, PISPs and CISPs to identify and mutually authenticate themselves with our APIs, we require both a QWAC and QSealC certificates. These certificates also allow us to establish a secure connection and prove origin, authenticity, and integrity of data.
eIDAS Technical Specification
For further information in relation to the use of a QWAC and QSealC please refer to Electronic Signatures and Infrastructures (ESI); Sector Specific Requirements; Qualified Certificate Profiles and TSP Policy Requirements under the payment services Directive (EU) 2015/2366 (ETSI TS 119 495 V1.2.1)
The APIs are developed in line with the Open Banking UK Security Profile v1.1.2 which implements the following protocols and practices:
We utilise redirection for PSU authentication, whereby the PSU will be redirected to a permanent tsb domain where they will complete authentication
To view and browse the API Swagger files please enrol on our Developer Portal