[thibaut_barrere]

It's the same in France, yet some aggregators (e.g. Bankin) are using those credentials directly (and afaik the risk is handled via some sort of insurance).

I'm personally waiting for the PSD II law to be deployed (see https://blog.teller.io/2016/04/26/tauth.html) in order to have clear-cut protections & boundaries, before leveraging Bankin or similar (Teller) as a SaaS product builder.

[wutwutwutwut]

How do you actually share your credentials? I assume you have to provide a 2FA-token when logging on?

[knlje]

You write the equivalent info (user+pass+keycode) into a third party app.

[KGIII]

Is it me, or does this read like a disaster in the making?

[BillinghamJ]

It’s better because going through the same process as the official banking apps means that you should end up using tokens etc rather than actually storing the original credentials.