[whitepoplar]

Something I've always worried about: if I provide my bank's login credentials to a service which uses Plaid/Yodlee and due to a security breach my bank account is somehow drained, who's liable? Most banks explicitly state that losses due to sharing of credentials are not protected by their fraud guarantees. Are customers at risk by using Plaid?

[sitharus]

My bank has explicitly told me that using Pliad/Yodlee violates their T&Cs and voids their entire online fraud protection, regardless of if one of those services is at fault.

[sbmthakur]

Which bank is this, if I may ask?

Most of the popular Financial Institutions seem to be on board with Plaid.

[billfruit]

Then Plaid needs to be upfront about this, and not bury it in their own small print.

[gregkerzhner]

Same question here. I wonder if Plaid has an official answer on this.

[willy_ph]

You're likely on the hook for the losses having shared your creds. May obviously vary from FI to FI.

[whitepoplar]

If that's the case, why aren't FI's going after Plaid for impersonating their branding/login screens? When you go to link an account in-app, for instance, there is no indication that you're using Plaid; you're presented with a login screen that matches your FI's color scheme + branding. In fact, it's even more on-brand than the FI's own login screens, sometimes!

[JonoBB]

Not in the EU anymore due to PSD2

[aiCeivi9]

Is Plaid using AIS?