Data Privacy
- How can a Client reassure it’s users on Lean’s use of End-user personal data? Are there are any additional FAQ’s or resources Lean can provide on this?
- Would a company need to store the data of KSA customers retrieved through Lean's API in the KSA?
- What data security/privacy laws does a company need to abide by in order to be able to use Lean's Data API in KSA?
- What data protection laws does Lean follow in the KSA?
- What data protection laws does Lean follow in the UAE?
Open Banking in KSA
General
- Is Lean regulated?
- What is a PISP / AISP?
- Can the information retrieved through the Lean Services assist us to perform Customer Due Diligence (CDD) checks?
- For linking a bank account, do we have any option of tokenisation via bank, where user gets redirected to bank page for authentication and authorisation?
- Is it possible to redirect user to a separate (ideally bank co-branded) page where they can submit their username and password? Something like authentication performed on a payment gateway.
- When authorising a transaction, is it possible to request user’s 2FA on a similar bank co-branded page?