{ "id": "safeguarding-reconciliation-solvency-discipline", "title": "Safeguarding reconciliation is a solvency discipline", "description": "Primary-source radar mapping UK and EU/EEA safeguarding law, supervisory standards, operating controls, vendor due-diligence surfaces and named enforcement cases for EMI and PI safeguarding reconciliation.", "layout": "cose-radar", "lastReviewed": "2026-05-09", "evidenceCutoff": "2026-05-09", "nodes": [ { "id": "pi-emi-firm-segment", "label": "Payment Institutions and Electronic Money Institutions", "type": "firm-segment", "subtype": "buyer segment", "summary": "UK and EU/EEA payment institutions and electronic money institutions are the regulated buyer segment for the radar.", "description": "This editorial node represents authorised and applicant payment-service and electronic-money firms operating under PSD2, EMD2, UK PSRs and UK EMRs. It is not a regulator register row; it is the audience and obligation perimeter used to organise the graph.", "url": null, "evidence": [ "[evidence pending — editorial buyer-segment node; no single canonical primary-source URL]" ], "tags": [ "buyer-segment", "uk", "eu-eea" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "financial-conduct-authority", "label": "Financial Conduct Authority", "type": "regulator", "subtype": "public authority", "summary": "UK conduct regulator for payment and e-money firms.", "description": "The FCA is the UK competent authority for PSR 2017 and EMR 2011 supervision and the issuer of the post-PS25/12 safeguarding regime materials used in this radar. Its sources anchor the UK controls on reconciliation cadence, reporting, audit and resolution-pack evidence.", "url": "https://www.fca.org.uk/", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09" ], "tags": [ "uk", "fca", "regulator" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "european-banking-authority", "label": "European Banking Authority", "type": "regulator", "subtype": "public authority", "summary": "EU authority maintaining PSD2 single-rulebook interpretive material.", "description": "The EBA node anchors the PSD2 Article 10 Q&A, peer-review and single-rulebook evidence used to connect EU safeguarding law to operational controls. It is treated as an interpretive standard-setter rather than as a national supervisor in this radar.", "url": "https://www.eba.europa.eu/", "evidence": [ "https://www.eba.europa.eu/regulation-and-policy/single-rulebook/interactive-single-rulebook/16232, accessed 2026-05-09" ], "tags": [ "eu", "eba", "standard-setter" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "bank-of-lithuania", "label": "Bank of Lithuania", "type": "regulator", "subtype": "public authority", "summary": "Lithuanian competent authority with detailed EMI and PI safeguarding guidance and revocation evidence.", "description": "The Bank of Lithuania node anchors the Lithuanian supervisory materials on customer-fund protection, CENTROlink limitations and the Foxpay revocation pattern. It is included because Lithuanian EMI supervision has produced primary-source guidance directly relevant to safeguarding operations.", "url": "https://www.lb.lt/en/", "evidence": [ "https://www.lb.lt/en/news/dear-ceo-letter-advice-to-fintech-institutions-on-risk-management-and-licensed-activities, accessed 2026-05-09" ], "tags": [ "lt", "bank-of-lithuania", "nca" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "central-bank-of-ireland", "label": "Central Bank of Ireland", "type": "regulator", "subtype": "public authority", "summary": "Irish competent authority for payment and e-money supervisory communications and enforcement.", "description": "The Central Bank of Ireland node anchors the BlueSnap enforcement action and the December 2025 Payment and E-Money Newsletter. In this radar it supplies primary evidence on safeguarding incidents, governance, lines of defence and concentration-risk expectations.", "url": "https://www.centralbank.ie/", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09" ], "tags": [ "ie", "central-bank-of-ireland", "nca" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "hm-treasury", "label": "HM Treasury", "type": "regulator", "subtype": "public authority", "summary": "UK government department responsible for payment-services and electronic-money regulations.", "description": "HM Treasury is represented as the issuing public authority for the UK statutory instruments mapped in this radar. The node supports UK PSRs 2017 and UK EMRs 2011 rather than day-to-day supervisory practice.", "url": "https://www.gov.uk/government/organisations/hm-treasury", "evidence": [ "https://www.gov.uk/government/organisations/hm-treasury, accessed 2026-05-09" ], "tags": [ "uk", "statutory-instrument", "government" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "european-commission", "label": "European Commission", "type": "regulator", "subtype": "public authority", "summary": "EU institution that proposed the PSD3 and PSR reform package.", "description": "The European Commission node anchors the 2023 proposals for a third Payment Services Directive and a directly applicable Payment Services Regulation. Those proposals are used as forward-looking regulatory context, not as current-law obligations.", "url": "https://commission.europa.eu/about-european-commission_en", "evidence": [ "https://www.europarl.europa.eu/legislative-train/carriage/revision-of-eu-rules-on-payment-services/report?sid=9801, accessed 2026-05-09" ], "tags": [ "eu", "commission", "proposal" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "council-of-the-european-union", "label": "Council of the European Union", "type": "regulator", "subtype": "public authority", "summary": "EU co-legislator publishing Council compromise texts for PSD3 and PSR.", "description": "The Council of the European Union node anchors the 2026 compromise documents used for the radar forward-look. It is not treated as an NCA; it supplies legislative-stage evidence on PSD3 and PSR trajectory.", "url": "https://www.consilium.europa.eu/en/council-eu/", "evidence": [ "https://data.consilium.europa.eu/doc/document/ST-8220-2026-INIT/en/pdf, accessed 2026-05-09" ], "tags": [ "eu", "council", "forward-look" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "european-parliament-and-council", "label": "European Parliament and Council", "type": "regulator", "subtype": "public authority", "summary": "EU co-legislators that adopted PSD2 and EMD2.", "description": "This node is used for issued-by edges from the adopted EU directives that form the baseline safeguarding framework. The type is regulator only because the graph schema has no separate legislator type.", "url": "https://eur-lex.europa.eu/", "evidence": [ "https://eur-lex.europa.eu/eli/dir/2015/2366/oj/eng, accessed 2026-05-09", "https://eur-lex.europa.eu/eli/dir/2009/110/oj/eng, accessed 2026-05-09" ], "tags": [ "eu", "legislator", "directive" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "emd2-article-7", "label": "EMD2 Article 7", "type": "regulation", "subtype": "regulatory anchor", "summary": "EU safeguarding requirement for funds received in exchange for electronic money.", "description": "EMD2 Article 7 is the electronic-money baseline for safeguarding funds received in exchange for e-money issued. In this radar it maps to liability scoping, segregation, D+1 placement and account-designation controls.", "url": "https://eur-lex.europa.eu/eli/dir/2009/110/oj/eng", "evidence": [ "https://eur-lex.europa.eu/eli/dir/2009/110/oj/eng, accessed 2026-05-09", "https://www.legislation.gov.uk/eudr/2009/110/article/7/data.xht, accessed 2026-05-09" ], "tags": [ "eu", "emd2", "safeguarding" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "psd2-article-10", "label": "PSD2 Article 10", "type": "regulation", "subtype": "regulatory anchor", "summary": "EU safeguarding requirement for payment-service user funds.", "description": "PSD2 Article 10 is the EU safeguarding article for payment institutions. It is the legal anchor behind the EBA Q&A on settlement accounts, D+1 placement and the separation of payment-service user funds from other funds.", "url": "https://www.eba.europa.eu/regulation-and-policy/single-rulebook/interactive-single-rulebook/16232", "evidence": [ "https://www.eba.europa.eu/regulation-and-policy/single-rulebook/interactive-single-rulebook/16232, accessed 2026-05-09", "https://eur-lex.europa.eu/eli/dir/2015/2366/oj/eng, accessed 2026-05-09" ], "tags": [ "eu", "psd2", "article-10" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "uk-payment-services-regulations-2017-regulation-23", "label": "UK PSRs 2017 Regulation 23", "type": "regulation", "subtype": "regulatory anchor", "summary": "UK safeguarding rule for authorised payment institutions.", "description": "Regulation 23 of the Payment Services Regulations 2017 is the UK statutory safeguarding anchor for payment institutions. It maps directly to segregation, separate accounts, low-risk assets, records, organisational arrangements and insolvency-priority controls.", "url": "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html", "evidence": [ "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09" ], "tags": [ "uk", "psr-2017", "regulation-23" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "uk-electronic-money-regulations-2011-regulations-20-22", "label": "UK EMRs 2011 Regulations 20 to 22", "type": "regulation", "subtype": "regulatory anchor", "summary": "UK safeguarding rule set for electronic-money institutions.", "description": "Regulations 20 to 22 of the Electronic Money Regulations 2011 provide the UK safeguarding framework for funds received in exchange for issued e-money. They map to segregation, separate accounts, secure low-risk assets and insurance or guarantee alternatives.", "url": "https://www.legislation.gov.uk/uksi/2011/99/regulation/20", "evidence": [ "https://www.legislation.gov.uk/uksi/2011/99/regulation/20, accessed 2026-05-09", "https://www.legislation.gov.uk/uksi/2011/99/regulation/21, accessed 2026-05-09", "https://www.legislation.gov.uk/uksi/2011/99/regulation/22, accessed 2026-05-09" ], "tags": [ "uk", "emr-2011", "regulations-20-22" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "fca-ps25-12-safeguarding-regime", "label": "FCA PS25/12 safeguarding regime", "type": "regulation", "subtype": "regulatory anchor", "summary": "FCA final policy statement introducing CASS 10A, CASS 15, SUP 3A and SUP 16 safeguarding rules.", "description": "PS25/12 is the UK post-consultation rules package for safeguarding by payments and e-money firms. In this radar it is treated as the binding UK control amplifier for daily reconciliation, monthly returns, safeguarding audits, resolution packs, third-party due diligence and CASS-aligned governance.", "url": "https://www.fca.org.uk/publications/policy-statements/ps25-12-changes-safeguarding-regime-payments-and-e-money-firms", "evidence": [ "https://www.fca.org.uk/publications/policy-statements/ps25-12-changes-safeguarding-regime-payments-and-e-money-firms, accessed 2026-05-09", "https://www.fca.org.uk/publication/policy/ps25-12.pdf, accessed 2026-05-09" ], "tags": [ "uk", "fca", "ps25-12", "post-ps25-12" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "fca-cp24-20-safeguarding-consultation", "label": "FCA CP24/20 safeguarding consultation", "type": "regulation", "subtype": "regulatory anchor", "summary": "Historical FCA consultation that preceded PS25/12 final rules.", "description": "CP24/20 is included only as historical provenance for the policy-development path into PS25/12. It should not be cited as final-law text where PS25/12 and the updated Approach Document are available.", "url": "https://www.fca.org.uk/publication/consultation/cp24-20.pdf", "evidence": [ "https://www.fca.org.uk/publication/consultation/cp24-20.pdf, accessed 2026-05-09" ], "tags": [ "uk", "fca", "historical-reference" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "psd3-proposal-com-2023-366", "label": "PSD3 proposal COM(2023) 366", "type": "regulation", "subtype": "regulatory anchor", "summary": "European Commission proposal for a new directive on payment and e-money services.", "description": "The PSD3 proposal is used as forward-looking context for authorisation, supervision and institutional perimeter changes. It is not a current safeguarding obligation but matters for applicants designing architectures that will still be live during the transition window.", "url": "https://www.europarl.europa.eu/RegData/docs_autres_institutions/commission_europeenne/com/2023/0366/COM_COM(2023)0366_EN.pdf", "evidence": [ "https://www.europarl.europa.eu/RegData/docs_autres_institutions/commission_europeenne/com/2023/0366/COM_COM(2023)0366_EN.pdf, accessed 2026-05-09" ], "tags": [ "eu", "psd3", "proposal" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "psr-proposal-com-2023-367", "label": "PSR proposal COM(2023) 367", "type": "regulation", "subtype": "regulatory anchor", "summary": "European Commission proposal for a directly applicable EU payment-services regulation.", "description": "The PSR proposal is used as the forward-looking regulation track paired with PSD3. In this radar it mainly supports the point that buyer architectures should avoid designing only to legacy PSD2 wording when the EU package is moving toward a revised directive and regulation split.", "url": "https://data.consilium.europa.eu/doc/document/ST-11222-2023-INIT/en/pdf", "evidence": [ "https://data.consilium.europa.eu/doc/document/ST-11222-2023-INIT/en/pdf, accessed 2026-05-09", "https://www.europarl.europa.eu/legislative-train/carriage/revision-of-eu-rules-on-payment-services/report?sid=9801, accessed 2026-05-09" ], "tags": [ "eu", "psr", "proposal" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "council-psd3-psr-position-st-8222-26", "label": "Council PSD3 position ST 8222/26", "type": "regulation", "subtype": "regulatory anchor", "summary": "Council compromise text for the PSD3 directive track.", "description": "Council ST 8222/26 is included as a 2026 forward-looking legislative-stage source. It is used to monitor transition, outsourcing and supervisory-tool language rather than to impose a current-law rule.", "url": "https://data.consilium.europa.eu/doc/document/ST-8222-2026-INIT/en/pdf", "evidence": [ "https://data.consilium.europa.eu/doc/document/ST-8222-2026-INIT/en/pdf, accessed 2026-05-09", "https://data.consilium.europa.eu/doc/document/ST-8220-2026-INIT/en/pdf, accessed 2026-05-09" ], "tags": [ "eu", "council", "psd3", "forward-look" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor final Official Journal publication and transitional provisions where the source is a proposal or compromise text." }, { "id": "eba-q-and-a-2024-7165", "label": "EBA Q&A 2024_7165", "type": "standard", "subtype": "supervisory interpretation", "summary": "EBA answer on whether a central-bank settlement account can itself be a safeguarding account.", "description": "This Q&A is the central EU interpretive source for the distinction between settlement balances and safeguarded funds. It is the graph anchor for the control that settlement-account balances are not automatically safeguarding in themselves.", "url": "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2024_7165", "evidence": [ "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2024_7165, accessed 2026-05-09" ], "tags": [ "eu", "eba", "settlement-account" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "eba-peer-review-authorisation-under-psd2", "label": "EBA peer review on PI and EMI authorisation", "type": "standard", "subtype": "supervisory interpretation", "summary": "EBA peer-review evidence on authorisation scrutiny, governance and internal-control divergence.", "description": "The peer-review node connects the safeguarding operating model to authorisation quality rather than only to live supervision. It supports the article thesis that weak governance, local substance and internal control design remain supervisory concerns across the perimeter.", "url": "https://www.eba.europa.eu/sites/default/files/2025-12/31b327d1-09ef-4ede-a5ec-40ea833fca4d/Follow-up%20peer%20review%20report%20on%20authorisations%20under%20PSD2.pdf", "evidence": [ "https://www.eba.europa.eu/sites/default/files/2025-12/31b327d1-09ef-4ede-a5ec-40ea833fca4d/Follow-up%20peer%20review%20report%20on%20authorisations%20under%20PSD2.pdf, accessed 2026-05-09", "https://www.eba.europa.eu/sites/default/files/document_library/Publications/Reports/2023/1050744/Peer%20Review%20Report%20on%20authorisation%20under%20PSD2.pdf, accessed 2026-05-09" ], "tags": [ "eu", "eba", "peer-review", "authorisation" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "fca-approach-document-may-2026", "label": "FCA Approach Document May 2026", "type": "standard", "subtype": "supervisory interpretation", "summary": "FCA Approach Document updated for the post-PS25/12 safeguarding regime.", "description": "The Approach Document translates UK statutory and FCA Handbook requirements into the operating expectations used by firms. It supplies direct evidence for CASS 15, CASS 10A, SUP 3A and SUP 16 controls in this radar.", "url": "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf", "evidence": [ "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf, accessed 2026-05-09" ], "tags": [ "uk", "fca", "approach-document", "post-ps25-12" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "fca-payments-portfolio-letter-2023", "label": "FCA payments portfolio letter 2023", "type": "standard", "subtype": "supervisory interpretation", "summary": "FCA portfolio letter raising safeguarding weaknesses in the payments sector.", "description": "This portfolio letter supplies pre-PS25/12 supervisory context on sector weaknesses. It is retained to show that the current rules did not appear in isolation; the control pattern had already been raised in supervisory correspondence.", "url": "https://www.fca.org.uk/publication/correspondence/priorities-payments-firms-portfolio-letter-2023.pdf", "evidence": [ "https://www.fca.org.uk/publication/correspondence/priorities-payments-firms-portfolio-letter-2023.pdf, accessed 2026-05-09" ], "tags": [ "uk", "fca", "portfolio-letter" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "fca-payments-portfolio-letter-2025", "label": "FCA payments portfolio letter 2025", "type": "standard", "subtype": "supervisory interpretation", "summary": "FCA 2025 supervisory priorities letter for payments firms.", "description": "The 2025 portfolio letter is included as current UK supervisory context for payment and e-money firm risk management. It is used to connect the safeguarding regime to senior-management accountability and operational control expectations.", "url": "https://www.fca.org.uk/publication/correspondence/payments-portfolio-letter-2025.pdf", "evidence": [ "https://www.fca.org.uk/publication/correspondence/payments-portfolio-letter-2025.pdf, accessed 2026-05-09" ], "tags": [ "uk", "fca", "portfolio-letter", "2025" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "fca-payments-report-2026", "label": "FCA payments report 2026", "type": "standard", "subtype": "supervisory interpretation", "summary": "FCA payments-sector report with safeguarding context for EMIs and PIs.", "description": "The FCA payments report gives sector-level context for the size and supervisory importance of safeguarded funds. The radar deliberately does not use the figures as a headline; it uses the report only to evidence why safeguarding integrity is a material supervisory concern.", "url": "https://www.fca.org.uk/publication/regulatory-priorities/payments-report.pdf", "evidence": [ "https://www.fca.org.uk/publication/regulatory-priorities/payments-report.pdf, accessed 2026-05-09" ], "tags": [ "uk", "fca", "payments-report" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "fca-risk-management-wind-down-multi-firm-review", "label": "FCA risk management and wind-down multi-firm review", "type": "standard", "subtype": "supervisory interpretation", "summary": "FCA multi-firm review on risk management and wind-down planning in e-money and payments firms.", "description": "This review supports the connection between safeguarding data, liquidity risk, enterprise risk management and wind-down readiness. It is mapped to resolution-pack, governance and group-oversight controls rather than to a single ledger feature.", "url": "https://www.fca.org.uk/publications/multi-firm-reviews/risk-management-wind-down-planning-emoney-payments-firms", "evidence": [ "https://www.fca.org.uk/publications/multi-firm-reviews/risk-management-wind-down-planning-emoney-payments-firms, accessed 2026-05-09" ], "tags": [ "uk", "fca", "wind-down", "risk-management" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "bank-of-lithuania-dear-ceo-letter-2022", "label": "Bank of Lithuania Dear CEO letter 2022", "type": "standard", "subtype": "supervisory interpretation", "summary": "Bank of Lithuania supervisory letter on fintech risk management and licensed activities.", "description": "The Dear CEO letter is used for Lithuanian supervisory evidence that documentation, accounting and internal-control arrangements must work continuously, not only in policy form. It is mapped to governance, books-and-records and safeguarding-operating-model controls.", "url": "https://www.lb.lt/en/news/dear-ceo-letter-advice-to-fintech-institutions-on-risk-management-and-licensed-activities", "evidence": [ "https://www.lb.lt/en/news/dear-ceo-letter-advice-to-fintech-institutions-on-risk-management-and-licensed-activities, accessed 2026-05-09" ], "tags": [ "lt", "bank-of-lithuania", "dear-ceo" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "bank-of-lithuania-2025-prudential-letter", "label": "Bank of Lithuania 2025 prudential letter", "type": "standard", "subtype": "supervisory interpretation", "summary": "Bank of Lithuania 2025 recommendation letter on EMI and PI prudential requirements.", "description": "This prudential letter is the key Lithuanian source for the CENTROlink and safeguarding-account distinction, internal-control expectations and customer-fund protection actions. It is mapped to settlement-account, reconciliation, internal-audit and governance controls.", "url": "https://www.lb.lt/uploads/documents/files/Rekomendaciju%20rastas%20MEPI%20ENG%202025.pdf", "evidence": [ "https://www.lb.lt/uploads/documents/files/Rekomendaciju%20rastas%20MEPI%20ENG%202025.pdf, accessed 2026-05-09" ], "tags": [ "lt", "bank-of-lithuania", "prudential-letter", "2025" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "bank-of-lithuania-centrolink-safeguarding-guidance", "label": "Bank of Lithuania CENTROlink safeguarding guidance", "type": "standard", "subtype": "supervisory interpretation", "summary": "Bank of Lithuania explanation that CENTROlink does not offer customer-fund safeguarding accounts.", "description": "This node isolates the practical settlement-account point from the wider Lithuanian prudential letter. It prevents the buyer-guide from conflating access to a central-bank payment system with the existence of a compliant safeguarding account.", "url": "https://www.lb.lt/en/centrolink", "evidence": [ "https://www.lb.lt/en/centrolink, accessed 2026-05-09" ], "tags": [ "lt", "bank-of-lithuania", "centrolink", "settlement" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "central-bank-of-ireland-payment-emoney-newsletter-issue-1-2025", "label": "CBI Payment and E-Money Newsletter Issue 1 December 2025", "type": "standard", "subtype": "supervisory interpretation", "summary": "Central Bank of Ireland newsletter focusing on safeguarding, governance and risk themes.", "description": "This newsletter is the Irish supervisory-standard node for safeguarding governance, concentration risk, lines of defence and policy-to-execution gaps. It is mapped to second-line separation, concentration risk and third-party oversight controls.", "url": "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1", "evidence": [ "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1, accessed 2026-05-09", "https://www.centralbank.ie/regulation/industry-market-sectors/payment-institutions/payment-and-e-money-newsletter, accessed 2026-05-09" ], "tags": [ "ie", "central-bank-of-ireland", "newsletter", "2025" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor for replacement, update, withdrawal or successor guidance." }, { "id": "account-designation", "label": "Account designation", "type": "control", "subtype": "safeguarding control", "summary": "Safeguarding accounts must be identifiable as safeguarding accounts rather than ordinary operating accounts.", "description": "This control captures the need for clear naming, acknowledgement or designation of safeguarding accounts. It is materially different from simply holding cash at a reputable institution because the insolvency and segregation evidential burden depends on designation.", "url": "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf", "evidence": [ "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf, accessed 2026-05-09", "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09" ], "tags": [ "control", "account", "designation", "safeguarding" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "daily-reconciliation", "label": "Daily reconciliation", "type": "control", "subtype": "safeguarding control", "summary": "Daily reconciliation compares safeguarded liability records with safeguarding assets and bank or settlement evidence.", "description": "This control is the operating cadence that converts safeguarding from a policy into a solvency discipline. In the graph it covers the repeatable production of liability, asset and exception views at the day boundary.", "url": "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ], "tags": [ "control", "reconciliation", "daily" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "intraday-safeguarding-integrity", "label": "Intraday safeguarding integrity", "type": "control", "subtype": "safeguarding control", "summary": "Intraday safeguarding integrity keeps liability, ledger and asset movements visible before the formal day-end comparison.", "description": "This control is not a separate legal label; it is the operating capability needed to prevent unresolved exception queues from becoming overnight safeguarding breaks. It matters where payment flows, returns, chargebacks and settlement files move faster than manual finance routines.", "url": "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09", "https://www.lb.lt/uploads/documents/files/Rekomendaciju%20rastas%20MEPI%20ENG%202025.pdf, accessed 2026-05-09" ], "tags": [ "control", "intraday", "ledger", "exceptions" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "segregation", "label": "Segregation", "type": "control", "subtype": "safeguarding control", "summary": "Relevant funds must be kept separate from other funds and protected from commingling.", "description": "Segregation is the root safeguarding control. In this radar it is used narrowly: clear separation of customer or payment-service-user funds from own funds, group funds and unrelated business flows.", "url": "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html", "evidence": [ "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09", "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2020_5264, accessed 2026-05-09" ], "tags": [ "control", "segregation", "commingling" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "liability-scoping", "label": "Liability scoping", "type": "control", "subtype": "safeguarding control", "summary": "The firm must know which balances are relevant funds and which are outside the safeguarding liability.", "description": "This control defines the liability perimeter before reconciliation starts. It distinguishes payment-service user funds, e-money funds, own funds, fees, chargebacks, refunds and other non-safeguarded balances.", "url": "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html", "evidence": [ "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09", "https://www.legislation.gov.uk/uksi/2011/99/regulation/20, accessed 2026-05-09" ], "tags": [ "control", "liability", "scope" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "books-and-records-at-any-time-no-delay", "label": "Books and records at any time without delay", "type": "control", "subtype": "safeguarding control", "summary": "Books and records must let the firm identify relevant funds and safeguarding positions without operational delay.", "description": "This control encodes the evidential standard for records, not merely the existence of a ledger. It maps to the ability to produce current liability, asset, exception and ownership evidence from system data rather than reconstructed spreadsheets.", "url": "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html", "evidence": [ "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09", "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf, accessed 2026-05-09" ], "tags": [ "control", "books-records", "evidence" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "d-plus-1-comparison", "label": "D+1 comparison", "type": "control", "subtype": "safeguarding control", "summary": "Funds still held by the end of the business day after receipt must be placed or protected through the safeguarding method.", "description": "This control represents the day-plus-one operating test in EU and UK safeguarding regimes. It turns incoming payments into a timed asset-placement and exception-management obligation.", "url": "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2024_7165", "evidence": [ "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2024_7165, accessed 2026-05-09", "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09" ], "tags": [ "control", "d-plus-1", "placement" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "monthly-safeguarding-return", "label": "Monthly Safeguarding Return", "type": "control", "subtype": "safeguarding control", "summary": "UK firms must be able to report safeguarding information monthly under the post-PS25/12 reporting regime.", "description": "This control captures the reporting data structure rather than the act of filing alone. It requires source data that reconcile to ledger, bank, safeguarding-asset and exception records.", "url": "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09" ], "tags": [ "control", "fca", "monthly-return", "post-ps25-12" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "resolution-pack", "label": "Resolution pack", "type": "control", "subtype": "safeguarding control", "summary": "A resolution pack preserves the records and access information needed to return funds or support administration.", "description": "This control links safeguarding evidence to wind-down and insolvency readiness. It is not a marketing data room; it is a structured record set that must be usable under stress.", "url": "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09", "https://www.fca.org.uk/publications/multi-firm-reviews/risk-management-wind-down-planning-emoney-payments-firms, accessed 2026-05-09" ], "tags": [ "control", "resolution", "wind-down" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "annual-safeguarding-audit", "label": "Annual safeguarding audit", "type": "control", "subtype": "safeguarding control", "summary": "Safeguarding audit evidence tests whether controls operate, not only whether policy wording exists.", "description": "This control is the recurring external assurance loop for safeguarding arrangements. It is mapped to audit-ready evidence, exception history and policy-to-practice traceability.", "url": "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09", "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf, accessed 2026-05-09" ], "tags": [ "control", "audit", "assurance", "post-ps25-12" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "governance-1st-2nd-line-separation", "label": "First and second line separation", "type": "control", "subtype": "safeguarding control", "summary": "Safeguarding governance requires clear ownership, challenge and escalation between operations and control functions.", "description": "This control represents the governance layer around the ledger and bank controls. It is included because CBI, EBA and FCA sources show that safeguarding failures are often management-control failures, not just account failures.", "url": "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1", "evidence": [ "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1, accessed 2026-05-09", "https://www.eba.europa.eu/sites/default/files/2025-12/31b327d1-09ef-4ede-a5ec-40ea833fca4d/Follow-up%20peer%20review%20report%20on%20authorisations%20under%20PSD2.pdf, accessed 2026-05-09" ], "tags": [ "control", "governance", "second-line" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "third-party-oversight", "label": "Third-party oversight", "type": "control", "subtype": "safeguarding control", "summary": "Safeguarding depends on controlled relationships with banks, custodians, insurers, payment systems and outsourcing providers.", "description": "This control covers due diligence, contractual evidence, concentration monitoring and operational dependency on third parties. It prevents a firm from treating a bank, central-bank settlement account or infrastructure provider as a substitute for its own safeguarding controls.", "url": "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements", "evidence": [ "https://www.fca.org.uk/firms/emi-payment-institutions-safeguarding-requirements, accessed 2026-05-09", "https://data.consilium.europa.eu/doc/document/ST-8222-2026-INIT/en/pdf, accessed 2026-05-09" ], "tags": [ "control", "third-party", "outsourcing", "banks" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "settlement-account-safeguarding-not-itself", "label": "Settlement account not safeguarding itself", "type": "control", "subtype": "safeguarding control", "summary": "A settlement account or payment-system balance is not automatically a compliant safeguarding method.", "description": "This control encodes the EBA and Bank of Lithuania point that payment-system settlement access does not by itself create a safeguarding account. Buyers must be able to evidence when balances are in settlement transit and when they have moved into a valid safeguarding method.", "url": "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2024_7165", "evidence": [ "https://www.eba.europa.eu/single-rule-book-qa/qna/view/publicId/2024_7165, accessed 2026-05-09", "https://www.lb.lt/en/centrolink, accessed 2026-05-09" ], "tags": [ "control", "settlement", "central-bank", "safeguarding" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "concentration-risk-management", "label": "Concentration risk management", "type": "control", "subtype": "safeguarding control", "summary": "Safeguarding design must monitor exposure to banks, asset providers, jurisdictions and operational dependencies.", "description": "This control captures the risk created when safeguarded funds or key operations are concentrated with a limited set of providers. It is connected to CBI and FCA materials because both treat safeguarding integrity as part of broader prudential and wind-down resilience.", "url": "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1", "evidence": [ "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1, accessed 2026-05-09", "https://www.fca.org.uk/publications/multi-firm-reviews/risk-management-wind-down-planning-emoney-payments-firms, accessed 2026-05-09" ], "tags": [ "control", "concentration-risk", "prudential" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "group-oversight", "label": "Group oversight", "type": "control", "subtype": "safeguarding control", "summary": "Group arrangements must not obscure customer-fund ownership, bank-account control or safeguarding responsibility.", "description": "This control addresses group treasury, shared accounts, intra-group services and parent-company influence. It is included because enforcement and FCA guidance show that group structures can create commingling and control failures if not explicitly governed.", "url": "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf", "evidence": [ "https://www.fca.org.uk/publication/finalised-guidance/payment-services-electronic-money-approach.pdf, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ], "tags": [ "control", "group", "treasury", "governance" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor source updates that alter scope, cadence or evidence expectations for this control." }, { "id": "finray-technologies-ltd", "label": "Finray Technologies Ltd", "type": "vendor", "subtype": "vendor", "summary": "Vendor of Corebanq, the Finray core banking product included under recusal.", "description": "Finray Technologies Ltd is included because the existing Corebanq buyer-guide universe includes Corebanq as a Finray product. The vendor node is not ranked, and the Corebanq product node carries the explicit conflict-of-interest disclosure.", "url": "https://finray.tech/company/", "evidence": [ "https://finray.tech/company/, accessed 2026-05-09", "https://finray.tech/platforms/corebanq/, accessed 2026-05-09" ], "tags": [ "vendor", "finray", "corebanq" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor product-page changes and any regulatory-status changes that affect buyer due diligence." }, { "id": "mambu", "label": "Mambu", "type": "vendor", "subtype": "vendor", "summary": "Vendor of composable cloud banking and payments software.", "description": "Mambu is included from the existing PI/EMI core-banking buyer-guide universe and has public materials on banking, payments and reconciliation automation. The radar maps only primary-source-supported capabilities to safeguarding controls.", "url": "https://mambu.com/en", "evidence": [ "https://mambu.com/en, accessed 2026-05-09", "https://mambu.com/en/insights/articles/mambu-payments-automates-reconciliation, accessed 2026-05-09" ], "tags": [ "vendor", "core-banking", "payments" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor product-page changes and any regulatory-status changes that affect buyer due diligence." }, { "id": "tuum", "label": "Tuum", "type": "vendor", "subtype": "vendor", "summary": "Vendor of a modular core banking and payments platform.", "description": "Tuum is included from the existing buyer-guide vendor universe. Its official materials support mapping to accounts, payments, settlement integration, liquidity tracking and operational-control capabilities.", "url": "https://tuum.com/", "evidence": [ "https://tuum.com/, accessed 2026-05-09", "https://tuum.com/modules/, accessed 2026-05-09" ], "tags": [ "vendor", "core-banking", "payments" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor product-page changes and any regulatory-status changes that affect buyer due diligence." }, { "id": "thought-machine", "label": "Thought Machine", "type": "vendor", "subtype": "vendor", "summary": "Vendor of Vault Core and Vault Payments.", "description": "Thought Machine is included from the existing buyer-guide vendor universe. Its official product pages support mapping to configurable ledger product logic and cloud-native payments processing rather than to a supervised safeguarding conclusion.", "url": "https://www.thoughtmachine.net/", "evidence": [ "https://www.thoughtmachine.net/vault-core, accessed 2026-05-09", "https://www.thoughtmachine.net/vaultpayments, accessed 2026-05-09" ], "tags": [ "vendor", "core-banking", "payments" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor product-page changes and any regulatory-status changes that affect buyer due diligence." }, { "id": "modulr", "label": "Modulr", "type": "vendor", "subtype": "vendor", "summary": "UK and EU payments infrastructure provider with published safeguarding information.", "description": "Modulr is included as a representative UK payments infrastructure and safeguarding-account provider because its public materials address safeguarding, payment automation and control evidence. It is mapped to controls only where the official materials support the claim.", "url": "https://www.modulrfinance.com/", "evidence": [ "https://www.modulrfinance.com/, accessed 2026-05-09", "https://www.modulrfinance.com/uk-safeguarding-information, accessed 2026-05-09" ], "tags": [ "vendor", "payments-infrastructure", "uk" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor product-page changes and any regulatory-status changes that affect buyer due diligence." }, { "id": "clearbank", "label": "ClearBank", "type": "vendor", "subtype": "vendor", "summary": "UK and EU clearing, embedded banking and safeguarding-account infrastructure provider.", "description": "ClearBank is included as a representative regulated banking-infrastructure provider because its public materials address safeguarded accounts, segregated accounts, payment clearing and reconciliation support. It is not treated as a substitute for the buyer firm’s own safeguarding responsibility.", "url": "https://clear.bank/", "evidence": [ "https://clear.bank/, accessed 2026-05-09", "https://clearbank.github.io/uk/docs/gbp-accounts/account-types/, accessed 2026-05-09", "https://clear.bank/learn/insights/safeguarding-partners-for-emis-that-need-diversification-under-the-new-fca-rules, accessed 2026-05-09" ], "tags": [ "vendor", "banking-infrastructure", "safeguarding" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor product-page changes and any regulatory-status changes that affect buyer due diligence." }, { "id": "corebanq", "label": "Corebanq", "type": "product", "subtype": "vendor product", "summary": "Finray core banking product included under conflict-of-interest recusal.", "description": "Corebanq is represented as a product node because the related Finray buyer guide treats it as a referenced product, not as an independent ranking candidate. The node is recused from qualitative ranking and is included only to keep the vendor universe complete.", "url": "https://finray.tech/platforms/corebanq/", "evidence": [ "https://finray.tech/platforms/corebanq/, accessed 2026-05-09", "https://finray.tech/intelligence/eu-uk-pi-emi-core-banking/, accessed 2026-05-09" ], "tags": [ "product", "finray-product", "core-banking", "coi" ], "isFinrayProduct": true, "coiNote": "Corebanq is built and operated by Finray Technologies Ltd, the publisher of this graph. Corebanq is recused from any qualitative ranking. Inclusion is for completeness in the buyer-guide vendor universe under the editorial methodology at /intelligence/methodology/.", "watching": "Monitor official product materials and buyer-guide vendor outreach status." }, { "id": "mambu-payments", "label": "Mambu Payments", "type": "product", "subtype": "vendor product", "summary": "Mambu payments product with public reconciliation-automation materials.", "description": "Mambu Payments is mapped as the product surface for payment operations and reconciliation automation. The graph does not assert regulatory compliance; it maps official product claims to controls a buyer would test during due diligence.", "url": "https://mambu.com/en/insights/articles/mambu-payments-automates-reconciliation", "evidence": [ "https://mambu.com/en/insights/articles/mambu-payments-automates-reconciliation, accessed 2026-05-09", "https://mambu.com/en, accessed 2026-05-09" ], "tags": [ "product", "mambu", "payments", "reconciliation" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor official product materials and buyer-guide vendor outreach status." }, { "id": "tuum-core-banking-platform", "label": "Tuum Core Banking Platform", "type": "product", "subtype": "vendor product", "summary": "Tuum modular platform covering accounts, payments and settlement integrations.", "description": "The Tuum product node represents the core banking and payments module set described in Tuum’s official materials. Its control mapping is limited to public claims around accounts, payments, exception handling, liquidity and settlement integrations.", "url": "https://tuum.com/modules/", "evidence": [ "https://tuum.com/modules/, accessed 2026-05-09", "https://tuum.com/, accessed 2026-05-09" ], "tags": [ "product", "tuum", "core-banking", "payments" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor official product materials and buyer-guide vendor outreach status." }, { "id": "vault-core-and-vault-payments", "label": "Vault Core and Vault Payments", "type": "product", "subtype": "vendor product", "summary": "Thought Machine core ledger and payments products represented as a paired operating surface.", "description": "This product node combines Vault Core and Vault Payments because safeguarding operations need both ledger state and payment-flow state. The node maps only to configurable product logic and payment-processing capabilities visible in Thought Machine official sources.", "url": "https://www.thoughtmachine.net/vault-core", "evidence": [ "https://www.thoughtmachine.net/vault-core, accessed 2026-05-09", "https://www.thoughtmachine.net/vaultpayments, accessed 2026-05-09" ], "tags": [ "product", "thought-machine", "vault", "payments" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor official product materials and buyer-guide vendor outreach status." }, { "id": "modulr-payments-automation-platform", "label": "Modulr Payments Automation Platform", "type": "product", "subtype": "vendor product", "summary": "Modulr payments infrastructure and automation platform.", "description": "The Modulr product node represents the payments automation and safeguarding-information surface visible in official Modulr materials. It maps to account, payment, control and safeguarding-provider due-diligence controls rather than to the buyer’s own compliance conclusion.", "url": "https://www.modulrfinance.com/", "evidence": [ "https://www.modulrfinance.com/, accessed 2026-05-09", "https://www.modulrfinance.com/uk-safeguarding-information, accessed 2026-05-09" ], "tags": [ "product", "modulr", "payments-infrastructure" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor official product materials and buyer-guide vendor outreach status." }, { "id": "clearbank-clearing-and-embedded-banking", "label": "ClearBank Clearing and Embedded Banking", "type": "product", "subtype": "vendor product", "summary": "ClearBank clearing, account and embedded-banking infrastructure.", "description": "The ClearBank product node represents its public clearing, account-type and embedded-banking materials. It supports due-diligence questions around safeguarded accounts, segregated accounts, clearing flows and reconciliation support.", "url": "https://clear.bank/clearing", "evidence": [ "https://clear.bank/clearing, accessed 2026-05-09", "https://clearbank.github.io/uk/docs/gbp-accounts/account-types/, accessed 2026-05-09", "https://clear.bank/learn/insights/safeguarding-partners-for-emis-that-need-diversification-under-the-new-fca-rules, accessed 2026-05-09" ], "tags": [ "product", "clearbank", "clearing", "safeguarding" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor official product materials and buyer-guide vendor outreach status." }, { "id": "regulator-revocation", "label": "Regulator-driven revocation", "type": "status-class", "subtype": "forensic status class", "summary": "Status class for cancellation or revocation by a regulator under enforcement powers.", "description": "This status-class node is reused from the Finray authorisation-withdrawal taxonomy where visible on the public register page. In this radar it classifies Biilz UK Ltd and UAB Foxpay because the primary sources describe regulator action rather than voluntary exit.", "url": null, "evidence": [ "https://finray.tech/intelligence/emi-pi-authorisation-withdrawals/, accessed 2026-05-09", "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09", "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ], "tags": [ "status", "withdrawal", "enforcement" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor whether later public notices alter this classification." }, { "id": "enforcement-fined", "label": "Enforcement fined", "type": "status-class", "subtype": "forensic status class", "summary": "Status class for a completed enforcement action resulting in a monetary sanction.", "description": "This status-class node is used where the public source is an enforcement action and fine rather than authorisation withdrawal. It is anchored in the BlueSnap Central Bank of Ireland enforcement action.", "url": null, "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09" ], "tags": [ "status", "fine", "enforcement" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor whether later public notices alter this classification." }, { "id": "supervisory-notice", "label": "Supervisory notice", "type": "status-class", "subtype": "forensic status class", "summary": "Status class for a supervisory notice or intervention that is not treated here as a final enforcement outcome.", "description": "This status-class node is used for Currency Matters because the radar relies on an FCA First Supervisory Notice and related administration notice. It deliberately avoids upgrading the classification to a final enforcement outcome.", "url": null, "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09", "https://www.fca.org.uk/news/news-stories/currency-matters-limited-enters-special-administration, accessed 2026-05-09" ], "tags": [ "status", "supervisory-notice", "intervention" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor whether later public notices alter this classification." }, { "id": "uk", "label": "United Kingdom", "type": "jurisdiction", "subtype": "home jurisdiction", "summary": "UK jurisdiction node for FCA-supervised firms and UK statutory instruments.", "description": "The UK node is used for forensic case location and UK safeguarding controls. It is not a claim about authorisation status; entity status is derived from the cited FCA source for each firm.", "url": null, "evidence": [ "https://www.legislation.gov.uk/uksi/2017/752/regulation/23/data.html, accessed 2026-05-09", "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ], "tags": [ "jurisdiction", "uk", "fca" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "ie", "label": "Ireland", "type": "jurisdiction", "subtype": "home jurisdiction", "summary": "Ireland jurisdiction node for Central Bank of Ireland evidence.", "description": "The Ireland node locates BlueSnap Payment Services Ireland Limited and Irish supervisory materials. It keeps Irish enforcement and thematic newsletter evidence distinct from UK and Lithuanian sources.", "url": null, "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/regulation/industry-market-sectors/electronic-money-institutions/payment-and-e-money-newsletter---issue1---december-2025.pdf?sfvrsn=b0e6c1a_1, accessed 2026-05-09" ], "tags": [ "jurisdiction", "ie", "central-bank-of-ireland" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "lt", "label": "Lithuania", "type": "jurisdiction", "subtype": "home jurisdiction", "summary": "Lithuania jurisdiction node for Bank of Lithuania evidence.", "description": "The Lithuania node locates UAB Foxpay and the Lithuanian supervisory materials in this radar. It separates Lithuanian settlement-account and CENTROlink evidence from wider EU Article 10 analysis.", "url": null, "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09", "https://www.lb.lt/en/centrolink, accessed 2026-05-09" ], "tags": [ "jurisdiction", "lt", "bank-of-lithuania" ], "isFinrayProduct": false, "coiNote": null, "watching": null }, { "id": "bluesnap-payment-services-ireland-limited", "label": "BlueSnap Payment Services Ireland Limited", "type": "licensed-entity", "subtype": "forensic case", "summary": "Irish payment institution fined for safeguarding failures.", "description": "The BlueSnap node anchors the graph’s Irish enforcement example. The Central Bank of Ireland source describes designated-account, commingling, notification, oversight and reconciliation failures that map directly to the radar controls.", "url": "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ], "tags": [ "licensed-entity", "ie", "cbi", "safeguarding-failure" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor regulator register status, final notices, administration updates and later supervisory publications." }, { "id": "uab-foxpay", "label": "UAB Foxpay", "type": "licensed-entity", "subtype": "forensic case", "summary": "Lithuanian EMI whose licence was revoked after serious and systematic breaches.", "description": "The Foxpay node anchors the Lithuanian enforcement example. The Bank of Lithuania source identifies safeguarding, reconciliation, segregation, management information and internal audit failures as part of the revocation narrative.", "url": "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09", "https://www.lb.lt/en/news/lietuvos-bankas-restricts-foxpay-activities-and-appoints-a-temporary-representative-to-supervise-the-activities, accessed 2026-05-09" ], "tags": [ "licensed-entity", "lt", "bank-of-lithuania", "revocation" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor regulator register status, final notices, administration updates and later supervisory publications." }, { "id": "biilz-uk-ltd", "label": "Biilz UK Ltd", "type": "licensed-entity", "subtype": "forensic case", "summary": "UK small electronic money institution whose registration was cancelled by the FCA.", "description": "The Biilz node anchors the UK example of safeguarding arrangements failing before meaningful business activity. The FCA Final Notice states that the firm had not taken adequate measures to safeguard electronic money holders’ funds and lacked acceptable arrangements.", "url": "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf", "evidence": [ "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ], "tags": [ "licensed-entity", "uk", "fca", "revocation" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor regulator register status, final notices, administration updates and later supervisory publications." }, { "id": "currency-matters-limited", "label": "Currency Matters Limited", "type": "licensed-entity", "subtype": "forensic case", "summary": "UK authorised payment institution subject to an FCA supervisory notice and special administration context.", "description": "The Currency Matters node is included as a supervisory-notice example, not as a final enforcement case. The cited FCA materials raise safeguarding, own-funds, governance and bank-account concerns and should be monitored for later outcomes.", "url": "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09", "https://www.fca.org.uk/news/news-stories/currency-matters-limited-enters-special-administration, accessed 2026-05-09" ], "tags": [ "licensed-entity", "uk", "fca", "supervisory-notice" ], "isFinrayProduct": false, "coiNote": null, "watching": "Monitor regulator register status, final notices, administration updates and later supervisory publications." } ], "edges": [ { "source": "pi-emi-firm-segment", "target": "emd2-article-7", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "psd2-article-10", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "uk-payment-services-regulations-2017-regulation-23", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "uk-electronic-money-regulations-2011-regulations-20-22", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "fca-ps25-12-safeguarding-regime", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "fca-cp24-20-safeguarding-consultation", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "psd3-proposal-com-2023-366", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "psr-proposal-com-2023-367", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "pi-emi-firm-segment", "target": "council-psd3-psr-position-st-8222-26", "type": "requires", "label": "segment subject to regulatory anchor", "strength": "full", "evidence": [] }, { "source": "emd2-article-7", "target": "european-parliament-and-council", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "psd2-article-10", "target": "european-parliament-and-council", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "hm-treasury", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "uk-electronic-money-regulations-2011-regulations-20-22", "target": "hm-treasury", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "fca-cp24-20-safeguarding-consultation", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "psd3-proposal-com-2023-366", "target": "european-commission", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "psr-proposal-com-2023-367", "target": "european-commission", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "council-psd3-psr-position-st-8222-26", "target": "council-of-the-european-union", "type": "issued-by", "label": "issued by public authority", "strength": "full", "evidence": [] }, { "source": "emd2-article-7", "target": "segregation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "emd2-article-7", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "emd2-article-7", "target": "d-plus-1-comparison", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "emd2-article-7", "target": "account-designation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "psd2-article-10", "target": "segregation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "psd2-article-10", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "psd2-article-10", "target": "d-plus-1-comparison", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "psd2-article-10", "target": "account-designation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "psd2-article-10", "target": "settlement-account-safeguarding-not-itself", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "segregation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "d-plus-1-comparison", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "account-designation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "books-and-records-at-any-time-no-delay", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "third-party-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-payment-services-regulations-2017-regulation-23", "target": "settlement-account-safeguarding-not-itself", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "uk-electronic-money-regulations-2011-regulations-20-22", "target": "segregation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-electronic-money-regulations-2011-regulations-20-22", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-electronic-money-regulations-2011-regulations-20-22", "target": "d-plus-1-comparison", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-electronic-money-regulations-2011-regulations-20-22", "target": "account-designation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "uk-electronic-money-regulations-2011-regulations-20-22", "target": "books-and-records-at-any-time-no-delay", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "daily-reconciliation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "intraday-safeguarding-integrity", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "monthly-safeguarding-return", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "resolution-pack", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "annual-safeguarding-audit", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "governance-1st-2nd-line-separation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "third-party-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "concentration-risk-management", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "group-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "books-and-records-at-any-time-no-delay", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "d-plus-1-comparison", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-ps25-12-safeguarding-regime", "target": "account-designation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "full", "evidence": [] }, { "source": "fca-cp24-20-safeguarding-consultation", "target": "daily-reconciliation", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "fca-cp24-20-safeguarding-consultation", "target": "monthly-safeguarding-return", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "fca-cp24-20-safeguarding-consultation", "target": "annual-safeguarding-audit", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "fca-cp24-20-safeguarding-consultation", "target": "resolution-pack", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "psd3-proposal-com-2023-366", "target": "third-party-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "psd3-proposal-com-2023-366", "target": "group-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "psd3-proposal-com-2023-366", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "psr-proposal-com-2023-367", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "psr-proposal-com-2023-367", "target": "third-party-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "psr-proposal-com-2023-367", "target": "settlement-account-safeguarding-not-itself", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "council-psd3-psr-position-st-8222-26", "target": "third-party-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "council-psd3-psr-position-st-8222-26", "target": "group-oversight", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "council-psd3-psr-position-st-8222-26", "target": "liability-scoping", "type": "requires", "label": "regulatory anchor maps to control", "strength": "partial", "evidence": [] }, { "source": "eba-q-and-a-2024-7165", "target": "european-banking-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "eba-peer-review-authorisation-under-psd2", "target": "european-banking-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "fca-approach-document-may-2026", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "fca-payments-portfolio-letter-2023", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "fca-payments-portfolio-letter-2025", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "fca-payments-report-2026", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "fca-risk-management-wind-down-multi-firm-review", "target": "financial-conduct-authority", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "bank-of-lithuania-dear-ceo-letter-2022", "target": "bank-of-lithuania", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "bank-of-lithuania-2025-prudential-letter", "target": "bank-of-lithuania", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "bank-of-lithuania-centrolink-safeguarding-guidance", "target": "bank-of-lithuania", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "central-bank-of-ireland-payment-emoney-newsletter-issue-1-2025", "target": "central-bank-of-ireland", "type": "issued-by", "label": "issued by supervisor or authority", "strength": "full", "evidence": [] }, { "source": "eba-q-and-a-2024-7165", "target": "psd2-article-10", "type": "implements", "label": "interprets Article 10 settlement-account treatment", "strength": "full", "evidence": [] }, { "source": "eba-peer-review-authorisation-under-psd2", "target": "psd2-article-10", "type": "compliant-with", "label": "reviews supervisory practices under PSD2 authorisation framework", "strength": "partial", "evidence": [] }, { "source": "fca-approach-document-may-2026", "target": "fca-ps25-12-safeguarding-regime", "type": "implements", "label": "operationalises post-PS25/12 rules", "strength": "full", "evidence": [] }, { "source": "fca-approach-document-may-2026", "target": "uk-payment-services-regulations-2017-regulation-23", "type": "implements", "label": "explains UK PSR safeguarding framework", "strength": "full", "evidence": [] }, { "source": "fca-approach-document-may-2026", "target": "uk-electronic-money-regulations-2011-regulations-20-22", "type": "implements", "label": "explains UK EMR safeguarding framework", "strength": "full", "evidence": [] }, { "source": "fca-payments-portfolio-letter-2023", "target": "uk-payment-services-regulations-2017-regulation-23", "type": "compliant-with", "label": "supervisory priority under existing UK regime", "strength": "partial", "evidence": [] }, { "source": "fca-payments-portfolio-letter-2025", "target": "fca-ps25-12-safeguarding-regime", "type": "compliant-with", "label": "current portfolio priority after rule finalisation", "strength": "partial", "evidence": [] }, { "source": "fca-payments-report-2026", "target": "fca-ps25-12-safeguarding-regime", "type": "compliant-with", "label": "sector context for post-PS25/12 regime", "strength": "partial", "evidence": [] }, { "source": "fca-risk-management-wind-down-multi-firm-review", "target": "fca-ps25-12-safeguarding-regime", "type": "compliant-with", "label": "links safeguarding to risk management and wind-down", "strength": "partial", "evidence": [] }, { "source": "bank-of-lithuania-dear-ceo-letter-2022", "target": "psd2-article-10", "type": "implements", "label": "national supervisory expectations under PSD2 perimeter", "strength": "partial", "evidence": [] }, { "source": "bank-of-lithuania-2025-prudential-letter", "target": "psd2-article-10", "type": "implements", "label": "national prudential guidance on customer-fund protection", "strength": "full", "evidence": [] }, { "source": "bank-of-lithuania-centrolink-safeguarding-guidance", "target": "psd2-article-10", "type": "implements", "label": "explains settlement account limitation under PSD2 safeguarding", "strength": "full", "evidence": [] }, { "source": "central-bank-of-ireland-payment-emoney-newsletter-issue-1-2025", "target": "psd2-article-10", "type": "implements", "label": "Irish supervisory interpretation and thematic findings", "strength": "partial", "evidence": [] }, { "source": "central-bank-of-ireland-payment-emoney-newsletter-issue-1-2025", "target": "emd2-article-7", "type": "implements", "label": "Irish e-money safeguarding supervisory expectations", "strength": "partial", "evidence": [] }, { "source": "corebanq", "target": "finray-technologies-ltd", "type": "produced-by", "label": "product produced by vendor", "strength": "full", "evidence": [] }, { "source": "mambu-payments", "target": "mambu", "type": "produced-by", "label": "product produced by vendor", "strength": "full", "evidence": [] }, { "source": "tuum-core-banking-platform", "target": "tuum", "type": "produced-by", "label": "product produced by vendor", "strength": "full", "evidence": [] }, { "source": "vault-core-and-vault-payments", "target": "thought-machine", "type": "produced-by", "label": "product produced by vendor", "strength": "full", "evidence": [] }, { "source": "modulr-payments-automation-platform", "target": "modulr", "type": "produced-by", "label": "product produced by vendor", "strength": "full", "evidence": [] }, { "source": "clearbank-clearing-and-embedded-banking", "target": "clearbank", "type": "produced-by", "label": "product produced by vendor", "strength": "full", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "daily-reconciliation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "full", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "intraday-safeguarding-integrity", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "full", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "books-and-records-at-any-time-no-delay", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "full", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "d-plus-1-comparison", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "monthly-safeguarding-return", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "resolution-pack", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "finray-technologies-ltd", "target": "governance-1st-2nd-line-separation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "mambu", "target": "daily-reconciliation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "full", "evidence": [] }, { "source": "mambu", "target": "books-and-records-at-any-time-no-delay", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "mambu", "target": "intraday-safeguarding-integrity", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "mambu", "target": "d-plus-1-comparison", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "tuum", "target": "intraday-safeguarding-integrity", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "tuum", "target": "books-and-records-at-any-time-no-delay", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "tuum", "target": "daily-reconciliation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "indirect", "evidence": [] }, { "source": "tuum", "target": "third-party-oversight", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "tuum", "target": "segregation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "thought-machine", "target": "books-and-records-at-any-time-no-delay", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "thought-machine", "target": "intraday-safeguarding-integrity", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "thought-machine", "target": "daily-reconciliation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "indirect", "evidence": [] }, { "source": "thought-machine", "target": "d-plus-1-comparison", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "modulr", "target": "account-designation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "modulr", "target": "segregation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "modulr", "target": "third-party-oversight", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "modulr", "target": "daily-reconciliation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "indirect", "evidence": [] }, { "source": "modulr", "target": "books-and-records-at-any-time-no-delay", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "clearbank", "target": "account-designation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "full", "evidence": [] }, { "source": "clearbank", "target": "segregation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "clearbank", "target": "third-party-oversight", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "clearbank", "target": "daily-reconciliation", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "clearbank", "target": "concentration-risk-management", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "clearbank", "target": "settlement-account-safeguarding-not-itself", "type": "supports", "label": "official product materials support due-diligence mapping", "strength": "partial", "evidence": [] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "enforcement-fined", "type": "classified-as", "label": "CBI enforcement action resulted in a monetary fine", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "ie", "type": "located-in", "label": "Irish licensed entity", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "account-designation", "type": "evidence-for", "label": "CBI found the designated safeguarding account was not operational for relevant flows", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "segregation", "type": "evidence-for", "label": "CBI described mixed customer and non-customer funds", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "daily-reconciliation", "type": "evidence-for", "label": "settlement notice described reconciliation deficiencies", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "liability-scoping", "type": "evidence-for", "label": "settlement notice described lack of cash-liability customer records", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "bluesnap-payment-services-ireland-limited", "target": "group-oversight", "type": "evidence-for", "label": "settlement notice described group and oversight issues", "strength": "full", "evidence": [ "https://www.centralbank.ie/news/article/the-central-bank-takes-enforcement-action-against-bluesnap-payment-services-ireland-limited-for-safeguarding-failures, accessed 2026-05-09", "https://www.centralbank.ie/docs/default-source/news-and-media/legal-notices/settlement-agreements/settlement-notice-enforcement-action-against-bluesnap-payment-services-ireland-limited-%28sanctions-confirmed-by-the-high-court%29.pdf?sfvrsn=48af671a_16, accessed 2026-05-09" ] }, { "source": "uab-foxpay", "target": "regulator-revocation", "type": "classified-as", "label": "Bank of Lithuania revoked licence", "strength": "full", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09" ] }, { "source": "uab-foxpay", "target": "lt", "type": "located-in", "label": "Lithuanian EMI", "strength": "full", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09" ] }, { "source": "uab-foxpay", "target": "segregation", "type": "evidence-for", "label": "Bank of Lithuania described segregation and safeguarding failures", "strength": "full", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09" ] }, { "source": "uab-foxpay", "target": "daily-reconciliation", "type": "evidence-for", "label": "Bank of Lithuania described ineffective reconciliation", "strength": "full", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09" ] }, { "source": "uab-foxpay", "target": "governance-1st-2nd-line-separation", "type": "evidence-for", "label": "Bank of Lithuania described management information and internal audit weaknesses", "strength": "full", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09" ] }, { "source": "uab-foxpay", "target": "group-oversight", "type": "evidence-for", "label": "Bank of Lithuania described associated-company access and handling concerns", "strength": "full", "evidence": [ "https://www.lb.lt/en/news/lietuvos-bankas-revoked-uab-foxpay-licence-due-to-serious-and-systematic-breaches, accessed 2026-05-09" ] }, { "source": "biilz-uk-ltd", "target": "regulator-revocation", "type": "classified-as", "label": "FCA cancelled small EMI registration", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ] }, { "source": "biilz-uk-ltd", "target": "uk", "type": "located-in", "label": "UK small EMI", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ] }, { "source": "biilz-uk-ltd", "target": "account-designation", "type": "evidence-for", "label": "FCA found proposed safeguarding account not in the firm name", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ] }, { "source": "biilz-uk-ltd", "target": "segregation", "type": "evidence-for", "label": "FCA concluded adequate safeguarding arrangements were not in place", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ] }, { "source": "biilz-uk-ltd", "target": "liability-scoping", "type": "evidence-for", "label": "FCA notice connects safeguarding obligation to e-money holder funds", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/final-notices/biilz-uk-ltd-2024.pdf, accessed 2026-05-09" ] }, { "source": "currency-matters-limited", "target": "supervisory-notice", "type": "classified-as", "label": "FCA First Supervisory Notice and administration context", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09" ] }, { "source": "currency-matters-limited", "target": "uk", "type": "located-in", "label": "UK authorised payment institution", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09" ] }, { "source": "currency-matters-limited", "target": "segregation", "type": "evidence-for", "label": "FCA notice raised concerns over customer money separation and accounts", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09" ] }, { "source": "currency-matters-limited", "target": "liability-scoping", "type": "evidence-for", "label": "FCA notice raised safeguarding and own-funds concerns", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09" ] }, { "source": "currency-matters-limited", "target": "governance-1st-2nd-line-separation", "type": "evidence-for", "label": "FCA notice raised governance and oversight concerns", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09" ] }, { "source": "currency-matters-limited", "target": "books-and-records-at-any-time-no-delay", "type": "evidence-for", "label": "FCA notice cited lack of bank statements and evidence for customer money position", "strength": "full", "evidence": [ "https://www.fca.org.uk/publication/supervisory-notices/first-supervisory-notice-currency-matters-limited.pdf, accessed 2026-05-09" ] } ], "legend": { "firm-segment": { "color": "#1F77B4", "shape": "round-rectangle", "note": "The regulated buyer and applicant population in scope for the radar." }, "regulator": { "color": "#4B6CB7", "shape": "round-rectangle", "note": "Supervisors, legislators or public authorities that issue the cited regulatory sources." }, "regulation": { "color": "#6A3D9A", "shape": "hexagon", "note": "Binding or forward-looking legal instruments and formal policy statements." }, "standard": { "color": "#2E8B57", "shape": "rectangle", "note": "Supervisory guidance, Q&A, portfolio letters, reviews and interpretive documents." }, "control": { "color": "#F39C12", "shape": "diamond", "note": "Operational safeguarding controls that the legal and supervisory sources require or test." }, "vendor": { "color": "#7F8C8D", "shape": "ellipse", "note": "Named technology, payments or banking-infrastructure vendors in the buyer-guide universe." }, "product": { "color": "#16A085", "shape": "vee", "note": "Specific vendor products mapped to safeguarding-control due-diligence questions." }, "licensed-entity": { "color": "#C0392B", "shape": "octagon", "note": "Named enforcement or supervisory cases used to evidence control-failure patterns." }, "status-class": { "color": "#8E44AD", "shape": "triangle", "note": "Forensic status categories assigned from the source documents." }, "jurisdiction": { "color": "#34495E", "shape": "star", "note": "Home jurisdictions used to locate forensic case nodes." } } }