Frequently asked questions

Open Banking allows developers to build applications and services around banks based on Open APIs. ICA Banken Open Banking pages and Developer Portal invites developers and companies to innovate and build services together with us, creating the next generation of digital services for ICA Banken’s customers through the use of Open APIs

API stands for application programming interface and is a technique for sharing information between online services and applications.

Open Banking Customer safety is our first priority. Open Banking is built on EU PSD2 regulation guidelines and puts the customer rights and security in focus.

Open banking relies on secure date-sharing practices using proven, secure technology such as programming interfaces (API:s) and encryption in order to ensure that all customer data is protected. Furthermore, regulation requires all third party providers to undergo strict security assessments and comply with strict privacy and data protection standards.

PSD2 (Payment Services Directive 2) is an EU Directive regulating payment services. Among other things, PSD2 regulates access from Account Information Service Providers (AISP) and Payment Initiation Service Provider (PISP) to payment accounts held at Account Servicing Payment Service Providers (ASPSPs).

EU has issued the PSD2 regulation that strives to make payments safer, increase consumer protection, foster innovation and competition while ensuring an equal playing field for all market players.

PSD2 stipulates that:

• The customer can grant third-party service providers access to the customers payment account information at the customers’ bank
• The customer can grant third-party service providers permission to initiate payments from the customers ICA Banken bank accounts
• Authentication processes related to payment account information and payment transactions must adhere to updated rules on strong customer authentication.

ICA Banken makes this possible by having open APIs that allow 3rd parties to integrate their services with ICA Banken and by extension, allowing customers to use 3rd party services

Open APIs enables Open Banking which is a broader term covering access via open APIs to banks services in general, while PSD2 concerns only access to payment accounts.

If you want to delete your developer account you need go to our Help Center and contact us, and we will help you with this. 

You can find our available APIs in our APIs.

Please read ICA Bankens terms of use here.

ICA Banken is following the Berlin Group standard for our APIs. Read more about Berlin Group Standard here.

Username need to be less than 21 characters. We recommend using only lowercase and no special characters.

The current version of the Sandbox APIs returns the same data response for a request, independent of the parameters which are sent in the request. We are providing you with different test cases to access different test user’s data.

For more information on how to do your testing in Sandbox environment please log in to developer portal, select Sandbox API you’re interested in and follow instruction provided in “Documentation” tab on API store page.

To be able to use the production APIs your organization needs to have a license from a Financial Supervisory Authority (FSA) within the EU and a valid eIDAs certificate of the type QWAC, issued by a Qualified Trusted Service Provider (QTSP).

We trust only Production certificate currently. You can register with production certificate and callback to localhost during development. You can later on ask ICA Banken by sending a request via Help Center to change the call back.

Yes, multiple callback Uri´s are supported. More information is available when sign in on Developer Portal under Register Certificate Tab.

Yes, you can update/renew your certificate. We have published new REST API for update/renew your PSD2 certificate. Please find more details on how to in “Register Certificate Production” tab in your developer account or in “Documentation” tab, on API store page.

There is no maximum limit but if you add more than 7 applications to your account in the Developer Portal you need to zoom out your screen resolution to 90 % to be able to select application you wish to use and continue to the next step, which is to subscribe and register your certificate. Work continues to improve this functionality in our future releases.

We recommend deleting application that you no longer use.

Yes, you can delete your application when singIN on Developer Portal and then select ‘Application’ tab.

Yes, you can see registered details and do callbackURI update by using new REST API published on API store. Please find more details on how to in “Register Certificate Production” tab in your developer account. We have enabled functionality for you to change your callback URI when needed. It is in our development plan, to offer more features that can improve the user experience as it is important to us.