A Fingerprinted Future for Retail Payments – Are You Ready to Join?

Mutual Trust Bank (MTB), a leading private commercial bank headquartered in Dhaka, Bangladesh, has forged a strategic partnership with Norway’s IDEX Biometrics to introduce cutting-edge biometric payment cards to the Bangladeshi market. This collaboration aims to revolutionize payment security by integrating fingerprint authentication technology directly into physical payment cards, enhancing both convenience and security for cardholders.

The initiative, leveraging IDEX Biometrics’ advanced IDEX Pay solution, represents a significant milestone in the realm of financial technology (fintech) in Bangladesh. With the proliferation of digital transactions and the growing concern over cybersecurity, MTB is taking proactive measures to ensure the safety and integrity of its payment ecosystem. By incorporating fingerprint sensors into their payment cards, MTB aims to provide an additional layer of security that goes beyond traditional PIN-based authentication methods.

The concept of biometric payment cards is not entirely new, as several financial institutions around the world have already embraced this innovative technology. However, the adoption of biometric authentication poses its own set of challenges and considerations. One key issue is the reliability and accuracy of fingerprint recognition technology. While fingerprint sensors offer a convenient and intuitive way to authenticate transactions, they are not without their limitations. Factors such as environmental conditions, finger placement, and sensor calibration can all impact the performance of biometric authentication systems.

Moreover, there are concerns surrounding the privacy and data security implications of biometric authentication. Storing and processing sensitive biometric data, such as fingerprints, raises privacy concerns and necessitates robust security measures to prevent unauthorized access or misuse. Financial institutions must adhere to stringent regulatory standards and implement robust encryption protocols to safeguard biometric data against potential breaches or cyberattacks.

Despite these challenges, MTB remains optimistic about the prospects of biometric payment cards in Bangladesh. Syed Mahbubur Rahman, managing director and CEO of MTB, expressed confidence that the introduction of biometric payment cards will attract new customers and increase card usage among existing customers, thereby empowering the people of Bangladesh financially. Rahman emphasized the bank’s commitment to leveraging innovative technologies to enhance the customer experience and strengthen security across its payment ecosystem.

For IDEX Biometrics, the partnership with MTB represents a significant milestone in its expansion strategy in Asia. With a growing demand for secure and convenient payment solutions, particularly in emerging markets like Bangladesh, IDEX Biometrics is well-positioned to capitalize on the opportunity presented by the adoption of biometric payment cards. Catharina Eklof, Chief Commercial Officer (CCO) at IDEX Biometrics, highlighted the company’s strategic focus on growth markets in Asia, underscoring its commitment to driving innovation and advancing financial inclusion through biometric authentication technology.

Biometric payment cards represent a promising advancement in payment technology, offering enhanced security and convenience for users. By requiring fingerprint authentication for transactions, these cards provide an additional layer of protection against fraud and unauthorized use, reducing the risk of financial losses for both consumers and merchants. Furthermore, the seamless and user-friendly experience of biometric authentication simplifies the payment process, eliminating the need to remember PINs or carry physical cards. Despite initial concerns, the technology has the potential to revolutionize the way transactions are conducted, offering a secure and efficient alternative to traditional payment methods.

However, there are valid concerns regarding privacy, reliability, and user acceptance that need to be addressed before biometric payment cards can achieve widespread adoption. The storage and processing of biometric data raise privacy concerns, as users may be hesitant to trust external devices with their sensitive information. Additionally, reliability issues such as false positives or failures to recognize fingerprints accurately may undermine user confidence in the technology.

Furthermore, user resistance and unfamiliarity with biometric authentication could slow down the adoption process, highlighting the importance of education and transparency in promoting acceptance and trust among consumers. As merchants onboard this technology, it’s essential to prioritize privacy, reliability, and user education to ensure the successful implementation and widespread adoption of biometric payment cards.

The collaboration between MTB and IDEX Biometrics marks a significant step forward in the evolution of payment security and fintech innovation in Bangladesh. While the adoption of biometric payment cards presents its own set of challenges, the potential benefits in terms of enhanced security, convenience, and financial empowerment are compelling. As technology continues to evolve and reshape the financial landscape, partnerships like this one pave the way for a more secure and inclusive digital economy.

london, willis building, reflection-3529954.jpg

This Article is brought to you by

Loopline Media

Catch up with the Author

Facebook-f Twitter Linkedin

Subscribe Now to Get Regular Updates

Search

Post-Brexit: data protection
Card processor sends sensitive data to wrong address
24 August 2022

Worldline SA subsidiary Payone GmbH has been accused of breaching data protection rules after it sent sensitive employee payroll information to the wrong address by accident. The Worldline Group holdS a 60% stake in the Frankfurt based company who have a small UK market presence.

In June 2021, one of Payone GmbH’s ex UK employees (the data subject) received a “potential data breach notification” from the firm advising him that his salary, National Insurance data, nationality (Special Category Data) was amongst various bits of information sent to an incorrect home address.

This included personal information such as the former employees name, age and address.  It also included details such as the date of birth and the amount of annual work bonus he received in his bank account amongst other identifiable data.

Payone GmbH confirmed that this document was sent out in error following an employee making a mistake when re-entering data processed by their third-party payroll provider.  The error arose when the employee was fulfilling an Article 15 GDPR request. The error was spotted by the data subject when he noticed in an email version of the document that the postal address was incorrect. An attempt to notify Payone GmbH of the error went in vain as the document was already irretrievably despatched.

The data subject was alarmed with the incident which exposed him to the possibility of fraudulent activity, amidst reasonable fears his data could end up on the dark web and used by criminals.  Habitually resident in the UK he complained to the Information Commissioner’s Office (ICO) in June 2021. He similarly raised the concern in Germany via The Hessian Commissioner for Data Protection and Freedom of Information (HBDI).

The ICO reprimanded Payone GmbH for the error in their final decision letter.
Similarly, the HBDI cited a violation of Article 5(f) of the General Data Protection Regulation (GDPR) relating to integrity and confidentiality.

The ICO stated in their July 2021 findings that Payone GmbH, “should take steps to ensure that all personal data records are accurate and up to date. Holding inaccurate information, such as addresses, does increase the risk of personal data breaches and poses risks to the security of information”.

The HBDI confirmed in their October 2021 findings that Payone GmbH had taken remedial action. They concluded that a monetary fine would not be imposed on Payone GmbH as they had taken technical and organisational steps in response to the data breach. Data subjects could now request their data in an autonomous portal.

The GDPR, which came into effect in 2018, gave the Information Commissioner’s Office greater powers to tackle data breaches. The new ‘UK GDPR’ charts its own course after Brexit whilst seeking to maintain EU GDPR adequacy.  In extreme scenarios, organisations face penalties of up to £20m or 4 per cent of their global worldwide turnover, whichever is more.

In the years prior to GDPR, the ICO fines were capped at £500,000.

The data subject said: “I am just glad I spotted it; they were going to resend the document again to another wrong address. Prior to Brexit the process would have been commenced via the ICO who in turn would liaise with the HBDI on the data subjects’ behalf; but I found myself communicating with both authorities separately which was an additional step but in the end was surprisingly
effective. Unfortunately, Payone GmbH again sent my incorrect address to the
Workers Pension Trust in January 2022, and documents yet again went to the wrong address. In my opinion they have not learned from the first time and my complaint is sitting with the ICO yet again”.

The former employee is pursuing a remedy under Article 82 UK GDPR via
the Court’s of England & Wales.

Extraordinary Experiences

Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Our Core Values

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.
  • Locavit liberioris possedit
  • Diremit mundi mare undae
  • Spectent tonitrua mutastis

We use cookies to improve user experience and analyse website traffic. By clicking ‘Accept’, you agree to our website’s cookie use as described in our Privacy Policy.

Accept
Decline
Accept
Decline