Tourist e-Wallet and Digital Dirham: Great Potential but Significant Challenges
To meet the operational demands of the digital economy and enhance the efficiency of payment systems, the Central Bank of the UAE (CBUAE) has introduced the national digital currency, the Digital Dirham. Recently, the CBUAE discussed four potential use cases for the Digital Dirham, with the development of an electronic wallet for tourists being a particularly prominent topic. The CBUAE recently released the Digital Dirham Primer, a policy report outlining the design principles, policy framework, and initial development steps for the Digital Dirham. In addition to highlighting benefits, challenges, and implementation processes, the report details four use cases for the digital currency, including: Among these, the concept of an electronic travel wallet for tourists has garnered significant attention, given that the UAE attracts millions of international visitors annually, who collectively spend vast amounts on accommodation, shopping, dining, and entertainment. Theoretically, even if just 10% of tourism spending shifts to the Digital Dirham wallet, it could create a substantial economic impact and promote the adoption of the digital national currency. However, launching a tourist e-wallet is not as simple as introducing it to the market and expecting adoption. Most tourists in the UAE rely on Apple Pay, Google Pay, international credit/debit cards, or digital wallets from their home countries, such as UPI (India) or Alipay and WeChat Pay (China). For tourists to adopt a new payment method like the Digital Dirham, it must offer superior value and address inconveniences that existing infrastructure fails to resolve. Key considerations include: The electronic travel wallet scenario is a complex challenge involving multiple factors, including user experience, cost, widespread payment acceptance across various locations, and integration with diverse payment methods. If these elements are effectively addressed, capturing 10% of the tourism spending market share is entirely feasible. Banks and wallet developers must carefully strategize to turn this potential into tangible success.
UAE’s Payment Authentication Revolution: The End of SMS OTP
On July 25, 2025, the Central Bank of the UAE (CBUAE) issued a landmark directive mandating all UAE banks to phase out SMS and email OTPs by March 2026. This pivotal move signals a major overhaul of the payment infrastructure, aiming to standardize in-app biometric authentication across the entire banking ecosystem. For years, SMS and email OTPs have been the go-to method for authenticating financial transactions. However, this approach has increasingly revealed vulnerabilities, including OTP leaks and delays due to inconsistent telecommunications infrastructure. Globally, fraud related to SMS OTPs caused a staggering $6.7 billion in losses in 2021. In the UAE alone, scams surged by 43% year-on-year, impacting over 40,000 individuals in 2023, making SMS OTPs an easy target for cybercriminals. To mitigate risks and enhance the user experience in payments and transactions, the CBUAE has directed the banking sector to adopt safer and more advanced authentication mechanisms integrated into mobile banking applications. The directive mandates all UAE banks to: This means that within the first eight months of implementation, financial institutions must develop a transition roadmap, test, and roll out new authentication systems to fully replace traditional OTPs. Users will no longer receive OTPs via SMS or email; instead, they will approve transactions directly within banking apps using fingerprints, facial recognition, or push notifications. This shift reduces transaction latency, enhances user experience, and strengthens security. Currently, banks like Emirates NBD and ADIB have already adopted biometric login and soft tokens, while many others still rely on traditional OTPs and must urgently upgrade before the deadline. This bold move by the UAE is expected to ripple across the GCC, particularly Saudi Arabia, within the next 12 months. A unified standard for secure payment authentication across the MENA region is likely to emerge, fundamentally transforming the current payment infrastructure. Savyint – Pioneering Strong Authentication Solutions for MENA Payments Amid increasingly stringent payment security and user authentication requirements, particularly with the CBUAE’s new regulations, SAVYINT – a global technology leader in open banking, data security, and authentication solutions – is poised to partner with financial institutions and payment service providers across the MENA region. SAVYINT delivers a comprehensive ecosystem of advanced strong authentication solutions, fully compliant with international standards and leveraging cutting-edge passwordless technologies to elevate user experience: SAVYINT offers a robust suite of authentication solutions for payments and transactions: By combining robust authentication technologies with strict adherence to international security standards such as FIDO2, PSD2, eIDAS, GDPR, and PCI DSS, Savyint’s solutions enable banks, fintechs, and service providers in MENA to rapidly deploy modern, flexible authentication platforms that integrate seamlessly with existing systems and fully comply with CBUAE regulations. Connect with Savyint’s experts today to build a secure and compliant payment ecosystem.
Savyint Group attends Entrust UNRIVALED APAC Partner Bootcamp FY26
From July 22-24, 2025, Savyint Group joined leading technology partners from the Asia-Pacific region in Da Nang, Vietnam, to participate in the UNRIVALED APAC Partner Bootcamp FY26, Entrust’s annual in-depth training program. The APAC Partner Bootcamp FY26, hosted by Entrust – a global pioneer in security and PKI – aims to provide comprehensive training for strategic partners across the Asia-Pacific region. This year, event brought together numerous IT experts, strategic partners and senior Entrust leaders from across the Asia-Pacific (APAC) region. The bootcamp served not only as a platform for exchanging expertise in cybersecurity but also as an opportunity for Savyint Group to reinforce its leadership position, expand its data security and PKI solutions in Vietnam and strengthen international partnerships. Through various sessions, Entrust experts shared insights on critical cybersecurity topics, including: Crypto Security – Unified cryptography management to support compliance and risk management; PKI & CLM – Public Key Infrastructure and Certificate Lifecycle Management; Cyber Risk Prevention – Centralized security and identity verification; nShield5 HSM – Next-generation hardware security modules, enhancing performance and meeting the highest security standards. Notably, the topic “Data Security in the AI and Quantum Era” provided deep insights into challenges and solutions for enhancing data security in the age of artificial intelligence and quantum computing – an area where Savyint Group is actively advancing and holds a strong market position. At the event, Mr. Steve Hoang, CTO of Savyint Group, stated: “Participating in the UNRIVALED APAC Partner Bootcamp FY26 alongside Entrust enables Savyint Group and regional strategic partners to stay ahead of 2026 data security trends and expand our ecosystem of comprehensive security solutions. This is also an opportunity for us to enhance our capabilities to serve clients and increase our influence in the region.” With over 20 years of experience in consulting and deploying PKI, HSM, and digital identity and signing platforms for government, finance, banking, healthcare, and education sectors, Savyint Group is committed to partnering with Entrust to build a secure and sustainable digital ecosystem, meeting the growing demands of customers in the digital era. Event hilights: Day 1: Day 2: Day 3:
Establishing Digital Trust in Banking
As digital services continue to grow, user expectations for security and data privacy are rising. Digital Trust has become a competitive advantage in banking, where financial institutions must not only deliver services but also demonstrate reliability in protecting customers’ personal data, assets and privacy. What is Digital Trust? Digital Trust is the confidence customers place in an organization’s ability to protect data, ensure secure transactions, and comply with regulations. It extends beyond mere trust in a business to include confidence in technology, data management, operational transparency, customer service, and adherence to fair, lawful practices. For example, Public Key Infrastructure (PKI) provides a foundation for secure digital identity, document signing, data encryption, and timestamping—core elements for a secure and reliable digital experience. Broadly, adopting PKI is part of building Digital Trust, reinforcing customer confidence in an organization’s ability to safeguard data, comply with laws, and operate transparently. The Importance of Digital Trust in Banking Digital Trust is critical for financial institutions, as banks handle vast amounts of sensitive information daily, from personal data and transaction histories to financial assets. Strengthening Digital Trust enables organizations to: The Core Pillars of Digital Trust in Banking To build robust Digital Trust, banks must focus on six key pillars: security, transparency, privacy, data integrity, ethical technology use, and regulatory compliance. Each pillar plays a critical role: Protecting customer data from unauthorized access, cyberattacks, and fraud is paramount. Banks should adopt modern security technologies, such as: + Data encryption + Multi-factor authentication (MFA) + Biometric authentication (fingerprint, facial recognition) Privacy goes hand-in-hand with security. Banks must minimize unnecessary data collection and sharing while empowering users with transparent, understandable privacy policies and control over their data. Customers must know how their data is used, who has access, and what safeguards are in place. Transparency—from clear privacy policies to timely communication of changes—builds trust. In case of breaches, banks should have response mechanisms in place, including timely customer notification, damage control, and fair compensation if needed. User-friendly and secure authentication is essential for trusted digital transactions. Banks should implement solutions such as: + Biometric authentication + Blockchain-based identity management + Strong authentication to prevent unauthorized access A secure digital identity process also helps banks comply with KYC requirements while ensuring customer convenience and data protection. Customers expect up-to-date, accurate data—from account balances to transaction records. Banks should ensure this by: + Conducting regular audits + Establishing clear data verification processes + Maintaining transparent reporting systems Artificial Intelligence (AI) and Machine Learning (ML) can further enhance reliability by detecting anomalies, automating data handling, and ensuring data consistency. As AI becomes more integrated into banking—from loan suggestions to credit scoring—banks must ensure: + AI systems provide fair, unbiased recommendations, without discrimination based on gender, age, geography, or income (e.g., not denying loans solely based on rural residence). + Use of Explainable AI, allowing customers to understand decisions made. + Clear feedback and appeal channels if customers disagree with AI-driven decisions. To establish Digital Trust, organizations must adopt technology platforms recognized for compliance with national and international standards, ensuring secure, transparent, and verifiable digital transactions. For example, PKI enables secure encryption, digital signing, and identity verification. Leveraging services from trusted providers and adhering to standards like eIDAS, FIPS, GDPR, and ISO/IEC 27001 demonstrates a serious commitment to protecting customer data and privacy. Digital Trust is now a strategic priority in the digital transformation of financial institutions. Building it through robust security, transparency, privacy, data integrity, and ethical technology use is essential for banks to maintain a leading position. Establishing Digital Trust with SAVYINT SAVYINT is a global technology company pioneering open banking, data security, and protection across critical sectors like Finance-Banking, Government, Manufacturing, Telecommunications, Healthcare, Education, and Media. Beyond being a trusted service provider, SAVYINT offers electronic authentication services, including timestamping and Qualified Trust Services (QTSP) for digital signing and electronic seals through its QTSP Remote Signing solution. With extensive experience in designing, deploying, and operating electronic identity systems (eKYC), digital signing, data encryption, and PKI and CA systems (national, internal and public CAs) for numerous banks and financial institutions, SAVYINT provides a comprehensive suite of solutions to establish Digital Trust: Connect with SAVYINT experts HERE to establish Digital Trust for your organization!
Enhancing User Experience (UX) in Open Banking
According to a report by Toptal, 90% of users abandon an application if they face difficulties while using it. Therefore, user experience (UX) is always a top priority for service providers—especially in the Open Banking ecosystem, where UX plays a key role in attracting and retaining customers. What are User Experience (UX) and User Interface (UI)? User Experience (UX) refers to the overall experience a user has with a product, website, mobile application, or specific service. It encompasses not only the use of features but also other aspects such as the user’s knowledge, emotions, and the value derived from interacting with the product, website, application, or service. A good UX enables users to navigate, operate, and engage with a product or service effortlessly. Conversely, a poor UX results in difficulties, complex operations, and confusion for users. User Interface (UI) refers to the layout, images, videos, colors, fonts, text, and navigation buttons—elements that users can visually perceive and interact with when using a website or application. User Experience in the Open Banking In the Open Banking ecosystem, user experience typically encompasses the entire customer journey when interacting with an application—from registration, shopping, payments, renewals, to post-sale support. These applications are built on open APIs, enabling seamless integration of various services and features. As a result, users can perform transactions such as deposits, transfers, or payments without repeatedly entering card or account information. Additionally, third-party payment initiation service providers (PISPs) can execute transactions on behalf of customers, delivering a convenient, secure, and consistent experience across the system. How to Improve User Experience in Open Banking? There are several ways to enhance user experience in Open Banking. Below are some fundamental suggestions for organizations to implement: User experience (UX) is a critical factor in the success of Open Banking solutions. A great UX stems from simplicity, transparency, and logical navigation. Enhancing accessibility, using user-friendly language, and prioritizing customer support are excellent strategies for organizations to improve user experience. About Savyint Open Banking Platform Savyint is a global technology leader pioneering Open Banking, data security, and cybersecurity. With exceptional expertise in strategic consulting, technical architecture design, standards development, and integration workflows for Open Banking, combined with extensive experience in deploying electronic identification, digital signing, data encryption, and Public Key Infrastructure (PKI) systems, Savyint supports financial institutions, banks, government agencies, and enterprises in their secure and efficient digital transformation journey. In building a modern Open Banking ecosystem, Savyint has developed the Open Banking Platform—a comprehensive solution that fully meets legal, technical, and operational requirements, from standardized APIs and connection gateways to TPP management, consent, encryption, and user identification. The platform comprises core solutions: Connect with Savyint’s experts HERE to start your Open Banking strategy!
Top 3 drivers of Open Banking
Open Banking is reshaping the financial industry by creating a flexible, transparent, customer-centric financial ecosystem. Supported by technology, regulatory frameworks and rising customer expectations, participating in the Open Banking ecosystem has become a key strategy for innovation, personalization, and enhancing competitiveness. Meeting customer expectations for personalized experiences Today’s customers demand more than traditional financial services. They seek seamless, instant, and value-added experiences in every transaction—from opening accounts and securing loans to managing personal assets. Open Banking enables financial institutions (FIs) and fintechs to leverage customer data—with consent—to deliver personalized solutions and streamline financial processes. For instance, HSBC allows intermediaries to share business account statements, reducing mortgage approval times. Banks and fintechs can develop innovative, personalized financial solutions in areas like payments, lending, or personal financial management (PFM). Statistics show that over 90% of North American consumers use apps for financial management, from bill payments to financial forecasting and cryptocurrency investments. This signals a growing demand for intelligent, data-driven, personalized financial products. Enhancing connectivity through Open APIs Open APIs are the backbone of Open Banking, enabling financial institutions to expand distribution channels and create multi-party ecosystems by: However, this requires modernizing infrastructure. While fintechs are often built with API-first and cloud-native architectures, many FIs are still undergoing digital transformation. Shifting from traditional value chains to multi-party ecosystems presents significant opportunities but demands strategic technology investments. Customer identity: the foundation for secure digital experiences In Open Banking, Know Your Customer (KYC) processes are not just regulatory requirements but central to customer experience and data security. FIs are modernizing identity systems to: Amid rising cybercrime, many banks have adopted Zero Trust Architecture (ZTA) and Multi-Factor Authentication (MFA) to replace traditional passwords—the weakest link. This reduces identity theft risks and better protects customers. Open Banking is no longer just a technological trend but a driver of financial inclusion. With growing customer expectations, the need for Open API connectivity, and secure identity systems, Open Banking is ushering in a new era for FIs, fintechs, and customers, redefining how the financial industry operates. Comprehensive Open Banking solutions from SAVYINT As Open Banking becomes an inevitable trend, with improving regulatory frameworks globally, SAVYINT introduces a comprehensive suite of Open Banking solutions that meet legal and technological requirements, enabling businesses and organizations to fully harness the potential of Open Banking: With deep expertise in deploying electronic identity systems, digital signatures, data encryption, and public key infrastructure (PKI), SAVYINT has partnered with numerous banks and FIs to provide strategic consulting, technical architecture design, standards development, and integration workflows for Open Banking. As a pioneer in developing architecture models, technologies, and process workflows, SAVYINT confidently delivers comprehensive solutions to realize Open Banking strategies—from API integration, consent management, and secure digital identity to establishing ecosystems with third-party providers (TPPs), ensuring compliance with domestic and international regulations. Contact SAVYINT’s experts today to unlock new opportunities with Open Banking.
NeoBank and Blockchain: Opportunities and Challenges
In the context of rapid digital financial development, the integration of NeoBanks and blockchain technology is drawing global attention due to its potential to revolutionize the financial sector, as seen in the growth of cryptocurrencies and decentralized finance (DeFi). Understanding the impacts, challenges, and potential of these advanced technologies is crucial to mastering the digital financial era. NeoBank and Blockchain NeoBank can be defined as digital banks or challenger banks, without any physical branches or transaction offices. Instead of physical locations, NeoBanks operate entirely online. They typically serve a wide range of customers, from individuals to small and medium-sized enterprises (SMEs), offering services such as payments, money transfers, credit lending, and financial management. With advantages like seamless payment experiences, fast and fully online account setup, and user-friendly app interfaces, more and more users are turning to NeoBanks. According to a report by Statista, the global NeoBank market is projected to reach USD 395 billion by 2026. Blockchain is a data storage technology that organizes information in blocks linked together in an immutable, secure, and transparent chain. Each block contains encrypted data connected to the previous one, forming an unchangeable chain. In finance, blockchain helps reduce fraud, accelerate transactions, ensure security, and support 24/7 risk management. Blockchain has enabled the rise of decentralized finance (DeFi), which eliminates the need for intermediaries like brokers, banks, or exchanges in providing traditional financial tools. Benefits of integrating NeoBank and Blockchain The integration of NeoBank and blockchain offers significant advantages that are shaping the future of digital finance. Challenges in integrating NeoBank and Blockchain Despite its vast potential, this integration faces several challenges. The legal framework for the NeoBank – Blockchain combination remains underdeveloped, posing risks to users and investors. Moreover, cybersecurity is a pressing concern: although blockchain itself is highly secure, NeoBanks still face threats in safeguarding digital assets, as cyberattacks could compromise data and erode user trust. Additionally, the volatility of cryptocurrency markets—with sudden price fluctuations—can affect the financial stability of NeoBank users. Despite these challenges, the combination of NeoBanks and blockchain is expected to create a powerful financial platform that offers comprehensive, efficient, and secure services. Once legal and security concerns are addressed, collaboration and innovation will be key to overcoming obstacles and unlocking the full potential of this integration. While risks remain, the compelling advantages – such as improved operational efficiency, broader financial inclusion, and enhanced security – make the NeoBank – Blockchain partnership a promising path for the future of finance. About the SAVYINT Open Banking Platform SAVYINT is a global technology company at the forefront of Open Banking, data security, and cybersecurity across key sectors including Finance & Banking, Government, Manufacturing, Telecommunications, Healthcare, Education, and Media. More than just a trusted service provider, SAVYINT is also a licensed provider of electronic timestamping services and Qualified Trust Services (QTSP) for digital signatures and e-seals through its QTSP Remote Signing solution. With extensive experience in strategic consulting, technical architecture design, standards development and integration flow deployment for Open Banking initiatives, SAVYINT has developed a comprehensive Open Banking solution platform, fully compliant with regulatory and technical requirements, enabling seamless connectivity and ecosystem building. The platform includes: Get in touch with a SAVYINT expert today to launch your Open Banking strategy with confidence!
Elevating security standards for online banking services in Vietnam
On October 31, 2024, the State Bank of Vietnam issued Circular No. 50/2024/TT-NHNN, establishing regulations on security and confidentiality for online banking services -marking a strategic step in building a robust legal foundation for Vietnam’s digital banking ecosystem. As digital banking services rapidly expand and cyberattacks and data breaches become increasingly common, the banking sector must continuously enhance safety, security, and transparency in all electronic transactions. Circular 50 replaces Circular 35/2016/TT-NHNN and meets the growing demand for higher security amid Vietnam’s strong digital transformation efforts. Effective from January 1, 2025, Circular 50/2024/TT-NHNN applies to credit institutions, foreign bank branches, intermediary payment service providers, and credit information companies. All online banking services must comply with stringent security standards to ensure safety for both banks and their customers. The Circular clearly outlines principles and technical requirements in the design, implementation, and operation of online service systems. Key highlights include: The tightened security standards under Circular 50/2024/TT-NHNN are not merely a legal compliance obligation, but a strategic advantage for banks in the digital age – building greater trust in online services. For credit institutions, the Circular provides strong motivation to invest in IT infrastructure, standardize operational processes, and gradually align with international standards such as PCI-DSS and ISO/IEC 27001- laying the groundwork for deeper integration into the global Open Banking movement. For customers, the Circular enhances trust in digital services and reduces risks associated with online transactions. At present, with the enforcement of Circulars 64 and 50, credit institutions are required to upgrade their systems to ensure stronger security at every level of service. In the long run, compliance with Circular 50 – along with adherence to international standards like PCI-DSS and ISO/IEC 27001, and alignment with strong customer authentication (SCA) requirements under PSD2/PSD3 in the EU—will help elevate Vietnam’s banking sector to global standards, promoting innovation and fostering fair competition.
Savyint & Kryptus: Collaboration to build open banking security standards
Open Banking is experiencing remarkable development in many countries. To ensure that open banking operates effectively and securely, it is particularly important to establish and adhere to a system of technical standards. With their expertise, Savyint and partner Kryptus have collaborated to develop a specific security standard system for each component in open banking. The API Gateway plays a crucial role in securing APIs by providing authentication, authorization, access control, and traffic limiting mechanisms. For the API Gateway, we ensure compliance with European and global regulations such as PSD2/PSD3, FAPI 2.0, CIBA, OIDC/OAuth2, and API Security. Meanwhile, Consent Management utilizes the Strong Customer Authentication (SCA) method as stipulated in PSD2, as well as security standards for key storage on HSM devices that meet FIPS 140-2 Level 3 or higher. The data exchange flows, data signing in transaction flows, or user data sharing are encrypted with the highest security level, ensuring integrity and safe authentication with JWS (JSON Web Signature) and JWT (JSON Web Token). End-to-end data encryption is also strictly adhered to with JWE (JSON Web Encryption) and RSA-PSS (Probabilistic Signature Scheme). In Vietnam, with the specific regulations for implementing open banking officially in effect, the standards set by Savyint and Kryptus fully comply with the regulations on Open API, API Security (according to Appendices 1 and 2 of Circular No. 64/2024/TT-NHNN), as well as regulations on transaction encryption, digital signing, and user authentication (according to Circular No. 50/2024/TT-NHNN). This is a promising market for the development of open banking in the near future. “We are proud to contribute our expertise in building a secure and regulation-aligned open banking ecosystem in collaboration with Savyint,” said Thierry Martin, Kryptus Managing Partner. “Kryptus has already achieved FIPS 140-2 Level 3 and the Common Criteria EAL4+ certification for HSM, strengthening our compliance across various global environments, as the fintech and banking sectors require enhanced key protection. Our joint solutions not only fully comply with European and international standards such as PSD2 and FAPI, but also with Vietnam’s specific regulatory frameworks, including Circulars 64/2024 and 50/2024. This partnership reflects our long-term commitment to helping financial institutions meet compliance obligations while accelerating digital transformation. We believe this collaboration will pave the way for broader regional adoption and global expansion of secure open banking models.” The swift, solid and well-directed steps taken by the two companies in providing a secure and safe open banking solution will be an advantage for Savyint and Kryptus to conquer markets in the region and globally. About Savyint SAVYINT is an IT security company in Sydney, Australia, with an R&D Center in Hanoi and international offices in Singapore, Dubai, Ho Chi Minh City (Vietnam), and Sofia (Bulgaria). With over 20 years of experience, we consistently rank among the leading global information technology enterprises, providing software platforms, system solutions, and services for digital transformation. Our expertise spans Open Banking solutions, information security, and FinTech, particularly in the Finance – Banking & FSI, Government, Manufacturing, Telecommunications, Healthcare, Education, and Media sectors. About Kryptus Kryptus is a Swiss and Brazilian multinational company specializing in cybersecurity and cryptography solutions. Since 2003 it has been delivering highly customizable, reliable and secure encryption and cybersecurity solutions. For over twenty years, we have served public and private sector clients in Latin America, Europe, the Middle East and Africa for critical applications, with the best level of products and services for mission-critical applications.
Open Banking takes flight in Vietnam
On December 31, 2024, the State Bank of Vietnam officially issued Circular No. 64/2024/TT-NHNN, setting the regulatory foundation for Open Banking through the implementation of Open Application Programming Interfaces (Open API) within the banking sector – a key driver of digital finance innovation globally. Open Banking is a new financial ecosystem in which banks and financial institutions allow third parties (fintech companies, financial service providers, etc.) to access customer data, with customer consent, to develop new services such as personal financial management, integrated payments, etc., through Open Application Programming Interfaces (Open APIs). Amid the rapid global development of Open Banking, in Vietnam, the State Bank of Vietnam issued Circular 64, effective from March 1, 2025, which is considered a legal tool paving the way for establishing a controlled, secure, and transparent data-sharing infrastructure, fostering innovation in the financial and banking sector. Key highlights in Circular 64: Accordingly, the Bank must comply with API security technical standards as stipulated in Annex 01 and Annex 02 issued with Circular 64/2024: These regulations have a profound impact on the development of Open Banking in Vietnam. Most crucially, they establish a clear and consistent legal framework for the secure and controlled connection, sharing, and processing of customer data, thereby laying the foundation for building innovative, personalized financial products and services. This enables the realization of comprehensive digital banking goals by allowing third parties to access user data with user consent. This is the key factor in forming an expansive, flexible, and customer-centric open banking ecosystem. Simultaneously, these regulations create significant opportunities for the Fintech community to engage more deeply in the financial ecosystem, enhancing the provision of new and innovative services. In the initial phase, financial institutions may face challenges in adapting. However, the issuance of Circular 64 fundamentally provides a robust legal foundation, serving as a springboard for building a modern Open Banking ecosystem in Vietnam, where data is leveraged and managed rigorously, with users at the center of all financial services.