FAQ – Frequent Asked Questions
GeneralWhat is Open Banking?
Open Banking is an initiative that allows customers to securely and transparently share their banking data with licensed Third-Party Providers (TPPs). This enables customers to benefit from advanced financial services such as account aggregation, budgeting tools, and direct payment initiation from external applications—without needing to log in to their bank.
What is PSD2?
PSD2 (Payment Services Directive 2) is a European Union directive that regulates payment services and requires banks to provide controlled access to account data for licensed third-party providers. It enhances online payment security and consumer protection, while promoting competition and innovation in the financial services market.
What is the BKT API Program?
The BKT API Program is a technical interface to access BKT data. You can connect via our Developer Portal. It gives you as a business a chance to build and/or expand your own application using the data of a specific BKT customer. To find out how to connect to the BKT API Program and what you can do with it, take a look at our Getting Started Guide.
Is the BKT API Program PSD2 compliant and what are the differences?
The European Banking Authority (EBA) has finalized the Regulatory Technical Standards for PSD2. The BKT API Program is going to confirm the RTS and aims to offer what PSD2 asks for and is technically based on the OAuth2 standard.
How secure is the BKT API Program and how is unauthorized access prevented?
Data security is a big deal for us. We use security standards like OAuth2, and OpenID Connect to authenticate users, and our documentation is public via OpenAPI standard. To prove the BKT API Program security, we perform API penetration tests on a regular basis. We use proven industry standards like REST for our APIs. And of course, we always need approval from customers before providing you with access to customer data or functionalities.
How do I create my developer account?
For the moment, you need to send an email to openbanking@bkt.com.al along with the following documents:
- Your PSD2 test certificate
- Your redirect URL to be used after successful login
You’ll find all the documentation you need to get started here on the Account Information Service. If you haven’t already done so, it’s a good idea to get familiar with the documentation and sample applications on the site. Make sure to try out the API Explorer, have a look at our test personas, and try to send some simple requests using the Swagger Explore.
What are the Terms and Conditions (T&Cs) for using the Developer Portal?
Please find the Developer Portal Terms and Conditions here. Developer Portal T&Cs include regulations, such as: Admission Requirements and Process, Conduct and Usage Restrictions, Data Protection, Security Requirements, Intellectual Property, Warranty and Liability, Term and Termination and Miscellaneous.
What does it cost to use the BKT API Program?
Signing up to the Developer Portal and testing with it is free of charge.
Where to place a feature request?
You can easily place feature requests by contacting at email address : openbanking@bkt.com.al
How do I get a new password?
Click on the 'forgot password' and follow the simple steps.
CanI upload my own test transactions?
Yes, you can add your own test transactions. Please see the documentation for more information.
Usage Criteria
How much time does it take an application to be approved?
We’d like to help you get off the ground quickly, so we aim to review and respond to your application within two weeks. Please note that we’ll be reviewing your organization as well as your product/use case.
How do I switch from test data to live data?
To switch from sandbox to production mode, you’ll send the request and provide some additional information about your company and your use case. Once we’ve given you final approval for access, you’ll receive the production key that lets you switch from test data to real data.
Technical Details
What is the available scope of the BKT API Program?
All BKT API Program functionality is covered by one or more scopes to enable a fine-grained permission model for the end user. The user is asked in the OAuth 2.0 flow to grant access to a given list of scopes. The user is also able to revoke the granted scopes or permissions. As a general rule, choose the most restrictive scope possible and avoid requesting scopes that your app doesn’t need.
What kind of accounts does the BKT API Program serve?
The scope of the BKT API Program includes retail accounts.
How do I use the API Information?
The API Information enables you to quickly make raw BKT API Program calls and see the data returned by these calls.
What is OAuth 2.0?
OAuth 2.0 is an open protocol that enables secure authorization in a simple and standard method from web, mobile and desktop applications. To get an access token for the Deutsche Bank API Program, it’s helpful to understand how OAuth 2.0 works. For more information, please refer to OAuth 2.0
What’s a PIN?
PIN is an abbreviation for Personal Identification Number. It is a 4-6-digit alphanumeric code that, in common log in processes, is used as a password.
What is a user, end user and customer?
User, end user and customer are used synonymously. A user or end user is the customer with at least one user account. A user must log in to approve the required permissions (scopes) on the consent screen. Approving the required permissions allows your app to consume the customer's approved data with our APIs.
Errors and Bugs
What does this HTTP status code mean?
Find a brief explanation of HTTP status codes below:
| HTTP Status Code | Description | Error Code |
|---|---|---|
| 401 | Invalid access token | 1 |
| 403 | Authorization wasn't successful | 2 |
| 403 | Not found — Bad endpoint | 4 |
| 423 | The application has sent too many requests in a given amount of time | 5 |
| 500 | Server error detected. ID: {123} | 3 |
How do I report a bug?
To do this, please contact at: applicationsupport@bkt.com.al.
Couldn’t find an answer to your question?
- Get in touch with applicationSupport@bkt.com.al.