EPC Issues RFI for Fraud Information Sharing Platform

The European Union’s forthcoming Payment Services Regulation (PSR), slated for early 2028, introduces stricter anti‑fraud obligations for payment service providers (PSPs). Regulators expect PSPs to enhance transaction monitoring, retain detailed fraud logs, and actively share suspicious activity data with peers. As cross‑border payments grow in volume, isolated fraud‑prevention tools become less effective, prompting a shift toward collaborative intelligence. Industry analysts predict that a unified data‑exchange framework could reduce fraud losses by up to 15 percent across the SEPA region. Regulators also expect faster reporting cycles to curb emerging threats.

In response, the European Payments Council (EPC) has issued a Request for Information (RFI) to identify operators for a central fraud‑information hub under its Fraud Information Distribution Arrangement (Frida) scheme. The EPC is evaluating a hub built on the open‑source Malware Information Sharing Platform (MISP) or comparable proprietary solutions, aiming for a common set of standards, APIs and governance rules. A centrally managed repository would enable real‑time alerts, threat‑intel enrichment, and automated scoring, helping PSPs meet PSR‑mandated monitoring thresholds while preserving data privacy across SEPA networks. Interoperability with existing SEPA messaging standards is a core design goal.

The RFI opens a lucrative window for fintech vendors, cybersecurity firms, and cloud providers capable of delivering scalable, secure sharing platforms. Successful bidders will gain early access to a pan‑European network, positioning them as preferred partners for compliance‑driven PSPs. Moreover, the EPC’s timeline—responses due by 20 February and platform rollout ahead of the 2028 PSR—compresses development cycles, encouraging rapid prototyping and collaborative standards‑setting. As the ecosystem coalesces, the central hub could become the de‑facto baseline for fraud intelligence, influencing future EU‑wide initiatives beyond payments. Long‑term governance will likely involve a multi‑stakeholder board to ensure neutrality.