/retail banking

News and resources on retail banking, consumer finance and reinventing customer experience in finance.

Plaid settles $58 million class action lawsuit

Plaid has settled a $58 million class action lawsuit over claims that the fintech firm passed on personal banking data to third party firms without user consent.

3 comments

Plaid settles $58 million class action lawsuit

Editorial

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.

The settlement encompasses five separate lawsuits combined as one. Each claims that Plaid used consumers’ banking login credentials to gather and distribute detailed financial data without prior consent.

Approximately 98 million people are affected by the settlement. Claimants will be given the option to receive the settlement money automatically through payment platforms such as PayPal and Venmo.

If all 98 million people were to file a claim, each would receive just 60 cents.

Sponsored [On-Demand Webinar] SEPA Inst Mandate: Impacts on Day 1, Day 90 – and beyond?

Related Company

Channels

Keywords

Comments: (3)

Ketharaman Swaminathan

Ketharaman Swaminathan Founder and CEO at GTM360 Marketing Solutions

Gathering online banking creds via phishing backed by user consent is one thing but how the heck does Plaid do so without user consent?

On a side note, this is yet another gentle reminder that personal data is worth peanuts for the guy to whom it belongs and translates to big bucks only in the hands of the firm that uses it for targeted advertising and other pursuits.

Andrew Smith

Andrew Smith Founding CTO at RTGS & ClearBank

This shows that Open Banking access methods are broken - especially if you still enable screen scraping. I know this open banking type implementation globally is very different per jurisdiction, but the consistent thing is users give up / provide a third party with access to bank account data. This is tragically and fundamentally wrong. Users should be sharing data from their own controlled repository which could be a copy of that banking data. This way the user is totally and always in control and banks / platforms like this cannot abuse access. 

Its basics. Time to force banks and all ecommerce to leverage Self-Sovereign Identity principles!

Ketharaman Swaminathan

Ketharaman Swaminathan Founder and CEO at GTM360 Marketing Solutions

Well, 10 years ago, that's how some PFMs worked. But that posed too much friction and PFMs like KUBLAX et al who followed that approach died. And,  OTOH, PFMs like Mint and aggregators like Plaid that used phishing and screen scraping brazely flourished. 

More at my 2011 comment here.

[Webinar] Why real-time payments are a game-changer for corporate banking servicesFinextra Promoted[Webinar] Why real-time payments are a game-changer for corporate banking services