🇸🇦 Live Crypto & Digital Assets

SAMA Open Banking Policy and Framework

SAMA framework for open banking covering API standards, data sharing consent, and third-party provider accreditation. Applies to banks and fintech companies operating in Saudi Arabia.

Rules extracted

Obligations decomposed

4.6x

Avg obligations per rule

🇸🇦 Saudi Arabia

Jurisdiction

What AuditDSS covers

Source

Regulation

Extracted

Rules

Decomposed

Obligations

4.6x

Decomposition ratio

Each rule is decomposed into an average of 4.6 atomic obligations — the smallest testable units that can be independently violated.

Fully extracted & scored

All 46 obligations have been decomposed, titled, risk-scored, and embedded for semantic matching.

Risk scoring

Every obligation in SAMA Open Banking is scored across independent risk dimensions:

Obligation Weight

How critical within the regulatory framework

Violation Likelihood

How often breached in practice

Enforcement Evidence

Regulator enforcement history and penalties

Cascade Dependency

How many obligations depend on this one

Regulatory details

Full title: SAMA Open Banking Policy and Framework
Regulatory body: Saudi Arabian Monetary Authority
Jurisdiction: 🇸🇦 Saudi Arabia
Document type: regulation
Effective date: January 1, 2021
Industry: Crypto & Digital Assets

Who this applies to

SAMA-licensed banksthird-party providers (AISPs/PISPs)fintech companiespayment service providers

Key requirements

mandatory bank participation
TPP licensing
customer consent management
FAPI security profile
mutual TLS
strong customer authentication
API standardization
account information services
payment initiation services
data protection (PDPL compliance)
Open Banking Lab testing
24-hour breach notification

Frequently asked questions about SAMA Open Banking

What is SAMA Open Banking?

SAMA framework for open banking covering API standards, data sharing consent, and third-party provider accreditation. Applies to banks and fintech companies operating in Saudi Arabia.

Who does SAMA Open Banking apply to?

SAMA Open Banking applies to SAMA-licensed banks, third-party providers (AISPs/PISPs), fintech companies, payment service providers.

How many obligations does SAMA Open Banking contain?

AuditDSS has decomposed SAMA Open Banking into 46 atomic obligations from 10 rules. Each obligation is independently testable and risk-scored.

What are the key requirements of SAMA Open Banking?

The key requirements include: mandatory bank participation, TPP licensing, customer consent management, FAPI security profile, mutual TLS, strong customer authentication, API standardization, account information services, payment initiation services, data protection (PDPL compliance), Open Banking Lab testing, 24-hour breach notification.

How can I assess my SAMA Open Banking compliance?

Upload your compliance policy to AuditDSS. The platform maps your document against all 46 SAMA Open Banking obligations using deterministic AI scoring — not checklists or LLM summaries. You get a risk-scored gap analysis showing exactly which obligations are covered, partially covered, or missing.

Which jurisdiction enforces SAMA Open Banking?

SAMA Open Banking is enforced in Saudi Arabia by Saudi Arabian Monetary Authority.

When did SAMA Open Banking come into effect?

SAMA Open Banking became effective on January 1, 2021.

What industry does SAMA Open Banking apply to?

SAMA Open Banking is primarily relevant to the Crypto & Digital Assets industry. AuditDSS covers 80 regulations in this industry sector.

Build a SAMA Open Banking compliance pack

Don't have a compliance policy yet? AuditDSS generates a complete compliance pack for SAMA Open Banking — alone or combined with other regulations your business needs. Every clause is mapped to specific obligations.

Policy

High-level commitments and governance framework covering SAMA Open Banking requirements.

Procedures

Step-by-step operational procedures to implement each policy commitment.

Forms & checklists

Ready-to-use forms, registers, and checklists for day-to-day compliance operations.

Multi-regulation

Combine SAMA Open Banking with other regulations into a single unified compliance pack for your business.

Build SAMA Open Banking compliance pack

Already have a policy? Assess it against SAMA Open Banking

Upload your document

Upload your compliance policy, program manual, or operational document. AuditDSS accepts any text-based document.

AI maps against 46 obligations

Your document is scored against every obligation in SAMA Open Banking. Each claim is mapped to the obligation tree and evaluated for coverage.

Risk-scored gap report

Receive every gap ranked by risk priority with remediation guidance, enforcement evidence, and cascade impact analysis.