The EU Payment Services Directive (PSD2) aims to enhance competition in otherwise traditional and closed industries. A draft of the new Payment System Act, transposing PSD2, was recently released for public consultation. The draft defines the information that banks must forward to third parties for each category of payment services and sets limits on forwarding more information than is expressly requested from a bank.
The European Commission's recent communication shows that only two member states have adopted the national legislation required to implement the EU General Data Protection Regulation. Others, Croatia included, are at different stages of the process. To meet the May 25 2018 deadline, Croatia should promptly address its national approach to open issues – in particular, its policies surrounding administrative fines.