Open Banking Specifics in Denmark

# Authentication flows and SCA

Danish banks primarily use redirect‑based OAuth 2.0 flows with MitID used as the default Strong Customer Authentication (SCA) mechanism for both private and corporate customers by the vast majority of banks. MitID requires users to enter their user ID on a web page hosted under the bank's subdomain of mitid.dk. Some banks (e.g., Danske Bank) also support SCA via their mobile apps, enabling automatic app-to-app redirection when authentication is initiated from the same device where the bank's mobile app is installed.

# Major Banks (ASPSPs)

The most widely used Danish ASPSPs, in order of significance, are:

• Danske Bank
• Nordea
• Jyske Bank
• Sydbank
• Nykredit Bank
• Spar Nord Bank
• Arbejdernes Landsbank

Full list of banks (as per EBA) is available here (opens new window).

# Payment Specifics

All Danish banks support domestic credit transfers in DKK and SEPA Credit Transfers in EUR. However, EUR accounts are not common and some banks do not allow payment forom accounts held in DKK. Also authorisation flows for SEPA payments may differ from domestic credit transfers, e.g., require authorisation using MitID while domestic payments can be confirmed with the bank's mobile app supporting automatic app-to-app redirection for smoother UX.

# Specifics per ASPSP

# Arbejdernes Landsbank

In its open banking interface, Arbejdernes Landsbank uses (like other banks relying on the BEC (opens new window)'s tech stack) a redirect-based authentication flow with SCA via MitID if the MitNykredit app is not installed on the device initiating authentication. If the app is installed, app-to-app redirection is used instead.

# Danske Bank

In its open banking interface, Danske Bank uses a redirect-based authentication flow with SCA via MitID if the Danske Mobile Banking app is not installed on the device initiating authentication. If the app is installed, app-to-app redirection is used instead.

# Jyske Bank

In its open banking interface, Jyske Bank (like other banks relying on the Bankdata (opens new window)'s tech stack) uses a redirect-based authentication flow with SCA via MitID.

# Nordea

Nordea's open banking interface uses redirect flow. On the Nordea's authentication web page, users are to choose between MidID, Nordea ID app and Nordea ID device. Private customer are mostly using MitID while business customers ofter use Nordea ID app.

For the business users Nordea provides multiple account types managed through different systems. Open banking APIs differ for this systems and correspondingly when using Enable Banking API end-users have to choose different "brands" depending on the system they use. Available the options are:

• Nordea (for the users of Nordea Business (opens new window), which is used mostly by SME customers),
• Nordea Corporate (for the users of Nordea Corporate Netbank (opens new window), which is mainly used by larger companies),
• Norde First Card (for the users of Nordea First Card (opens new window) providing payment cards for businesses).

# Sandbox Availability

Nordea provides a sandbox environment suitable for end-to-end testing including authorisation flows, account information retrieval, and initiation of payments.

It is available through the Enable Banking API's sandbox environment. Please refer to the Sandbox Credentials section for the credentials to be used for authentication in the Nordea sandbox.

The sandbox environment is also available for Nordea Corporate and Nordea First Card.

# Nykredit Bank

In its open banking interface, Nykredit Bank (like other banks relying on the BEC (opens new window)'s tech stack) uses a redirect-based authentication flow with SCA via MitID if the MitNykredit app is not installed on the device initiating authentication. If the app is installed, app-to-app redirection is used instead.

# Saxo

Saxo Bank operates in Denmark and provides Open Banking services. As Saxo Bank does not provide regular payment accounts, their Open Banking services do not need to comply with PSD2 requirements.

# Sandbox Availability

Saxo provides a sandbox environment suitable for end-to-end testing including authorisation flows and account information retrieval.

It is available through the Enable Banking API's sandbox environment. Please refer to the Sandbox Credentials section for more information.

# Spar Nord Bank

In its open banking interface, Spar Nord Bank (like other banks relying on the BEC (opens new window)'s tech stack) uses a redirect-based authentication flow with SCA via MitID if the Spar Nord app is not installed on the device initiating authentication. If the app is installed, app-to-app redirection is used instead.

# Sydbank

In its open banking interface, Sydbank (like other banks relying on the Bankdata (opens new window)'s tech stack) uses a redirect-based authentication flow with SCA via MitID.

# VestjyskBank

VestjyskBank operates in Denmark and provides Open Banking services.

# Sandbox Availability

VestjyskBank provides a sandbox environment suitable for end-to-end testing including authorisation flows, account information retrieval, and initiation of payments.

It is available through the Enable Banking API's sandbox environment. Please refer to the Sandbox Credentials section for the credentials to be used for authentication in the VestjyskBank sandbox.