Financial technology moves fast — and its vocabulary moves even faster. Every quarter brings new acronyms, regulatory frameworks, and product categories that banking executives, compliance officers, and fintech builders need to understand. The problem is not a shortage of definitions. It is that most glossaries treat fintech terms as static dictionary entries, stripped of the context that makes them useful for practitioners making real decisions.
This glossary is different. We have assembled over 120 terms spanning payments, lending, compliance, AI, blockchain, open banking, and regulatory technology — and written each definition with working professionals in mind. Whether you are a community bank CTO evaluating a core banking migration, a compliance lead implementing new AML automation, or a fintech founder building on open banking rails, these definitions are designed to give you clarity you can act on — not just awareness you can nod along with.
Use the alphabetical navigation below to jump directly to the section you need, or read through for a comprehensive education in the language of modern financial services.
A
Account-Based Payment Instrument
Any payment mechanism that draws on funds held in a formal account — whether that is a traditional bank deposit, a prepaid e-money balance, or even an account-based central bank digital currency (CBDC). The defining characteristic is the existence of an institution that maintains a ledger of who owns what. This distinguishes account-based instruments from token-based systems (like certain cryptocurrency architectures) where possession of a cryptographic key, rather than an account record, determines ownership.
Agentic Commerce
A 2025–2026 concept describing transactions initiated and completed by AI agents acting on behalf of a consumer or business. Unlike traditional e-commerce where a human clicks “buy,” agentic commerce involves an AI assistant researching products, comparing prices, and executing purchases autonomously within parameters set by the user. The payment infrastructure implications are significant — existing checkout flows, authentication protocols, and fraud detection systems were not designed for non-human buyers.
Algorithmic Decision-Making
The practice of using data inputs and statistical models to automate or inform decisions that were traditionally made by humans. In financial services, algorithmic decision-making powers everything from loan approvals and insurance pricing to fraud detection and payment authorisation. The degree of human involvement varies — some systems flag decisions for human review, while others operate autonomously within defined parameters. Regulatory scrutiny of algorithmic decision-making has intensified, particularly around questions of bias, explainability, and accountability when automated systems produce adverse outcomes for consumers.
AML/CFT (Anti-Money Laundering / Countering the Financing of Terrorism)
The collective body of laws, regulations, supervisory actions, and enforcement procedures designed to prevent, detect, and prosecute the use of the financial system for money laundering or terrorism financing. AML/CFT compliance is one of the most resource-intensive obligations for any financial institution — and one of the areas where regtech and AI are having the most measurable impact. The Financial Action Task Force (FATF) sets the international standards that national regulators implement, and non-compliance carries severe consequences including fines, licence restrictions, and criminal prosecution of responsible officers.
Anti-Tying Rules
Regulations that prohibit financial institutions from conditioning the provision of one product or service on the customer purchasing another product from the same provider — or from refusing to serve a customer who obtains similar products from a competitor. Anti-tying rules are designed to prevent incumbents from using bundling strategies to lock customers into their ecosystem and are particularly relevant in the open banking era, where regulators want to ensure that customers can freely share their data with third-party providers without being penalised by their primary bank.
API (Application Programming Interface)
A standardised set of rules and protocols that allows different software systems to communicate with each other. In financial services, APIs are the connective tissue that makes modern banking work — enabling everything from mobile banking apps pulling account balances to open banking platforms initiating payments on behalf of customers. The quality, reliability, and security of a financial institution’s APIs increasingly determine its competitive position. Under regulations like PSD2 in Europe and proposed Section 1033 rules in the United States, banks are required to make customer data available to authorised third parties through standardised APIs.
Artificial Intelligence (AI)
Computer systems designed to perform tasks that traditionally required human intelligence — pattern recognition, natural language understanding, decision-making under uncertainty, and learning from experience. In banking and fintech, AI applications span credit underwriting, fraud detection, transaction monitoring, customer service automation, document processing, and regulatory reporting. The deployment of AI in financial services is increasingly governed by specific regulations, including the EU AI Act (effective 2024) and emerging U.S. guidance on model risk management for machine learning systems. The distinction between narrow AI (purpose-built for specific tasks) and general-purpose AI models (like large language models) is critical for understanding both the capabilities and limitations of current financial AI applications.
Asset-Based Lending (ABL)
Lending products where the loan is secured against movable property — equipment, inventory, receivables, invoices, or intangible assets like intellectual property. ABL encompasses several distinct products including factoring (selling receivables), reverse factoring (supply chain finance), revolving credit lines secured by changing collateral pools, merchant cash advances, and equipment leasing. Fintech platforms have made ABL more accessible to smaller businesses by automating asset valuation, collateral monitoring, and covenant compliance through real-time data integration.
Automated Clearing House (ACH)
An electronic network for batch-processing financial transactions between banks and financial institutions. In the United States, the ACH network (operated by Nacha) handles billions of transactions annually — payroll direct deposits, recurring bill payments, government benefit distributions, and business-to-business transfers. ACH processes transactions in batches rather than individually, which means settlement is not instantaneous; same-day ACH has reduced but not eliminated settlement delays. The ACH network remains one of the most important pieces of U.S. payment infrastructure despite the emergence of real-time alternatives like FedNow and RTP.
B
Banking-as-a-Service (BaaS)
A model in which a licensed bank provides its regulatory infrastructure, core banking systems, and compliance framework to non-bank companies through APIs — enabling those companies to offer banking products (accounts, cards, payments, lending) under their own brand without obtaining a banking licence. The BaaS model has faced significant scrutiny from regulators in 2024–2026, with multiple enforcement actions against both sponsor banks and their fintech partners over compliance failures, particularly in AML and consumer protection. The economics of BaaS are also under pressure, as the operational cost of managing partner compliance has proved higher than many early models assumed.
Basel Core Principles (BCPs)
The global minimum standards for prudential regulation and supervision of banks, published by the Basel Committee on Banking Supervision. First issued in 1997 and updated in 2006 and 2012, the BCPs cover areas including licensing, capital adequacy, risk management, governance, and supervisory powers. For fintech companies building on bank infrastructure (through BaaS or embedded finance models), the BCPs indirectly define the compliance requirements they must satisfy — because the bank they partner with is supervised against these standards.
Big Data
The vast volumes of structured and unstructured data generated through digital interactions, financial transactions, device telemetry, and online activity. In financial services, big data enables alternative credit scoring (using non-traditional data points to assess creditworthiness), real-time fraud detection (identifying anomalous patterns across millions of transactions), personalised product recommendations, and market risk modelling. Big tech companies — firms like Apple, Google, and Amazon that have expanded into financial services — derive a significant competitive advantage from the scale and richness of their customer data, which often exceeds what traditional banks collect.
Blockchain
A specific type of distributed ledger technology (DLT) that organises transaction records into sequential, cryptographically linked blocks. Each new block references the hash of the previous block, creating an append-only chain that is extremely difficult to alter retroactively. In financial services, blockchain applications include cross-border payment settlement, trade finance documentation, securities tokenisation, and the infrastructure underlying cryptocurrencies and stablecoins. The practical distinction between public blockchains (permissionless, like Ethereum) and private/permissioned blockchains (like those used by consortia of banks) is critical for understanding the security, performance, and governance characteristics of different implementations.
Central Bank Digital Currency (CBDC)
A digital form of sovereign currency issued directly by a central bank. Unlike commercial bank deposits (which are liabilities of private banks) or stablecoins (which are liabilities of private issuers), a CBDC carries the direct backing of the central bank. CBDCs can be designed for retail use (general public transactions) or wholesale use (interbank settlement). As of 2026, the digital euro is in advanced preparation by the European Central Bank, while China’s e-CNY has been in pilot since 2020. The United States has taken a more cautious approach, with the Federal Reserve exploring the concept through research and limited pilots without committing to issuance.
Challenger Bank
A newly licensed bank that competes against established incumbent institutions, typically by offering a differentiated customer experience, lower fees, or technology-first service delivery. The term originated in the UK market and is distinct from “neobank” — a challenger bank holds its own banking licence and takes deposits directly, while a neobank typically operates through a partner bank’s licence. Examples include Starling Bank and Monzo in the UK. Many challenger banks have struggled to achieve profitability, and the term itself has fallen somewhat out of favour as the survivors have matured into established institutions in their own right.
Cloud Computing
The delivery of computing resources — servers, storage, databases, networking, analytics, and software — over the internet rather than through locally hosted infrastructure. For financial institutions, cloud migration represents one of the most consequential technology decisions of the current decade. Cloud-native core banking platforms (like Thought Machine, Mambu, and 10x Banking) allow institutions to scale infrastructure dynamically, deploy updates continuously, and reduce the capital expenditure of maintaining legacy data centres. Regulatory guidance on cloud adoption in financial services has evolved from cautious to broadly permissive, though requirements around data residency, concentration risk, and third-party risk management remain significant.
Core Banking System
The central software platform that manages a bank’s fundamental operations — maintaining the ledger of accounts, processing transactions, calculating interest, managing deposits and loans, and providing the system of record that every other banking application depends on. Core banking systems are often decades old, written in COBOL or other legacy languages, and represent the single largest constraint on a bank’s ability to innovate, integrate with modern APIs, and offer real-time services. Core banking transformation — replacing or modernising these systems — is one of the most complex and risky technology programmes a financial institution can undertake, often taking three to five years and consuming hundreds of millions of dollars in the largest institutions.
Correspondent Banking
An arrangement where one bank (the correspondent) holds deposits and provides payment services on behalf of another bank (the respondent), typically to facilitate cross-border transactions. Correspondent banking has been the backbone of international payments for over a century but is under pressure from multiple directions: de-risking (where correspondent banks cut relationships with smaller or higher-risk respondent banks), competition from fintech-enabled cross-border payment services, and the emergence of real-time cross-border settlement networks that bypass the traditional correspondent chain entirely.
Credit Scoring
A statistical methodology for evaluating the likelihood that a borrower will repay a loan. Traditional credit scoring relies on bureau data — payment history, outstanding balances, length of credit history, and types of credit used. Alternative credit scoring, enabled by open banking and big data, incorporates non-traditional data sources like rent payments, utility bills, bank transaction patterns, and even social or behavioural data to assess creditworthiness. AI-driven credit scoring models can evaluate thousands of variables simultaneously, but face regulatory scrutiny around explainability, bias, and the right of consumers to understand why they were denied credit.
Cross-Border Payments
Financial transfers where the sending and receiving parties are located in different countries. Cross-border payments may or may not involve currency conversion and historically rely on correspondent banking networks, SWIFT messaging, and intermediary institutions — a chain that can introduce delays, costs, and opacity. Reducing the friction in cross-border payments has become a G20 priority, with initiatives focused on faster processing, lower costs, greater transparency, and broader access. Fintech competitors like Wise, Airwallex, and Thunes have captured significant market share by offering faster, cheaper alternatives to traditional correspondent banking channels.
Crowdfunding
Online platforms that connect individuals or companies seeking capital with a pool of potential investors or donors, bypassing traditional financial intermediaries. Crowdfunding takes several forms: reward-based (backers receive a product or perk), donation-based (charitable giving), loan-based (peer-to-peer lending), and equity-based (investors receive ownership stakes). Equity crowdfunding in particular has been enabled by regulatory frameworks that allow smaller investors to participate in early-stage company funding without the full regulatory burden of public securities offerings.
D
Data Localisation
Legal requirements that restrict the cross-border transfer of data, mandating that certain types of information — particularly financial data and personal data — be stored and processed within a specific country’s borders. Data localisation laws affect how financial institutions and fintech companies architect their cloud infrastructure, structure cross-border operations, and manage regulatory compliance across multiple jurisdictions. India, Russia, and China have among the most stringent data localisation requirements for financial data.
Decentralised Finance (DeFi)
An ecosystem of financial applications — lending, borrowing, trading, insurance, derivatives — built on blockchain networks using smart contracts, operating without traditional financial intermediaries. DeFi protocols execute financial transactions automatically based on coded rules, theoretically eliminating the need for banks, brokers, and exchanges. While DeFi has demonstrated the technical feasibility of programmable finance, it has also experienced significant security incidents (smart contract exploits, oracle manipulation) and remains largely outside the regulatory perimeter that governs traditional financial services. Regulators globally are working to bring DeFi activities within existing or new regulatory frameworks.
Deposit Insurance
A government-backed guarantee that protects depositors’ funds up to a specified limit if their bank fails. In the United States, the FDIC insures deposits up to $250,000 per depositor, per institution. In the EU, the Deposit Guarantee Scheme covers €100,000. Deposit insurance is a critical concept in the BaaS and neobank context — customers of fintech apps that hold funds through a partner bank are entitled to deposit insurance, but the pass-through mechanics (ensuring the FDIC recognises the end customer as the depositor rather than the fintech company) have been the subject of regulatory scrutiny following several BaaS-related failures in 2024–2025.
Digital Bank
A deposit-taking institution that delivers banking services primarily or exclusively through electronic channels — mobile apps, web interfaces, and APIs — rather than through physical branch networks. Digital banks hold their own licences and are regulated as banks, distinguishing them from neobanks (which typically operate under a partner bank’s licence) and challenger banks (a broader term). Several jurisdictions, including Singapore, Hong Kong, and Malaysia, have created specific digital bank licence categories with tailored capital and operational requirements.
Digital Identity (Digital ID)
A set of electronically captured attributes and credentials that uniquely identify an individual and can be verified digitally. Digital ID systems underpin modern KYC processes, enabling remote customer onboarding, e-signatures, and ongoing identity verification without physical document presentation. The EU’s eIDAS 2.0 regulation, expected to roll out through 2026–2027, will create a standardised European Digital Identity Wallet that citizens can use across borders for both public and private-sector services, including opening bank accounts and signing financial contracts.
Digital Payments
Any payment instruction initiated through electronic channels — computers, smartphones, point-of-sale terminals, or IoT devices — rather than through physical cash or cheques. Digital payments encompass card payments (credit and debit), bank transfers (credit and debit transfers), e-money transactions, mobile money, QR code payments, and account-to-account transfers initiated through open banking APIs. The shift to digital payments accelerated dramatically during the COVID-19 pandemic and has continued to expand, with real-time payment systems like FedNow and SEPA Instant making instant bank-to-bank transfers increasingly common.
Distributed Ledger Technology (DLT)
A broad category of technologies that maintain synchronised copies of a shared database across multiple locations, without relying on a single central authority. Blockchain is the most well-known form of DLT, but the category also includes directed acyclic graphs (DAGs), hashgraph, and other architectures. In financial services, DLT is being explored and deployed for trade settlement, securities tokenisation, cross-border payments, and supply chain finance — use cases where the ability to maintain a shared, tamper-evident record across multiple institutions offers clear advantages over centralised databases.
E
E-KYC (Electronic Know Your Customer)
Digital processes and technologies used to verify a customer’s identity remotely, without requiring in-person document presentation. E-KYC methods include document scanning and OCR (extracting data from photographed identity documents), biometric verification (matching a selfie to a document photograph using facial recognition), liveness detection (confirming the person is physically present rather than using a photograph), and database cross-referencing (checking identity details against government or credit bureau records). E-KYC has been transformative for financial inclusion — enabling account opening in minutes rather than days — but faces ongoing challenges around deepfake technology, synthetic identity fraud, and regulatory acceptance across jurisdictions.
Embedded Finance
The integration of financial products — payments, lending, insurance, accounts — directly into non-financial platforms and workflows. When a ride-hailing app processes your payment automatically, when an accounting platform offers invoice financing, or when an e-commerce checkout offers buy-now-pay-later — that is embedded finance. The enabling infrastructure typically involves a licensed bank (providing the regulatory framework), a BaaS or embedded finance platform (providing the API layer), and the non-financial company (providing the distribution and customer relationship). Embedded finance is projected to be a multi-trillion dollar market by 2030, though regulatory complexity and the recent scrutiny of BaaS arrangements have tempered growth expectations.
E-Money (Electronic Money)
A prepaid monetary value stored electronically — on a card, a mobile phone, or a server — that represents a claim on the issuer and is accepted as a means of payment by parties other than the issuer. E-money is distinct from bank deposits: it is typically issued by Electronic Money Institutions (EMIs) that hold a lighter licence than full banks and are subject to safeguarding requirements (keeping customer funds separate from operating capital) rather than prudential banking supervision. E-money includes prepaid cards, mobile money balances (like M-Pesa), and digital wallet balances held by payment platforms.
F
Factoring
A financing arrangement where a business sells its accounts receivable (unpaid invoices) to a third party (the factor) at a discount in exchange for immediate cash. The factor then collects payment directly from the business’s customers. Factoring provides working capital without adding debt to the balance sheet and is particularly valuable for SMEs with long payment cycles. Fintech platforms have digitised the factoring process, enabling faster invoice verification, automated credit assessment of debtors, and real-time funding decisions.
Fast Payments / Instant Payments
Payment systems that transmit payment messages and make funds available to the recipient in real time or near-real time, typically operating 24 hours a day, 365 days a year. In the United States, FedNow (launched July 2023) and The Clearing House’s RTP network provide instant payment capabilities. In Europe, SEPA Instant enables euro-denominated instant transfers across the Single Euro Payments Area. In India, UPI (Unified Payments Interface) processes billions of instant transactions monthly. Fast payment systems are fundamentally changing the economics of payment processing and enabling new use cases — from instant payroll and gig worker payments to request-to-pay and real-time account-to-account commerce.
Financial Action Task Force (FATF)
The inter-governmental body that establishes international standards for combating money laundering, terrorism financing, and proliferation financing. FATF Recommendations form the global baseline for AML/CFT regulation — and being placed on the FATF’s “grey list” (jurisdictions under increased monitoring) or “black list” (high-risk jurisdictions) has severe consequences for a country’s financial institutions, including increased compliance requirements from correspondent banks and potential loss of banking relationships. For fintech companies operating across borders, FATF standards effectively determine the minimum compliance framework they must meet in every jurisdiction.
FedNow
The Federal Reserve’s instant payment service, launched in July 2023, enabling financial institutions of all sizes to send and receive payments in seconds, around the clock, every day. Unlike the privately operated RTP network (run by The Clearing House), FedNow is operated by the central bank itself, giving it the broadest potential reach across the U.S. banking system. FedNow is particularly significant for community and regional banks, as it provides a path to offer instant payment capabilities without relying on larger bank intermediaries. Adoption has been gradual — as of 2026, thousands of institutions have enrolled but usage volumes are still ramping up relative to existing ACH and wire transfer volumes.
Fintech (Financial Technology)
Technology-driven innovation that transforms how financial services are designed, delivered, and consumed. The term encompasses a vast range of applications — from mobile payments and peer-to-peer lending to AI-powered credit decisioning, robotic process automation in compliance, and blockchain-based settlement systems. As a category, fintech now includes both standalone technology companies (like Stripe, Plaid, and Revolut) and the internal innovation efforts of established financial institutions. The global fintech market was valued at over $116 billion in investment during 2025, though the sector has matured beyond its growth-at-all-costs phase into one where profitability, regulatory sustainability, and infrastructure resilience increasingly determine which companies succeed.
G
Gazelle Company
A high-growth company that sustains at least 20 percent annual revenue growth over a multi-year period. Gazelles are disproportionately important for job creation and economic growth. In the fintech context, gazelle-stage companies are typically those that have found product-market fit and are scaling rapidly — the phase where banking infrastructure, payment processing capacity, and compliance frameworks are tested most severely. Identifying and serving gazelle companies is a strategic focus for BaaS providers and commercial banks alike.
H
Hyper Banking (High-Performance Banking)
An approach to banking that prioritises real-time data processing, advanced analytics, and seamless customer experiences delivered through cutting-edge technology infrastructure. Hyper banking goes beyond digital banking (which is primarily about channel delivery) to encompass the entire operational architecture — real-time risk assessment, dynamic pricing, predictive service delivery, and infrastructure that can scale instantly to meet demand spikes. The concept is aspirational for many institutions but reflects the direction of travel as cloud-native core banking and AI-driven operations become the competitive baseline.
I
Interoperability
The ability of different payment systems, platforms, or technical standards to work together seamlessly — enabling a customer of one payment provider to transact with a customer of another as if they were on the same system. Interoperability is the holy grail of payment infrastructure: without it, every payment network becomes a walled garden. Achieving interoperability requires alignment across technical standards (data formats, messaging protocols), legal frameworks (mutual recognition of licences and consumer protections), and commercial agreements (interchange pricing, settlement rules). The ISO 20022 messaging standard, now being adopted globally, is designed to enhance interoperability across domestic and cross-border payment systems.
Internet of Things (IoT)
A network of physical devices embedded with sensors, software, and connectivity that enables them to collect and exchange data. In financial services, IoT applications include tracking shipped goods for trade finance collateral monitoring, enabling usage-based insurance pricing through vehicle telematics, triggering automatic payments when sensor-equipped equipment completes a delivery, and monitoring asset condition for equipment-backed lending. IoT data feeds are increasingly integrated into AI-driven financial models, providing real-time signals that improve the accuracy of credit, insurance, and risk assessment decisions.
ISO 20022
A global standard for financial messaging that provides a common language for electronic communications between financial institutions. ISO 20022 uses a richer, more structured data format than legacy messaging standards (like SWIFT MT messages), enabling more detailed transaction information to travel with each payment. This additional data supports better compliance screening, automated reconciliation, and enhanced analytics. SWIFT’s cross-border payments network completed its migration to ISO 20022 for high-value payments, and domestic payment systems worldwide are in various stages of adoption. For banks, the ISO 20022 migration is one of the most significant infrastructure projects of the current decade.
K
KYC (Know Your Customer)
The mandatory process through which financial institutions verify the identity of their customers, understand the nature of their activities, assess their risk profile, and conduct ongoing monitoring to ensure that transactions are consistent with what is known about the customer. KYC is a foundational component of AML/CFT compliance and is required before any financial institution can open an account or establish a business relationship. The process encompasses Customer Due Diligence (CDD), Enhanced Due Diligence (EDD) for higher-risk customers, and ongoing transaction monitoring. AI and regtech solutions are transforming KYC from a manual, document-heavy process into an automated, data-driven workflow — though the regulatory obligation and ultimate responsibility remain with the financial institution.
M
Machine Learning (ML)
A subset of artificial intelligence in which algorithms improve their performance on a task through exposure to data, without being explicitly programmed for each scenario. In financial services, ML models are deployed for credit risk assessment (learning from historical loan performance to predict future defaults), fraud detection (identifying transaction patterns associated with fraudulent activity), customer segmentation, pricing optimisation, and regulatory compliance automation. The regulatory framework for ML in banking — particularly around model validation, explainability, and bias testing — is a rapidly evolving area that compliance teams must navigate carefully.
Mobile Money
An e-money product where the balance is stored electronically and can be accessed, transferred, or spent through mobile phone-based payment instructions. Mobile money has been transformative for financial inclusion, particularly in Sub-Saharan Africa and South Asia, where M-Pesa (Kenya), bKash (Bangladesh), and GCash (Philippines) have provided basic financial services to hundreds of millions of people who lack traditional bank accounts. Mobile money systems rely on agent networks (cash-in, cash-out points, typically small retailers) and are increasingly interoperable with bank accounts and international payment networks.
N
Neobank
A technology company that provides banking-like services — accounts, cards, payments, sometimes lending — without holding its own full banking licence. Neobanks typically operate through a BaaS arrangement with a licensed partner bank that provides the regulatory framework and deposit insurance coverage. The distinction between neobanks (no licence of their own) and digital banks (licensed deposit-taking institutions) is critical from a regulatory and consumer protection perspective, though the terms are often used interchangeably in popular coverage. Notable neobanks include Chime (US), N26 (EU), and Nubank (Brazil, though Nubank subsequently obtained its own banking licence).
Near-Field Communication (NFC)
A short-range wireless technology that enables communication between devices when they are brought within a few centimetres of each other. NFC is the technology behind contactless card payments (tap-to-pay), mobile wallet transactions (Apple Pay, Google Pay), and some transit ticketing systems. The EU’s recently adopted regulation requiring Apple to open NFC access on iPhones to third-party payment providers is a landmark decision that illustrates how NFC’s role in payment infrastructure has become a matter of competition policy.
O
Open Banking
A regulatory and technology framework that enables consumers and businesses to share their bank account data and payment capabilities with authorised third-party providers through secure APIs, with the customer’s explicit consent. Open banking was mandated in Europe through PSD2, implemented in the UK through the Open Banking Implementation Entity, and is being pursued globally through varying approaches — from Australia’s Consumer Data Right to India’s Account Aggregator framework. The evolution from open banking (covering payment accounts) to open finance (extending to investments, insurance, pensions, and mortgages) is now underway, with the EU’s proposed Financial Data Access (FIDA) regulation and the transition from PSD2 to PSD3/PSR representing the next regulatory chapter. Open banking has enabled entirely new categories of financial services — personal finance management, account-based lending, automated reconciliation, and payment initiation services that bypass traditional card networks.
P
Peer-to-Peer Lending (P2P)
Online platforms that connect individual or institutional lenders directly with borrowers, facilitating loans without routing through a traditional bank. P2P lending platforms handle origination, credit assessment, servicing, and collections, earning revenue through origination fees and/or spread. The sector has matured significantly since its early years — many P2P platforms have obtained lending licences, shifted toward institutional funding sources, and evolved into more traditional marketplace lending businesses. Regulatory requirements have tightened across jurisdictions, with the EU’s European Crowdfunding Service Providers Regulation (ECSPR) establishing a harmonised framework for platforms operating across member states.
Payment Service Provider (PSP)
Any entity that provides payment services to end users — a broad category that includes banks, e-money institutions, payment aggregators, payment gateways, money transfer operators, and card acquirers. In the European regulatory framework, PSPs are classified as Account Servicing Payment Service Providers (ASPSPs, typically banks), Account Information Service Providers (AISPs), and Payment Initiation Service Providers (PISPs). The PSP landscape has become increasingly complex as non-bank payment providers — companies like Stripe, Adyen, and Square — have grown to process volumes that rival or exceed many traditional bank payment operations.
R
RegTech (Regulatory Technology)
Technology solutions designed to help financial institutions meet regulatory and compliance requirements more efficiently, accurately, and at lower cost. RegTech applications span the full compliance lifecycle: identity verification and KYC, transaction monitoring and suspicious activity detection, regulatory reporting automation, sanctions screening, regulatory change management, and model risk management. As compliance costs have risen — consuming 10–15 percent of operating budgets at many banks — regtech has shifted from a nice-to-have to a strategic necessity. The most advanced regtech solutions use AI and machine learning to reduce false positive rates in transaction monitoring, automate regulatory filing preparation, and keep pace with the growing volume of regulatory change across jurisdictions.
Real-Time Gross Settlement (RTGS)
A payment settlement system in which each transaction is processed individually and settled in real time with finality, rather than being batched and netted against other transactions. RTGS systems are operated by central banks and are used for high-value, time-critical payments — interbank transfers, securities settlement, and large commercial transactions. Fedwire (US), TARGET2 (Eurozone), and CHAPS (UK) are examples of RTGS systems. The key distinction from retail fast payment systems (like FedNow) is that RTGS settles in central bank money with immediate finality, making it the highest-assurance payment mechanism available.
Robo-Advisory
Automated, algorithm-driven investment management services that build and rebalance portfolios based on a client’s risk tolerance, financial goals, and time horizon — typically at a fraction of the cost of traditional human financial advisors. Platforms like Wealthfront, Betterment, and Nutmeg pioneered the category, and most major wealth management firms now offer robo-advisory capabilities alongside their human advisor services. The next generation of robo-advisory is incorporating AI-powered financial planning that goes beyond portfolio allocation to encompass tax optimisation, retirement income planning, and holistic financial wellness.
S
Sandbox / Regulatory Sandbox
A controlled, time-limited environment in which fintech companies and other innovators can test new products, technologies, or business models under regulatory supervision — often with temporary waivers or modified compliance requirements. Sandboxes are designed to encourage innovation while protecting consumers and maintaining financial stability. The UK’s Financial Conduct Authority pioneered the concept in 2016, and over 50 jurisdictions now operate some form of innovation facilitator. The effectiveness of sandboxes remains debated: supporters argue they accelerate innovation and improve regulatory understanding, while critics contend that few sandbox participants have successfully scaled beyond the sandbox environment.
SaaS (Software-as-a-Service)
A software delivery model where applications are hosted centrally and accessed by users over the internet on a subscription basis, rather than being installed and maintained on local infrastructure. In financial services, SaaS has become the dominant delivery model for everything from loan origination systems and compliance platforms to treasury management, data analytics, and customer engagement tools. The SaaS model shifts technology spending from capital expenditure to operational expenditure, enables continuous updates without disruptive upgrade cycles, and allows financial institutions to adopt best-of-breed solutions from specialist vendors rather than relying on monolithic systems from a single provider.
Stablecoin
A type of cryptocurrency designed to maintain a stable value relative to a reference asset — typically a fiat currency like the U.S. dollar. Stablecoins achieve this peg through various mechanisms: fiat-backed (holding reserves of the reference currency, like USDT and USDC), crypto-collateralised (over-collateralised with other crypto assets), or algorithmic (using supply-and-demand mechanisms to maintain the peg). Stablecoins have become a critical component of crypto market infrastructure and are increasingly used for cross-border payments, remittances, and settlement. Regulatory frameworks specifically addressing stablecoins — including the EU’s MiCA regulation and proposed U.S. legislation — are being implemented to address risks around reserve adequacy, consumer protection, and systemic stability.
SupTech (Supervisory Technology)
Technology solutions used by financial regulators and supervisory authorities to enhance the efficiency and effectiveness of their oversight activities. SupTech mirrors regtech but from the regulator’s side — using AI and data analytics to monitor financial institutions’ compliance, detect emerging systemic risks, process regulatory filings, and identify patterns across the financial system that individual institution-level reporting might miss. The adoption of suptech by regulators has implications for supervised institutions, as it means that regulatory scrutiny is becoming more data-driven, automated, and potentially more granular than the periodic examination model of the past.
Super App
A mobile application that combines multiple services — messaging, social media, ride-hailing, food delivery, financial services — into a single platform, aiming to become the primary digital interface for a user’s daily life. WeChat (China), Grab (Southeast Asia), and Gojek (Indonesia) are the defining examples. Financial services — payments, lending, insurance, investments — are a core component of the super app model because they generate transaction data, enable monetisation, and create switching costs. Western markets have been slower to develop super apps due to different competitive dynamics, privacy regulations, and consumer preferences, though companies like Revolut and PayPal have pursued super app-like strategies.
T
Tokenisation
A term with three distinct meanings in financial services, and confusing them leads to misunderstandings. First, asset tokenisation: representing ownership of real-world assets (securities, real estate, commodities) as digital tokens on a blockchain, enabling fractional ownership and potentially more efficient transfer and settlement. Second, payment tokenisation: replacing sensitive card numbers with unique substitute identifiers (tokens) during transaction processing, so that the actual card number is never exposed to merchants or intermediaries — a critical security measure for digital commerce. Third, data tokenisation: replacing sensitive data with non-sensitive placeholders for storage and processing, used widely in compliance and data protection contexts. When someone in fintech says “tokenisation,” the context determines which of these three meanings applies.
V
Venture Capital (VC)
Equity investment in early-stage and high-growth companies, provided by professional fund managers in exchange for ownership stakes. VC has been the primary funding mechanism for the fintech industry, with global fintech VC investment peaking in 2021 before declining through 2023 and showing signs of recovery in 2025. VC-backed fintech companies typically pursue rapid growth with the expectation of achieving a large-scale exit (IPO or acquisition) that generates returns for investors. The shift in VC sentiment toward profitability over growth-at-all-costs has had profound implications for fintech business models, pricing strategies, and competitive dynamics.
Virtual IBAN (vIBAN)
A virtual account number that functions like a traditional International Bank Account Number but is not tied to a physical bank account in the traditional sense. vIBANs enable businesses to assign unique identifiers to individual clients, transactions, or business lines — simplifying reconciliation, enabling multi-currency operations, and providing greater control over payment flows. Typically issued by fintech companies and EMIs, vIBANs have become a standard tool for B2B payment management, marketplace platforms, and cross-border treasury operations. Regulatory attention to vIBANs has increased as supervisors seek clarity on the pass-through deposit insurance implications and the AML obligations associated with virtual account structures.
Virtual Asset Service Provider (VASP)
An entity that conducts virtual asset-related business on behalf of others — exchanging virtual assets for fiat currency or other virtual assets, transferring virtual assets between parties, providing custody or administration of virtual assets, or offering financial services related to virtual asset issuance and sales. The VASP classification, defined by the FATF, brings crypto businesses within the scope of AML/CFT regulation. Under the EU’s MiCA regulation, VASPs operating in Europe must obtain authorisation as Crypto-Asset Service Providers (CASPs) and comply with comprehensive prudential, conduct, and governance requirements — a significant step toward regulatory parity with traditional financial services.
60+
Terms Defined
18
Alphabetical Sections
2026
Updated For
A–V
Coverage Span
Frequently Asked Questions
Fintech Terminology — Common Questions
What is the difference between a neobank, a digital bank, and a challenger bank?
These three terms are frequently confused but describe different types of institutions. A neobank is a technology company that offers banking-like services without its own banking licence — it operates through a licensed partner bank. A digital bank holds its own full banking licence and delivers services primarily through digital channels rather than branches. A challenger bank is a newly licensed bank that competes against established incumbents — it holds its own licence (like a digital bank) but the term emphasises its competitive positioning rather than its delivery channel. The regulatory implications are significant: neobank customers depend on the partner bank’s licence and deposit insurance, while digital bank and challenger bank customers have a direct regulatory relationship with the institution.
How does open banking differ from Banking-as-a-Service (BaaS)?
Open banking is primarily about data access and payment initiation — it enables authorised third parties to read account information and initiate payments from a customer’s existing bank account, with the customer’s consent, through standardised APIs. BaaS goes much further: it allows non-bank companies to embed actual banking products — accounts, cards, loans — into their own platforms by connecting to a licensed bank’s infrastructure. Open banking lets you see your bank data in a budgeting app; BaaS lets a ride-hailing company offer you a bank account. They share API-first architecture and often use the same infrastructure providers, but they serve different purposes and are governed by different regulatory frameworks.
What is the difference between regtech and suptech?
Regtech and suptech are two sides of the same coin. Regtech (regulatory technology) is used by financial institutions to meet their compliance obligations more efficiently — automating KYC, transaction monitoring, regulatory reporting, and sanctions screening. Suptech (supervisory technology) is used by regulators themselves to enhance their oversight capabilities — analysing data from supervised institutions, detecting systemic risks, and monitoring compliance across the financial system. The practical implication is that as regulators adopt suptech tools, they can scrutinise institutions with greater granularity and speed than traditional examination approaches allowed — which in turn drives demand for more sophisticated regtech solutions within the institutions being supervised.
What is FedNow and how is it different from ACH?
Both are payment systems operated within the U.S. financial infrastructure, but they work fundamentally differently. ACH (Automated Clearing House) processes transactions in batches — payments are collected throughout the day and settled in groups, which means funds typically take one to two business days to arrive (same-day ACH is available but still involves batch processing). FedNow, launched by the Federal Reserve in July 2023, settles each transaction individually in real time, around the clock, including weekends and holidays. FedNow is designed for the instant economy — payroll, bill payments, and person-to-person transfers that need to arrive in seconds rather than days. ACH remains dominant by volume due to its lower cost and established infrastructure, but FedNow adoption is growing as more institutions connect to the service.
What does tokenisation mean in finance — and why are there three different definitions?
Tokenisation is one of the most overloaded terms in financial technology, and using the wrong definition leads to confusion. Asset tokenisation means representing ownership of real-world assets (shares, property, commodities) as digital tokens on a blockchain, enabling fractional ownership and programmable transfer. Payment tokenisation is a security technique that replaces sensitive card numbers with substitute identifiers during transactions, so the real card number is never exposed. Data tokenisation replaces sensitive information with non-sensitive placeholders for storage and compliance purposes. When you encounter the word in a conversation or article, the context will tell you which meaning applies — but it is worth asking for clarification if the context is ambiguous, because the three concepts have very different technical and regulatory implications.
Why does KYC matter for fintech companies if they are not banks?
KYC obligations extend well beyond traditional banks. Any entity that provides financial services — payment processors, e-money issuers, lending platforms, crypto exchanges, money transfer operators — is subject to KYC requirements under AML/CFT regulations. Even fintech companies that operate through a BaaS partnership with a licensed bank typically perform customer-facing KYC on behalf of their partner bank, though the regulatory responsibility ultimately rests with the licence holder. The FATF’s standards apply to all “financial institutions” and “designated non-financial businesses and professions” — a broad classification that captures most fintech business models. Failure to implement adequate KYC processes can result in regulatory enforcement, loss of banking relationships, and criminal liability.
What is the difference between a stablecoin and a CBDC?
Both are digital representations of value designed to maintain a stable price, but they differ fundamentally in who issues them and what backs them. A CBDC is issued directly by a central bank — it is sovereign money in digital form, carrying the same backing and trust as physical currency. A stablecoin is issued by a private company and maintains its peg to a reference currency through reserve assets (fiat deposits, government bonds) or algorithmic mechanisms. The distinction matters for consumer protection (CBDC users have a direct claim on the central bank; stablecoin users have a claim on a private issuer), monetary policy (CBDCs could give central banks new policy tools), and systemic risk (a stablecoin issuer can fail; a central bank in its own currency cannot).
How is AI changing compliance in financial services?
AI is transforming compliance from a largely manual, rules-based function into an increasingly automated, data-driven capability. In transaction monitoring, machine learning models can reduce false positive rates by 50–70 percent compared to traditional rules-based systems — a significant efficiency gain given that AML analysts spend most of their time investigating alerts that turn out to be legitimate activity. In KYC, AI-powered document verification, facial recognition, and natural language processing are enabling remote onboarding in minutes rather than days. In regulatory reporting, AI can automate the extraction of required data points from internal systems and format them according to regulatory specifications. However, the deployment of AI in compliance also creates new challenges: model risk management (ensuring AI systems behave as expected), explainability (demonstrating to regulators why a particular decision was made), and bias prevention (ensuring AI does not discriminate against protected groups). The EU AI Act classifies AI used in credit scoring and financial services as “high-risk,” subject to specific governance, transparency, and oversight requirements.
Virginia Heritage is an independent publication. This glossary represents our editorial understanding of commonly used fintech and financial services terminology as of 2026. Definitions are provided for educational purposes and should not be construed as legal, regulatory, or financial advice. Regulatory requirements vary by jurisdiction.
© 2026 Virginia Heritage. All rights reserved.