“SplitKey+ was built with European QSCD (Qualified Signature Creation Device) requirements and PSD2 (Payment Services Directive) in mind, satisfying EU regulatory frameworks for identity assurance. This ensures that digital onboarding not only meets KYC requirements but also provides legally binding proof of consent and identity validation.”
In the ever-tightening regulatory environment of modern banking, compliance officers face a familiar challenge: how to balance robust Know Your Customer (KYC) practices with the demand for faster, more seamless onboarding experiences. The traditional approaches to digital onboarding – often causing friction through documentation uploads and manual verification – are no longer sustainable in a mobile-first world.
Banks are under particular pressure. The industry is rapidly digitalising, yet compliance expectations from regulators remain stringent. The solution? A next-generation approach to identity verification – one that simplifies onboarding while ensuring full compliance with frameworks like PSD2, and eIDAS.
Enter SplitKey+, Cybernetica’s secure authentication and transaction confirmation solution featuring multi-factor authentication (MFA) with biometrics and an advanced cryptographic solution that redefines the digital identity layer for banks. With SplitKey+, compliance officers no longer need to choose between security and speed. They can have both.
The compliance challenge: complexity vs. conversion
Onboarding is the first impression a bank makes on a customer. But traditional KYC workflows often create friction:
- Repetitive data entry
- Delayed approvals
- Manual checks and high abandonment rates
From a compliance standpoint, these pain points are often seen as necessary evils. But they don't have to be.
What’s needed is a solution that embeds compliance into the onboarding journey itself – one that verifies identity, ensures data integrity, and protects against fraud without putting the brakes on user experience.
SplitKey+: reinventing KYC technology from the ground up
SplitKey+ brings cryptographic assurance to digital identity, enabling banks to securely onboard customers via mobile devices while remaining regulator-ready from day one.
Here’s how it transforms the KYC landscape:
- Identity anchoring from the first tap
SplitKey+ allows banks to bind a customer’s mobile device to a verified digital identity, using cryptographic keys split between the server and the user’s phone. This binding occurs securely at the moment of onboarding and remains tamper-proof thereafter.
It creates a non-repudiable link between a customer and their actions – critical for anti-fraud, AML, and long-term regulatory traceability. What is non-repudiability, anyway?
With SplitKey+, a user’s private key is split between their mobile device and a secure server, meaning:
- The full key never exists in one place.
- Only when both parts are used together (with proper authorisation, such as biometric confirmation) can the customer perform an action – like logging in or signing a transaction.
Because this process is cryptographically bound to that user, the bank can prove:
- That the action originated from that specific user.
- That it was done at a certain time.
- That it was not tampered with.
This is what we mean by non-repudiation: it establishes trust and accountability as the customer cannot deny having taken the action.
- Built-in compliance with eIDAS, PSD2, and AML
SplitKey+ was built with European QSCD (Qualified Signature Creation Device) requirements and PSD2 (Payment Services Directive) in mind, satisfying EU regulatory frameworks for identity assurance. This ensures that digital onboarding not only meets KYC requirements but also provides legally binding proof of consent and identity validation.
- Passwordless verification and consent
During onboarding, customers authenticate and sign using cryptographic tokens, not passwords. A customer is free to create their own combination of MFA by combining two means out of three methods: PIN, pattern or biometrics. This prevents phishing, credential stuffing, and account takeovers – key concerns for compliance teams monitoring fraud risk.
SplitKey+ ensures every customer consent is both secure and auditable, turning digital signatures into strong compliance artifacts.
For compliance officers: risk mitigated, efficiency multiplied
SplitKey+ offers several strategic advantages tailored specifically to the concerns of compliance teams:
- Lower fraud risk: Strong cryptographic identity verification reduces impersonation and fake account risks.
- Audit-ready logs: Every authentication, signature, and identity event is recorded securely, simplifying audits and reporting.
- Reduced manual intervention: Automation of identity binding and consent management cuts back on costly human review.
- Cross-border compatibility: With support for EU-wide standards, SplitKey+ enables banks to scale across borders without adding compliance headaches.
A trusted identity layer for the digital era
In an age where regulators expect strong identity controls and customers demand instant access, banks can’t afford to compromise. SplitKey+ offers a one of a kind solution: a secure, compliant, and frictionless onboarding experience that satisfies both ends of the spectrum.
For compliance officers, it’s an opportunity to lead digital transformation – not just manage risk. With SplitKey+, onboarding becomes a strategic advantage, not a regulatory burden.
Ready to simplify onboarding while elevating your compliance posture? With SplitKey+, the future of KYC is already here – secure, perfected, and regulator-ready.