Design-Partner Program · limited cohort

Be the bank that's ready — and can prove it.

BSP Circular 1213 — already in force — requires you to retire SMS & email OTP and deploy passkeys by June 30, 2026. Join a small group of founding institutions deploying it now — verifiable, court-admissible, examiner-ready.

Apply to the program See the proof, live →

—days

—hours

—minutes

until BSP 1213 · June 30, 2026

The stakes

After the deadline, the liability is yours.

Read with AFASA (RA 12010), scam-loss liability shifts to the supervised institution unless it can prove adequate controls — as evidence, per transaction, on demand. The question examiners will ask is not "did you have controls?" but "can you prove it?"

The design-partner offer

Start now. Don't wait for the paperwork.

A 90-day pilot built so you can begin before every certificate is in hand.

✓
Begin before SOC 2 / pen-test land. The pilot agreement commits us to deliver those on a defined timeline during the pilot — so security review doesn't block your start.
✓
Free or discounted pilot. Production pricing only if you proceed. No surprise costs.
✓
One integration covers your whole institution — every branch, channel, and teller. No per-branch rollout.
✓
Hands-on onboarding and a direct line to shape the roadmap as a founding partner.
✓
Sandbox first. Run every endpoint against the real engine before a single live transaction.

What you deploy

Compliance you can hand an examiner.

Authentication

Phishing-resistant login

WebAuthn passkeys (AAL3) + strong customer authentication and step-up bound to the action and amount.

Payee

Verification of payee

Name-to-account checks at the point of transfer — the control regulators now expect.

Evidence

Court-admissible audit

Every event post-quantum signed (NIST FIPS 204), hash-chained, tamper-evident, and independently verifiable.

Safeguards

Kill-switch & money-lock

AFASA-grade customer safeguards your account holders can trigger on suspected fraud.

From sign-up to examiner-ready

A 30-day path.

Week 1

Week 2

Integrate once in the sandbox; run all endpoints against the real, signed engine.

Week 3

Go live on a limited scope; signed evidence accrues on every transaction.

Week 4

Generate your Fiduciary Access Certificate; you're examiner-ready before the deadline.

Limited cohort

Apply to become a design partner.

A handful of founding institutions. The earlier you start, the more of the deadline you have on your side.

Apply now →

Don't take our word for it — verify the signatures yourself: public ledger · verify a certificate · due-diligence pack

Fiduciary is compliance and identity infrastructure, not legal advice; regulatory obligations remain with the supervised institution.