MAY 26, 2026
%22%3E%3Cpath%20d=%22M12%206.18945C12%205.99054%2011.921%205.79978%2011.7803%205.65912%2011.6397%205.51847%2011.4489%205.43945%2011.25%205.43945S10.8603%205.51847%2010.7197%205.65912C10.579%205.79978%2010.5%205.99054%2010.5%206.18945V14.4395C10.5%2014.5717%2010.535%2014.7015%2010.6014%2014.8158S10.7632%2015.0249%2010.878%2015.0905l5.25%203C16.3003%2018.1836%2016.5022%2018.2056%2016.6905%2018.1518%2016.8788%2018.0981%2017.0386%2017.9728%2017.1358%2017.8028%2017.2329%2017.6327%2017.2597%2017.4314%2017.2104%2017.2419%2017.1612%2017.0523%2017.0397%2016.8896%2016.872%2016.7885L12%2014.0045V6.18945z%22%20fill=%22%23111%22/%3E%3Cpath%20d=%22M12%2024.9395c3.1826.0%206.2348-1.2643%208.4853-3.5148C22.7357%2019.1743%2024%2016.1221%2024%2012.9395c0-3.18264-1.2643-6.23489-3.5147-8.48533C18.2348%202.20374%2015.1826.939453%2012%20.939453S5.76516%202.20374%203.51472%204.45417C1.26428%206.70461.0%209.75686.0%2012.9395c0%203.1826%201.26428%206.2348%203.51472%208.4852C5.76516%2023.6752%208.8174%2024.9395%2012%2024.9395zm10.5-12c0%202.7847-1.1062%205.4554-3.0754%207.4246-1.9691%201.9691-4.6398%203.0754-7.4246%203.0754-2.78477.0-5.45549-1.1063-7.42462-3.0754C2.60625%2018.3949%201.5%2015.7242%201.5%2012.9395c0-2.7848%201.10625-5.45554%203.07538-7.42467S9.21523%202.43945%2012%202.43945c2.7848.0%205.4555%201.10625%207.4246%203.07538C21.3938%207.48396%2022.5%2010.1547%2022.5%2012.9395z%22%20fill=%22%23111%22/%3E%3C/g%3E%3Cdefs%3E%3CclipPath%20id=%22clip0_1107_2521%22%3E%3Crect%20width=%2224%22%20height=%2224%22%20fill=%22%23fff%22%20transform=%22translate(0%200.939453)%22/%3E%3C/clipPath%3E%3C/defs%3E%3C/svg%3E){kind=small}
26 min listen
Host
Tune in to the Full Podcast Episode Below
Listen now on
For most of the last five years, UK open banking has lived under a recurring criticism: capability without consumer-facing impact. APIs were live, regulations were in place, and sandboxes were busy. None of it produced the consumer payment alternative the original PSD2 narrative implied.
This episode of the Fintech Garden Podcast steps into the moment that is starting to change.
In conversation with David Parker — founder and CEO of Polymath Consulting, Lead Ambassador to The Payments Association, and one of the longest-standing voices in UK payments — the focus is on cVRP: Commercial Variable Recurring Payments. The first open banking scheme was designed specifically to compete with card-on-file and direct debit.
The framing throughout the conversation is deliberate. This is not a forecast. This is a scheme with a CEO, a board, a published fee model, and merchants now being asked to put it on 2027 roadmaps.
The Phase Structure Is Doing Most of the Strategic Work
cVRP is launching in two phases, and the phase design is more important than most commentary acknowledges.
Phase 1 covers “safe businesses” — charities, utilities, investment accounts, and own-account transfers. No consumer protection layer. Fixed fee of approximately 7p per transaction plus the PISP charge, landing roughly at 10p to 12p all-in.
Phase 2 expands to broader retail with ad valorem pricing, likely around 15 basis points, with consumer protection. Pitched as an alternative to card-on-file at materially lower cost.
The sequencing is intentional.
Phase 1 generates volume in segments where the economic case is obvious and consumer protection is not the deciding factor. Phase 2 broadens to retail once operational maturity, brand recognition, and merchant tooling are in place.
This is the “crawl, walk, run” approach David refers to throughout. The crawl was longer than anyone expected. The walk is happening now. The run is what 2027 looks like if the volume builds.
cVRP Beats Card-on-File on Control, Not Just Price
The cost argument is real. 10-12p versus 20-30 basis points blended for card-on-file is a meaningful gap for high-volume recurring collectors.
But the structural argument is stronger than the price argument.
Card-on-file gives the merchant ongoing access to the user’s card. cVRP gives the user ongoing control over what the merchant can take.
A consumer paying for a streaming service on cVRP can cap the maximum monthly draw at £35, limit the agreement to 12 months, and revoke access instantly from the banking app. None of that exists on card-on-file at the consumer level.
This is the kind of functionality Mastercard built years ago through its Orbiscom acquisition — but kept in the B2B virtual card market under “Mastercard in Control.” It was never extended to consumers, partly because cards run on pull rails where these controls are harder to implement, partly because the commercial incentive favored the merchant.
cVRP runs on push rails — Faster Payments — which makes consumer-side control structurally natural.
Once users discover the controls, the user experience advantage compounds.
cVRP Fixes the Broken 25% of Direct Debits
Direct debit is cheap, reliable, and entrenched in UK consumer behavior. For roughly 75% of users with predictable income, it works.
The remaining 25% is where the failure mode lives.
Consumers paid weekly or with variable income see direct debits decline at higher rates. The cost of failure is asymmetric — the consumer pays bank fees, the merchant pays customer service costs, and the support workflow around changing direct debit windows is genuinely frustrating for both sides.
cVRP solves this with a two-step pattern.
First, an AIS (Account Information Service) call verifies that funds are actually available. Then, the cVRP push is initiated.
David’s framing: direct debit fires a missile in the dark. cVRP sends a tracker first, locates the target, then sends the missile.
For utility companies and subscription services with high-variability customer cohorts, this is operationally significant. The savings are not in displacing direct debit broadly. The savings are in resolving the 25% that has been quietly expensive for everyone for years.
Integration Is Lighter Than Merchants Expect
A common merchant assumption is that adding cVRP requires substantial reengineering. It does not.
Funds arrive via Faster Payments. Most UK merchants already receive Faster Payments. The infrastructure for inbound settlement is in place.
The work happens at two layers.
Gateway integration — the existing payment gateway needs to recognize and process cVRP authorization. Reconciliation — back-end accounting needs to handle the new flow.
That is meaningful work, but it is not foundational. Most modern payment orchestration platforms will handle cVRP integration as part of their roadmap, and once they do, individual merchants will integrate through their existing PSP relationship.
The one genuine operational challenge is settlement timing. Faster Payments can take five to ten minutes. For dispatch-immediate merchants, that delay matters.
For most online retail, where dispatch happens hours or days later anyway, it does not.
The Phase 2 Debate Will Define cVRP’s Competitive Position
The most strategically interesting part of the conversation is the open question of who counts as a “safe” merchant.
Phase 1 economics — fixed fees, no consumer protection — are reserved for charities, utilities, and similar low-risk categories.
Phase 2 introduces consumer protection and ad valorem pricing.
But Phase 2 covers retail. And retail is not uniform.
A Waitrose loyalty card customer doing a £250 monthly grocery shop has a chargeback risk profile closer to a utility customer than to a high-risk online seller. Should Waitrose argue for Phase 1 fixed-fee treatment for its loyalty cohort? Should other supermarkets follow? Where does the boundary between “safe” and “needs consumer protection” actually sit?
These conversations are happening now, and how they resolve will determine whether cVRP’s cost advantage holds across categories or only in narrow ones.
This is the part of the cVRP story that requires watching the scheme’s communications, not just its technical roadmap.
Scheme Viability Is the Open Question
cVRP currently exists because large industry players are funding the scheme operations. There is a CEO. There is a board. There is governance.
What is not yet sustainable transaction volume.
Some industry voices privately question whether cVRP will still exist in three years. Others compare it to contactless — slow adoption followed by sudden inflection.
David refuses to pick a side. But he points to a useful signal.
Amazon now accepts “pay from your bank” through open banking. That is not a small operator dabbling. That is the largest online retailer in the world, signaling that the rails are credible.
Whether that becomes a tipping point or remains an isolated case will define cVRP’s trajectory.
For merchants planning ahead, David’s recommendation is direct. Start your 2027 roadmap planning in the next three to four months. Have cVRP on it, along with broader open banking.
Brand Is the Hidden Adoption Variable
Every successful open banking scheme worldwide has one thing in common.
Swish in Sweden. iDEAL in the Netherlands. Pix in Brazil.
All three have strong acceptance marks — visible at checkout, recognized by consumers, and associated with a reliable experience.
cVRP currently does not.
The technical capability is in place. The economic case is in place. The regulatory framework is in place.
The consumer-facing identity is not.
For Phase 2 retail adoption to scale, that has to change. And it has to change soon.
The Global View: Concentration, Not Fragmentation
The conversation closes on a useful reframing of a common narrative.
Fintech commentary often describes the global payment landscape as becoming more fragmented. The reality is closer to the opposite.
Brazil’s Pix went from zero to dominant in three years. That is not fragmentation. That is the concentration into a new dominant rail.
Europe’s Wero is being politically supported in a way that suggests consolidation, not dispersion.
Russia and India have effectively excluded international card schemes in favor of domestic alternatives.
What is increasing globally is the number of relevant local payment methods that any cross-border merchant must integrate. Whether that looks like fragmentation depends entirely on which side of the integration the merchant sits on.
For global operators, the obligation is the same regardless of framing. Alternative payment methods are no longer optional. They are a structural component of any modern commerce stack.
Stablecoins Remain a B2B Story
A short but useful exchange near the end of the episode.
Stablecoins are not yet a meaningful B2C payment instrument. The active center of gravity is wholesale B2B settlement.
That may change. It may not.
For fintech operators allocating product investment, this is a useful filter. The hype is high. The consumer volume is not.
The Operator Takeaway
cVRP has spent the last five years in a long crawl phase. The conversation makes a clear case that the walk and run phases will move faster than the crawl suggested.
For merchants — start the 2027 planning now. For payment gateways and PSPs, cVRP integration is becoming roadmap material. For consumers, the controls cards never offered are about to become standard. For regulators and the scheme operators, brand recognition is the hidden constraint.
UK open banking is finally producing a consumer-facing rail that competes on more than principle. The next two years will determine whether it stays that way.
Share article
Host
