Security a concern over bank account software

by Rachael Singh

More from this author

13 Dec 2010

  • Comments
Will you have to rekey account details

IF REKEYING bank statements makes accountants groan in anguish, a new technology could make them sigh in relief. Software company Xero is providing links to bank and credit card transactions freeing the accountant from data entry work.

In January, Xero offered its customers that use HSBC accounts transaction data to allow them real-time information. Recently, the company added a further 55 financial institutions in the UK to its service, including, RBS, Lloyds TSB and HBoS. Xero plans to provide bank and credit card transaction data from about 80 financial institutions by the first quarter of 2011 as part of its standard package. The company will provide the feeds at no extra cost globally next year.

The technology has been used in the US for almost ten years, however, this is the first time it will be available in the UK.

Traditionally accountants rekeyed bank information into software or downloaded data and imported it. But experts have backed this new functionality which they believe could help accountants gain a better understanding of a client's financial information. It could also aid them in offering clients clearer advice on the financial health of an organisation.

An independent technology analyst said by having this technology accountants could provide quarterly VAT returns rather than the traditional annual ones.

However, some experts in the industry question the security of around the way in which the third party supplier, used for the Xero software, obtains the financial information.

Xero uses US technology business Yodlee to provide the bank feeds. To obtain these Yodlee must acquire password information. Using login data it accesses the bank account or credit card transaction information and transfers it to the Xero software.

Though Xero and Yodlee have obtained the backing of experts, the question raised is what happens if there is a breach of security?

Banks take no responsibility if login information is passed to a third party. Yodlee has a similar clause in its contract. The prospect of no-one taking responsibility for money could leave some accountants in a cold sweat, should security be breached.

Xero UK MD Gary Turner agrees these security concerns are "in essence" correct. Turner believes there is a "disconnect" between what banks tell customers and what it is doing. A local bank manager may tell clients they should never give out passwords. However, banks use software such as Yodlee to access information, and is therefore handing out password information in practice. He said this confusion of responsibility is something the banking community needs to clarify, and soon.

Both Xero and Yodlee have so far avoided any security leaks. Both companies have heavily invested in firewalls and internet security to mitigate the risk of security breaches. According to independent technology reviewer, Dennis Keeling, founder of, the firewalls at these companies are "incredible" and have secure and multiple levels of security.

Xero said it was comforted by the fact Yodlee is already used by larger
organisations. Having established itself more than ten years ago, Yodlee is already used by 42 of the top 50 banks in the US including, Bank of America and American Express.

Keeling believes if there is a "sniff of competition" other vendors will start to follow suit and there could be larger vendors offering the same service in the future.

Visitor comments

blog comments powered by Disqus

Add your comment

We won't publish your address

By submitting a comment you agree to abide by our Terms & Conditions

Your comment will be moderated before publication

  • Send



Conservatoire for Dance and Drama, London, Permanent, Part Time, £60,000 pro rata




Get the latest financial news sent directly to your inbox

  • Best Practice
  • Business
  • Daily Newsletter
  • Essentials


Search for jobs
Click to search our database of all the latest accountancy roles

Create a profile
Click to set up your profile and let the best recruiters find you

Jobs by email
Sign up to receive regular updates with the latest roles suitable for you



Why budgeting fails: One management system is not enough

If budgeting is to have any value at all, it needs a radical overhaul. In today's dynamic marketplace, budgeting can no longer serve as a company's only management system; it must integrate with and support dedicated strategy management systems, process improvement systems, and the like. In this paper, Professor Peter Horvath and Dr Ralf Sauter present what's wrong with the current approach to budgeting and how to fix it.


iXBRL: Taking stock. Looking forward

In this white paper CCH provide checklists to help accountants and finance professionals both in practice and in business examine these issues and make plans. Also includes a case study of a large commercial organisation working through the first year of mandatory iXBRL filing.