Track delivery¶
This page shows what the platform delivers, domain by domain, across Track 1 (direct bank) and Track 2 (SaaS to licensed institutions). It is the commercial map of the SaaS proposition.
The classification axis is delivery of solution, not ownership of obligation. A Track 2 tenant owns the regulatory obligation; the platform delivers the technical capability they use to satisfy it. That distinction is the business case.
See platform boundary for a detailed description of what sits outside the platform.
Delivery by risk domain¶
| Risk domain | Platform delivers | Track 1 use | Track 2 use |
|---|---|---|---|
| D01 Capital & Liquidity | LCR/NSFR, RWA, capital ratios, stress testing, IRRBB, prudential returns (SD06) | Bank satisfies RBNZ/APRA prudential requirements | Tenant uses platform to meet their own capital and liquidity obligations |
| D02 Credit Risk | Credit decisioning, affordability, scoring, pre-approval, ECL/impairment (SD05, SD06) | Bank manages its own lending book | Tenant owns the credit book; platform delivers the decisioning and impairment infrastructure |
| D03 AML / Financial Crime | eIDV, CDD, transaction monitoring, ML scoring, sanctions, case management, regulatory reports (SD02, SD03) | Bank satisfies AML/CFT Act obligations as reporting entity | Tenant is the reporting entity; platform enables their full AML/CFT programme |
| D04 Customer & Conduct | Consent, disclosure enforcement, complaint management (SD08) | Bank satisfies conduct obligations to its own customers | Tenant satisfies conduct obligations to their customers using platform modules |
| D05 Data & Technology | CDC pipeline, RBAC, secrets management, PAM, audit trail (SD07, platform-wide) | Bank satisfies information security, technology risk, and data governance obligations | Tenants benefit from platform security posture; SaaS provider obligations under CPS 234 and CPS 230 |
| D06 Payments & Settlement | Payment validation, fraud scoring, FX, IFTI/CMIR (SD04) | Bank is the scheme participant; platform is its processing system | Tenant is the scheme participant; platform processes payments on their behalf |
| D07 Regulatory Reporting | Prudential returns, AML reporting pipeline, regulatory report submission (SD06, SD03) | Bank files reports with RBNZ, APRA, AUSTRAC | Platform generates reports; tenant signs off and lodges with their regulator |
| D08 Governance & Accountability | Agent action logger, system decision log, role-scoped access (SD07, SD08) | Bank satisfies audit trail and accountability requirements | Tenants use platform audit infrastructure for their own governance evidence |
| D09 Operational Resilience | BCP, DR, incident management, change management (platform-wide) | Bank's own operational resilience requirements | SaaS provider's resilience obligations are the service commitment to tenants |
| D10 Privacy & Data Rights | Consent management, PII governance, retention enforcement (SD07, SD08) | Bank satisfies Privacy Act obligations for its own customers | Platform processes tenant customer data under data processing agreements |
| D11 People & Culture | Not platform-delivered | Bank manages its employees through external HR systems | Tenants manage their own employees through their own HR systems |
Delivery by business domain¶
| Business domain | Delivery | Notes |
|---|---|---|
| BD01 Customer | Platform | SD02 + SD08 deliver customer capability. Tenant owns the customer relationship in Track 2. |
| BD02 Finance & Accounting | Platform (banking ledger) | SD01 generates the banking GL. Non-banking GL, corporate overhead, and statutory accounts are in the tenant's ERP — outside the platform. |
| BD03 Treasury | Platform | SD06 delivers all capital and liquidity computation. Key Track 2 capability for institutions without internal treasury. |
| BD04 Product | Platform | Track 1: retail banking products. Track 2: platform modules are the product. |
| BD05 Credit & Lending | Platform | SD05 delivers decisioning. Tenant holds the lending licences and the credit book. |
| BD06 Payments & Operations | Platform | SD04 delivers processing. Tenant is the scheme participant. |
| BD07 Financial Crime & Compliance | Platform | SD02 + SD03. One of the five primary SaaS entry wedges. Tenant is the reporting entity. |
| BD08 Risk Management | Platform | SD06. Track 2 institutions without internal risk capacity use this to meet prudential obligations. |
| BD09 Technology & Data | Platform | Owns and operates all eight system domains in both tracks. |
| BD10 Governance & Legal | Platform (technical layer) | Platform delivers audit trail and access control. Board and regulatory governance processes are external in both tracks. |
| BD11 People & Culture | External | HR and payroll are external in both tracks. Tenants manage their own employees independently. |
What Track 2 tenants bring themselves¶
When a tenant subscribes to the platform they still need the following outside the platform:
| Item | What they need | Why it's external |
|---|---|---|
| Banking licence | Their own RBNZ registration or APRA ADI authorisation | The platform cannot hold a licence on their behalf |
| Scheme membership | Payments NZ, NPP, card scheme memberships | The platform processes; the tenant is the participant |
| ERP / accounting | General ledger for non-banking entries and statutory accounts | Out of platform scope by design (ADR-006) |
| HR and payroll | HRIS, payroll platform | Platform has no workforce management modules |
| Board and governance | Board administration, company secretarial | Human governance process |
| MLRO / compliance officer | Named officer for AML/CFT reporting entity obligations | Regulatory requirement for a named human |
| Regulator relationship | Direct regulatory engagement | Cannot be delegated to a platform provider |
The SaaS entry wedges¶
Track 2 is sold as a solution to specific operational problems, not as a full platform replacement. The five primary entry wedges each correspond to platform capability:
| Entry wedge | Platform capability | Domains |
|---|---|---|
| AML / compliance cost | SD02 KYC + SD03 AML Monitoring | D03, BD07 |
| Digital onboarding | SD02 KYC + SD08 App | D03, D04, BD01 |
| Core rigidity | SD01 Core Banking + SD04 Payments | D06, BD06 |
| Lending systems | SD05 Credit + SD06 Risk | D02, BD05 |
| Data fragmentation | SD07 Data Platform + SD06 Risk | D05, D07, BD08 |
See market opportunity for the full commercial context.
Related¶
- Platform boundary — what is and is not inside the platform
- Market opportunity — commercial context for Track 2
- Governance framework — policy and regulatory framework
- Systems index — all system domains and modules