TL;DR: The UK’s BNPL rules will require FCA authorisation, stronger affordability checks, clearer loan terms, and formal complaints handling as the sector moves toward 2026, according to Veriff. For practitioners, the real issue is not the payment model itself but how identity, fraud, and onboarding controls adapt to new accountability demands.
NHIMG editorial — based on content published by Veriff: UK BNPL regulations to protect consumers by 2026: Key insights
By the numbers:
- UK BNPL transaction values are projected to exceed $60 billion by 2029.
Questions worth separating out
Q: How should financial institutions prepare for BNPL regulation changes?
A: They should treat BNPL as a regulated decision workflow and map every step from identity verification to affordability assessment, disclosures, and complaint handling.
Q: What breaks when BNPL partners are not continuously monitored?
A: Initial due diligence is not enough if a partner later drifts out of compliance, changes its customer process, or weakens complaint handling.
Q: Why do affordability checks matter beyond consumer lending policy?
A: They are a governance control that links identity, repayment risk, and consumer protection.
Practitioner guidance
- Map BNPL decisions to a single control chain Trace customer identity, affordability checks, disclosures, approval, and complaints handling as one end-to-end workflow so each decision can be reconstructed during audit or dispute handling.
- Reassess partner compliance continuously Move beyond initial onboarding review and establish recurring evidence checks for FCA authorisation, data handling, customer communications, and remediation performance across BNPL partners.
- Test approval rules against real customer journeys Validate that affordability criteria, disclosures, and complaint routes work in the live product flow, including embedded partner journeys and mobile-first checkout paths.
What's in the full article
Veriff's full article covers the operational detail this post intentionally leaves for the source:
- The full consultation and legislative timeline for the UK BNPL regime, including the FCA and Parliament milestones.
- The specific consumer protection measures, such as Section 75 rights and Financial Ombudsman Service access.
- A provider-focused summary of the transparency, affordability, and complaints handling requirements that firms must build into operations.
- The article's commentary on how BNPL regulation may affect approval rates and product strategy.
👉 Read Veriff's analysis of the UK BNPL regulations and consumer protection rules →
UK BNPL regulation: what changes for fraud and IAM teams?
Explore further
BNPL regulation is really a governance story about decision accountability. The article is framed as consumer protection, but the operational issue for financial institutions is whether they can prove who approved credit, on what evidence, and under which controls. Once FCA authorisation and affordability checks become mandatory, informal approval paths stop being acceptable. The practitioner conclusion is that BNPL must be governed like a regulated decision workflow, not a checkout feature.
A few things that frame the scale:
- 91.6% of secrets remain valid five days after the targeted organisation is notified, showing a critical gap in remediation procedures, according to Ultimate Guide to NHIs.
- Only 20% have formal processes for offboarding and revoking API keys, and even fewer have procedures for rotating them.
A question worth separating out:
Q: Who is accountable when BNPL customers dispute charges or repayment terms?
A: Accountability should sit with the firm that can prove the decision path, the disclosures presented, and the complaint route available to the customer. If those elements are fragmented across partners or systems, accountability becomes difficult to defend, especially when Section 75 or ombudsman processes are invoked.
👉 Read our full editorial: UK BNPL rules raise the bar for consumer identity checks