Skip to content
veetso.
Jurisdiction · Netherlands

The EU footing.

The Netherlands is Veetso's foothold in the European Union. The Amsterdam-based operating team carries EU regulatory engagement, EU payments-rail integrations, and the EU-facing product work that has to land under the framework set by De Nederlandsche Bank, the Autoriteit Financiele Markten, and the EU's regulatory perimeter.

Operating presence
Amsterdam
Dutch regulators
DNB · AFM
EU-wide regulators
EBA · ESMA · EIOPA · EDPB
Key EU framework
PSD2/PSD3 · MiCA · DORA · EU AI Act
Privacy
EU GDPR · Dutch UAVG
Time zone
Central European Time
  1. Regulatory framework

    DNB, AFM, and the EU layer above them.

    Dutch financial services are supervised by De Nederlandsche Bank (DNB) for prudential matters and the Autoriteit Financiele Markten (AFM) for market conduct. Both regulators have a long track record of taking digital-finance and AI supervisory questions seriously, with detailed published guidance on AI in the financial sector. The Dutch framework sits underneath the EU-wide regime set by the European Banking Authority (EBA), the European Securities and Markets Authority (ESMA), the European Insurance and Occupational Pensions Authority (EIOPA), and the European Data Protection Board (EDPB).

    For a regulated AI platform, the EU layer is where most of the new substance sits: PSD2 today (PSD3 in passage), the Markets in Crypto-Assets Regulation (MiCA), the Digital Operational Resilience Act (DORA), and the EU AI Act. Each one is enforced in the Netherlands by DNB or AFM acting under the harmonised EU regime.

    Veetso AI governanceAI in payments compliance (essay)
  2. Partner pattern

    EU-licensed institutions for regulated activity.

    VEETSO LIMITED is a UK company. Where regulated services are made available to EU customers, they are provided in partnership with EU-licensed institutions under the framework that applies to each service. Post-Brexit, the UK's regulatory regime is no longer equivalent to the EU's for most financial services, which is why the EU-licensed-partner pattern is the only durable way to operate at scale across the bloc.

    Dutch supervisory expectations for outsourcing and third-party arrangements follow EBA Guidelines EBA/GL/2019/02 and the related DORA requirements. Veetso's governance system was designed against those standards.

  3. AI Act and GDPR

    The two EU statutes that bite hardest.

    The EU AI Act came into force in 2024 and is being phased in through 2025-2027. It distinguishes prohibited, high-risk, and limited-risk AI systems; financial-services AI used for credit-scoring or for fraud detection is explicitly listed as high-risk in Annex III. The Act requires risk-management systems, data-governance, human oversight, post-market monitoring, and conformity assessment for high-risk systems. Veetso's six gates were designed against these obligations from the start.

    The General Data Protection Regulation (GDPR) and the Dutch UAVG continue to govern personal-data processing. Documents and customer data are stored in regions you nominate; AI calls are routed through approved providers under a no-training contractual basis; operational telemetry records counts only, not content.

    PrivacySecurity
Working with us

Operating in Central European Time from Amsterdam.

EU enquiries reach the Amsterdam team fastest during the European business day. Press to press@veetso.com; general enquiries to info@veetso.com.

Amsterdam officeLeadership