📊 Full opportunity report: The rails. Why European agentic commerce is co-defined by two converging regimes. on ThorstenMeyerAI.com — validation score, market gap, and execution plan.
TL;DR
European agentic commerce is being co-defined by two converging regulatory regimes—PSD3/PSR rebuilding payment rails and the AI Act establishing AI guardrails—resulting in a slower but more durable infrastructure. This regulatory convergence affects how AI agents can operate in payments and decision-making.
European law currently prevents AI agents from acting as payers because of regulatory requirements that mandate human authorization for transactions, despite technological capabilities allowing automated payments. This legal barrier is central to the development of agentic commerce in Europe.
The core issue is that, unlike in the US where private infrastructure like Mastercard’s Agent Pay and Visa’s Intelligent Commerce enable autonomous payments, Europe’s payment system is governed by statutory regulations. PSD2’s Strong Customer Authentication requires human verification for online payments, and upcoming reforms—PSD3 and the Payment Services Regulation (PSR)—will rebuild the payment rails with API parity, making interfaces accessible to nonbank agents. Simultaneously, the EU AI Act, slated for full implementation in 2026, classifies high-risk AI systems—such as those used for credit scoring and fraud detection—as subject to strict oversight, including conformity assessments and human oversight. The convergence of these two regimes means that the development of agentic commerce in Europe depends less on technological capability and more on how the legal architecture is constructed and implemented.These reforms are not designed together; PSD3/PSR and the AI Act are progressing on different timelines and scopes, creating seams that influence what AI agents can do. While the US relies on private, decision-driven infrastructure, Europe’s statutory approach results in a slower, more open, but more complex environment. The infrastructure built into law, such as open finance and API parity, aims to create a resilient foundation that is less susceptible to control by any single entity.
The rails.
Why European agentic
commerce is co-defined by
two converging regimes.
SCA needs a human payer
first-class third-party interfaces
(Omnibus may slip it to 2027)
the clock agentic commerce runs on
choose the best deal — capability is here
authentication
required
as the equivalent of a human payer
- Mastercard Agent Pay, Visa Intelligent Commerce, Plaid
- The rail’s owner sets the rule — extend to agents by product decision
- Fast — moves at product speed
- Concentrated — a few firms control access
- PSD2/PSD3, PSR, SCA, FIDA
- The legislature sets the rule — no network can grant payer status
- Slow — moves at legislative speed
- Open — mandatory API parity, public data substrate
within
limits
Europe is betting that durable, open, publicly-owned rails produce a better agentic-commerce market than fast, concentrated, privately-owned ones — even at the cost of arriving later. Which foundation an agent economy actually prefers is the genuine open question.Thorsten Meyer · The Rails · Agentic Commerce 04
Implications of Regulatory Convergence for European AI Payments
This convergence of regulatory regimes in Europe will shape the future of agentic commerce by establishing a legal environment that prioritizes durability and openness over speed. While the slower legislative process may delay the deployment of autonomous payment agents, the resulting infrastructure could foster a more resilient and inclusive market. This approach contrasts with the US, where private infrastructure allows for faster, more concentrated development but may be less open or robust in the long term. The European model’s emphasis on statutory, open standards could lead to a more sustainable and universally accessible agentic economy, but at the cost of delayed innovation and deployment.European open banking API integration tools
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
European Regulatory Reforms Reshape Payment and AI Frameworks
European regulators have been working on comprehensive reforms to digital payments and AI governance. PSD2, enacted in 2018, introduced multi-factor authentication, setting the stage for further reforms. The upcoming PSD3 and PSR, expected to be adopted by 2028, aim to overhaul payment infrastructure with mandatory API parity, allowing nonbank agents to access payment systems directly. Simultaneously, the EU AI Act, agreed upon in November 2025 and scheduled for implementation starting in 2026, will impose high-risk obligations on AI systems used in financial decision-making, requiring conformity assessments and human oversight. These reforms are not synchronized but are converging in a way that fundamentally influences how AI agents can operate within Europe’s financial ecosystem.
“The question ‘can an AI agent pay for things in Europe’ has no technological answer, only a regulatory one.”
— Thorsten Meyer
AI compliance software for financial services
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Uncertainties in Regulatory Timelines and Implementation
While the legislative proposals are clear, actual implementation timelines remain uncertain. PSD3 and PSR are expected around 2028, but the final adoption and technical standards could slip. The AI Act’s high-risk obligations, scheduled for 2026, might also experience delays, potentially pushing back the deployment of AI guardrails. Additionally, the interaction between these regimes and their impact on actual agent capabilities is still being tested in practice, with ongoing debates about enforcement and compliance.
automated payment authorization devices Europe
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Next Steps in European Regulatory and Technical Integration
European regulators will continue finalizing PSD3 and PSR standards, with implementation expected to begin around 2028. Concurrently, the AI Act’s high-risk obligations will be phased in, with detailed conformity assessment procedures being developed. Industry stakeholders are preparing for these changes, and pilot projects may emerge to test how agents operate within the new legal environment. Monitoring how these frameworks are enforced and how they influence market development will be critical over the next few years.
AI-powered fraud detection tools
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Key Questions
How does Europe’s approach to agentic commerce differ from the US?
Europe relies on statutory, regulatory frameworks that rebuild payment infrastructure with open standards, making the environment slower but more durable. In contrast, the US depends on private, decision-driven infrastructure that enables faster, concentrated development of autonomous payment agents.
When will European AI agents be able to pay autonomously?
Legally, this depends on the implementation of PSD3/PSR and the AI Act. While the reforms are scheduled for 2026-2028, actual deployment will depend on regulatory compliance and technical standards, which may experience delays.
What are the main challenges in implementing these reforms?
Key challenges include coordinating the timelines of different regimes, developing technical standards for API parity, ensuring compliance with AI high-risk obligations, and managing the seams between the different regulatory regimes.
Will Europe’s slower process hinder innovation?
While the slower legislative process may delay deployment, the resulting infrastructure aims to be more resilient, open, and inclusive, potentially fostering sustainable innovation in the long term.
Source: ThorstenMeyerAI.com
