The PSD2 directive requires payment service providers to apply strong customer authentication mechanisms in those cases in which the customer:
a) access your account online payment;
b) start a trade electronic payment;
c) perform over a remote channel any action that may involve
a risk of payment fraud or other abuse.