MCP Server · EU Open Banking

Bank data for
your AI agent

Connect your bank accounts in one click. Get balances, transactions, and spending insights as MCP tools. No API keys to manage.

Get started free View source

Add to Claude Code in 10 seconds

{
  "mcpServers": {
    "openfinance": {
      "type": "url",
      "url": "https://openfinance-mcp.widurki.workers.dev/mcp",
      "headers": {
        "Authorization": "Bearer YOUR_API_KEY"
      }
    }
  }
}

Works with Claude Code, OpenClaw, Cursor, Windsurf, and any MCP-compatible AI tool.

7 tools, one connection

Everything your agent needs to understand your finances.

🔗
connect_bank
OAuth flow to link a bank account. PSD2-compliant, read-only.
🏦
list_accounts
All connected accounts with names, IBANs, and institutions.
💰
get_balances
Live balances across all accounts. Sub-2-second response.
📋
get_transactions
Date-filtered transactions with merchant names and categories.
📊
get_spending_summary
Monthly spending breakdown by category with trend comparison.
connection_status
Check provider health, consent expiry, and session status.
🔑
complete_connection
Finish the OAuth handshake after bank authorization.

How it works

1

Add the MCP server

Paste the config into your AI tool's MCP settings. Takes 10 seconds.

2

Ask your agent to connect your bank

"Connect my bank account" — your agent calls connect_bank and gives you a secure link.

3

Authorize via your bank's portal

Standard PSD2 open banking flow. Read-only access. No credentials stored by us.

4

Ask anything about your finances

"What's my balance?" "How did I spend last month?" "Do I have any subscriptions I forgot about?"

Simple pricing

Free
€0
  • 1 bank connection
  • 30 days transaction history
  • 100 requests / hour
  • All 7 MCP tools
Pro
€5 /month
  • Unlimited bank connections
  • 12 months transaction history
  • 1,000 requests / hour
  • Spending categorization
  • Priority support

Your bank data stays yours

We never see your bank credentials. Here's exactly how your data is protected.

🔐

We never touch your password

You log in directly with your bank via PSD2 open banking. We receive a read-only token — never your username or password. Same technology your bank's own app uses.

👁️

Read-only access

We can only view balances and transactions. We cannot move money, make payments, or modify your accounts. This is enforced at the banking API level — not just our code.

🔒

Encrypted at rest and in transit

All data encrypted with AES-256 at rest. All communication over TLS 1.3. OAuth tokens stored encrypted — even we can't read them in raw form.

90-day consent with auto-expiry

PSD2 mandates your consent expires every 90 days. We'll remind you to re-authorize — if you don't, access stops automatically. You're always in control.

🗑️

Delete anytime, instantly

Revoke access with one click. We delete all your data — tokens, transactions, everything — within 24 hours. GDPR Article 17 compliant.

🏛️

Regulated infrastructure

Bank connections powered by licensed Account Information Service Providers (AISPs) under PSD2/EU regulation. Not a screen scraper — a regulated API.

🇪🇺 PSD2 Compliant
🛡️ GDPR Compliant
🔐 AES-256 Encryption
🏦 Licensed AISP

6,000+ banks across Europe

PSD2 coverage via EnableBanking. Ireland, UK, Germany, France, Nordics, and more.

🇮🇪 🇬🇧 🇩🇪 🇫🇷 🇳🇱 🇫🇮 🇸🇪 🇩🇰 🇳🇴 🇪🇸 🇮🇹 🇵🇹 🇦🇹 🇧🇪 🇵🇱