Skip to content

Banking Preconditions

This article summarizes conditions for working with JustOn Cash Management and banks via EBICS. It outlines specifics for you to understand and acknowledge beforehand, and specifies a number of conditions for using the software.

About Banking Data Exchange

JustOn Cash Management directly integrates Salesforce CRM with European banks. Using the secure, EBICS-compliant connection, businesses can directly retrieve and upload relevant payment information.

What is EBICS?

The Electronic Banking Internet Communication Standard (EBICS) is a transmission protocol for sending payment information between clients and banks as well as between banks over the Internet. It uses established standards for securely transmitting encrypted data. For details, see EBICS.

Prior to using the banking connection of JustOn Cash Management, your business must enter into a (usually chargeable) contract on the intended data access with your bank. From a technical perspective, you subscribe to an EBICS-compliant service for exchanging payment information. Hence you may be referred to as the subscriber, with your bank as the other contract party.

JustOn Cash Management supports EBICS 2.5 and EBICS 3.0. EBICS 2.5 is used with German banks only. EBICS 3.0 has introduced standardized Business Transaction Formats (BTF), which allow for working with German and other European banks – including French, Swiss and Austrian banks.

Access Permissions

Generally, EBICS allows for different permission concepts. JustOn Cash Management, specifically, uses the electronic distributed signature (EDS). This approach involves two access types for users: technical users prepare and transfer the data, and authorized users confirm and release orders.

JustOn Cash Management exclusively acts as a technical user with the signature class T (= transport). So it can retrieve bank statements and prepare and upload payment orders only, according to the access rights (order types, amount limit, etc.) that you have requested for it at your bank. Should the requested rights for the technical user exceed the necessary permissions for the data transfer, JustOn Cash Management will in no case exercise them and limit itself to operations under the signature class T.


According to the German Federal Financial Supervisory Authority (BaFin), the bank access via EBICS does not constitute an online banking access and therefore does not require specific authorizations under the provisions for payment initiation services.

Order Processing


In a rough outline, payment orders are processed as follows:

(1) JustOn Cash Management prepares the SEPA payment orders and encrypts the data packages.

(2) Under the EBICS signature class T, it then uploads the data to the bank, where the orders are queued.

If you have set up an amount limit for the technical user, preparing and uploading payment orders will be subject to this limit.

(3) An authorized user (EBICS signature class E or A/B) monitors the queue and releases the orders.

These operations are not controlled using JustOn Cash Management. The authorized representatives must use an appropriate third-party banking software or mobile application.


For the secure data transmission, EBICS uses three RSA key pairs:

  • Bank-technical key pair for signing requests
  • Identification and authentication key pair for identifying and authenticating the subscriber
  • Encryption key pair for encrypting/decrypting the transferred data

The RSA key pairs of the technical user are securely stored in a cloud-based hardware security module (HSM) – without any USB drive, smartcard or other physical device involved. JustOn Cash Management accesses the keys when preparing orders and interacting with the bank server.

Configuration Details


Before setting up and using JustOn Cash Management, contact your bank in order to determine the EBICS-relevant information. Use our onboarding form for your convenience.

Bank Access Requirements

Prior to using JustOn Cash Management, your business must enter into a (usually chargeable) contract on the intended data access with your bank. The contract must specify, among others, the users who work with the software and the relevant bank accounts.

Depending on your business requirements, make sure to request at least

  • One technical user access exclusively for JustOn Cash Management, including the following order types

    Order Type EBICS 2.5 EBICS 3.0
    Download CAMT.053 bank statement files C53 EOP/DE/camt.053
    SEPA Direct Debit Upload (Core) CDD SDD/COR/pain.008
    SEPA Direct Debit Upload (B2B) CDB SDD/B2B/pain.008


    The legacy MT940 protocol for bank statements will be discontinued by November 2025 and is therefore not supported.

  • One or more authorized user accesses – depending on whether you involve one (E signature) or multiple authorizing users (A and B signatures)


    If you already have an authorization workflow in place, you can reuse the existing authorized users to release orders produced by JustOn Cash Management.

Bank Details for JustOn Cash Management

If your bank is not available in JustOn Cash Management, file a ticket in the JustOn Support Portal, providing the following information:

  • Bank name
  • BIC
  • URL of your bank's EBICS endpoint
  • Host ID


This information is usually given by the bank on EBICS onboarding. In case of doubt, contact your bank to provide the relevant details.

SEPA Direct Debit

The European Payments Council (EPC) has established the single euro payments area (SEPA) to standardize cashless euro payments across Europe. It defines, among others, SEPA Direct Debit schemes (SDD): one primarily designed for B2C businesses (SDD Core), and one exclusively for B2B businesses (SDD B2B). The two schemes set common rules for transferring money from a debtor to a creditor, but vary in details (see SEPA Direct Debit).

SEPA Direct Debit is centered around a mandate, which allows the creditor to prove their request for collecting money. The collection is initiated by the creditor, submitting the order to their bank. The order includes information like mandate ID, amount, collection date and debtor IBAN. The bank then executes the order, withdrawing the money from the debtor's account and putting it to the creditor's account.

The common rules include:

  • The mandate is signed by the debtor before the first transaction (typically 14 days before the first collection).
  • The mandate allows one-off or recurrent collections and can be revoked by the debtor at any time.
  • The due date of a collection must not be more than 14 days in the future.

Depending on the scheme (Core or B2B), various timeframes and rules apply for the debtor to object to the money transfer and to order a reverse transaction.

The SEPA Direct Debit Core scheme is mandatory for transactions with consumers (B2C) and optional for transactions with businesses (B2B). Under SDD Core, a debtor can request a refund ("no-questions-asked") within eight weeks of the collection date. In case of an unauthorized transaction – which must be proven –, a debtor can ask for a refund within 13 months of the collection date.

The SEPA Direct Debit B2B scheme is exclusively for businesses. Under SDD B2B, the debtor is not entitled to obtain a refund for an authorized transaction. The debtor's bank, however, may still return a transaction under certain circumstances within three days. To ensure that a transaction is authorized under SDD B2B, the debtor's bank must check whether there is a valid mandate before executing the collection.


This overview on SEPA Direct Debit does not constitute any legally effective advice. JustOn cannot and must not provide such services. For any detailed questions and current information on implementing SEPA Direct Debit, contact your bank.