Avoid ISO 20022 risks

ISO 20022: Why payment data failures now hit operations, not just IT

  • Insight
  • 4 minute read
  • July 08, 2026
John Dwyer

John Dwyer

Partner, PwC Ireland (Republic of)

ISO 20022 is reshaping payments across Ireland and the EU. What was once an IT format change is now a data and operating model challenge, with real risks of rejected payments, payroll disruption and operational impact for corporates.

ISO 20022 isn’t just a new payment file format. It’s a fundamental shift in how payment data is captured, validated, and enforced. 

As Irish banks and PSPs move to structured, rule‑driven ISO messages, the tolerance for incomplete or ‘best‑effort’ data is disappearing. For corporates, this change shows up where it hurts most: rejected supplier payments, delayed payrolls, and reconciliation breaks. This piece explains: what’s changing; the challenges ISO 20022 presents to treasury and payment operations leaders in Ireland; and how organisations can reduce operational risk by addressing data, systems, and operating model readiness early.

What’s changing: ISO 20022 is enforcing data, not just changing formats

ISO 20022 is often described as a move from legacy payment files to XML. In practice, it’s a shift to a single, structured payments ‘language’ that standardises how party, address and remittance data is captured, validated and passed end‑end-to-end across the payments chain. 

The tolerance for free text, interpretation, and manual repair is disappearing, replaced by stricter validation and enforcement.

Why this matters now for treasury and payment operations leaders in Ireland

In Ireland and across the EU, ISO 20022 adoption is accelerating alongside SEPA instant payments. Banks and PSPs are already compliant, with enforcement now moving downstream to corporate payment channels. 

As banks introduce channel‑specific deadlines, legacy or partially compliant payment files risk rejection, delay or operational disruption. What was once absorbed in bank repair queues is now visible to clients, employees, and regulators.

Where the impact shows up for corporates

For corporates, ISO 20022 risk concentrates in high‑volume, low‑tolerance payment processes. 

  • Supplier and vendor payments are exposed to rejection if beneficiary data is incomplete or poorly structured. 

  • Payroll files, often submitted in bulk, carry immediate and reputational impact if a single field fails validation. 

  • Multi‑bank environments add further complexity, as different banks apply different ISO implementation guidelines, increasing mapping and testing effort.

The real challenge: data and operating model readiness

Across EU programmes, the most common blockers aren’t technical standards but data quality and operating model gaps. Incomplete counterparty data must be remediated and mapped into structured ISO fields. 

Enterprise resource planning (ERP) and treasury management systems (TMS) need reconfiguration to generate compliant messages and process-enriched reporting. The importance of getting testing, cutover, and hypercare right is frequently underestimated, particularly where payroll or critical suppliers are in scope.

Implications for executive decision‑making

ISO 20022 is no longer an IT‑led compliance exercise. It requires coordinated decisions across finance, treasury, operations, and technology. Leaders must treat payment data as a controlled asset, with clear ownership, standards, and accountability. 

Organisations that act early can reduce operational risk and improve reconciliation and cash visibility. Those that delay face increasing disruption as enforcement tightens across Irish and European banking channels.

Key actions and next steps

 1. Assess exposure across banks, payment types, and critical processes.

Start with a focused readiness and impact assessment covering payment types, banks, channels, and dependencies. Identify where ISO 20022 enforcement timelines differ across your banking footprint and prioritise high‑risk flows such as payroll and supplier payments. 

This creates a clear, decision‑ready view of operational risk rather than a generic compliance status. 

2. Fix data at source, not during payment execution.

Invest early in counterparty data remediation including names, addresses and identifiers, and define clear data standards aligned to ISO structures. Treat this as a finance and operations issue, not a downstream payments fix. 

Clean data upstream reduces rejections, manual intervention, and operational noise once enforcement begins.

 3. Plan ERP and TMS changes alongside testing and cutover.

Ensure ERP and treasury systems are configured to generate compliant ISO messages and handle bank‑specific variants. Allocate sufficient time for validation, bank testing, and defect remediation. 

Treat cutover planning and hypercare as critical controls, especially when bulk or time‑sensitive payments are involved.

We’re here to help you

ISO 20022 programmes succeed when data, systems, and operating models are addressed together. PwC works with Irish and EU organisations to:

  • assess exposure

  • remediate payment data

  • enable ERP and treasury platforms

  • support testing and cutover

We help leaders reduce disruption and move confidently into enforced ISO 20022 environments.

Banking and Capital Markets

Navigate today’s challenges with tomorrow’s outlook.

Meet the Banking and Capital Markets team

Helping you keep pace with unprecedented change.

Contact us

John Dwyer

Partner, PwC Ireland (Republic of)

Punit Kapadia

Director, PwC Ireland (Republic of)

Azuka Mordi

Senior Manager, PwC Ireland (Republic of)

Follow PwC Ireland