BNPL has grown because it solved a real problem. We saw it embed credit directly into the point of purchase, giving customers more flexibility while giving merchants a way to reduce friction and support conversion. As a result, the customer experience became simple, fast and often almost invisible.
That simplicity is also what made BNPL different from traditional lending. In many cases, the infrastructure behind the product was built for speed first. Providers could launch with relatively light controls, limited servicing complexity and manual processes sitting behind the scenes.
In my view, this is the point many fast-growing credit propositions eventually reach. The customer journey can scale quickly because it feels simple, but the operating model behind it needs to mature just as quickly. If it does not, the pressure usually appears later: in exceptions, servicing, reporting, complaints and the ability to demonstrate control.
That model is now under pressure. Regulators are increasingly looking at BNPL through the lens of consumer credit, customer outcomes and operational resilience. The specific rules differ by country, but the themes are consistent: customers need to understand the product, lenders need to assess affordability, complaints need to be handled properly, and firms need to show how decisions are made.
The significance is not only legal. It also shows where the market is heading: BNPL is being judged less as a checkout feature and more as a credit product.
For me, the important point is not that regulation will make BNPL less attractive. It is that regulation changes what good looks like. A smooth checkout journey will still matter, but it will no longer be enough on its own. Providers will also need to show that the full lending operation behind that journey is responsible and well-controlled.
BNPL is not disappearing. It is maturing.
Many firms will approach BNPL regulation as a legal or compliance project. That is understandable, but from my perspective it is only part of the answer. The more difficult question is operational: can the business execute regulated lending requirements every day, across every customer journey, product variant, partner channel and jurisdiction?
That means being able to answer practical questions. How was a credit decision made? Which data was used? Was the customer shown the right information at the right moment? What happens if a customer misses a payment? Can hardship or vulnerability be identified and managed consistently? Are complaints captured, resolved and reported in a controlled way? Can management see where risks are building across the portfolio?
These are not theoretical questions. They are the difference between having a compliance policy and having a regulated lending operation.
What I often see in lending is that firms underestimate the operational side of regulation. They prepare the policy, update the customer wording and review the legal requirements, but the harder work is making sure those requirements are executed consistently in the real journey, every day, across every exception.
One lesson from the wider lending industry is that controls cannot live only in policy documents. They need to be built into the workflows that shape decisioning, servicing, and reporting.
This is where many fast-growing credit propositions become vulnerable: not at launch, but when volume, exceptions and regulatory scrutiny increase at the same time. At low volumes, manual checks, spreadsheets and exception-based workarounds can appear manageable. At higher volumes, they become a risk because they make consistency harder to prove and change harder to manage.
For BNPL providers, fintechs and embedded lenders, readiness will depend on the ability to turn rules into repeatable workflows.
BNPL has often been associated with speed, and that speed remains important. Customers still expect instant decisions, merchants still expect low friction, and lenders still need to manage risk without damaging conversion.
I do not believe the answer is to make BNPL slower or more complicated for customers. That would remove much of what made the product valuable in the first place. The better answer is to make the operating model behind it stronger, so speed is supported by control rather than working against it.
In a regulated environment, affordability, customer communications, complaints, servicing and audit trails need to be part of the same controlled lending journey.
I have seen similar transitions in other parts of finance. When lenders update legacy decisioning or expand into new markets, the complexity is rarely only in the product. It is in adapting decisioning rules, documentation, servicing processes and reporting to fit different risk appetites, regulatory expectations and customer needs. BNPL providers face the same challenge, especially when they operate through retailers, platforms and partners.
That is why the operating model matters as much as the technology. A strong operating model gives teams a consistent way to manage identity, journeys, decisioning, workflows, data, controls and integrations. It helps providers avoid a situation where every product, country or partner runs on its own process and its own logic.
To me, a mature BNPL operation is not necessarily the one with the most complex process. It is the one where the process is clear, the customer treatment is consistent, and the teams can understand what is happening across the business.
For lenders operating across markets, the challenge is not one regulation. It is regulatory variation.
A BNPL journey that works in one country may need different disclosures, checks, servicing rules, complaint timelines or governance processes in another. A retailer may want a consistent customer experience across markets, while the lender must meet local regulatory expectations behind the scenes.
This creates a difficult balance. Providers need enough standardisation to operate efficiently, but enough configurability to adapt to local requirements. They need product teams, risk teams, compliance teams and operations teams to work from a shared infrastructure, not from disconnected market-by-market workarounds.
This is where I think international growth can create hidden complexity. A provider may start with a journey that works well in one market, then adapt it country by country until the operating model becomes a patchwork. Each local change may make sense on its own, but over time the result can be inconsistent data, manual controls and limited visibility.
The more fragmented the infrastructure becomes, the harder it is to change safely. A new disclosure requirement, a change in affordability rules or a different complaints process should not require teams to rebuild large parts of the journey each time. In regulated lending, adaptability is not only about launching fast. It is about changing safely.
For embedded lenders, the challenge is even sharper.
BNPL is often distributed through retailers, marketplaces and platforms, which means the customer journey may sit partly outside the lender’s own environment. That creates additional complexity around communication, data, responsibilities and controls.
The lender still needs confidence that the customer receives the right information, that the credit decision is appropriate, and that servicing and support work in line with regulatory expectations. The merchant or platform experience may be seamless, but the regulated lending engine behind it needs to be robust.
This is one of the most important lessons from embedded finance: the customer experience may belong to the platform, but the lending responsibility remains with the credit provider. That means the lender needs transparency, control and evidence across a journey it may not fully own from end to end.
For me, this is where the next phase of BNPL becomes especially interesting. The checkout experience has already proven its value, but the winners in the regulated phase will be the firms that can connect that experience to a stronger lending operation behind the scenes.
That requires more than a good front-end flow. It requires the ability to coordinate products, partners, markets, data and controls without making the customer journey feel heavier.