- The three buying paths available to community FIs
- The real trade-offs between buying direct and buying bundled
- Why most community FIs end up on a partner path, and the hidden costs that come with it
- The hybrid play the strongest community FIs use
Direct vs. partner: how community FIs actually buy Positive Pay.
Why this lesson matters.
Most Positive Pay procurement advice assumes you'll buy direct from a fraud vendor. The reality is messier. Community FIs end up buying PP through multiple channels: direct from the vendor, bundled through their digital banking provider, bundled into their core platform, or rolled into a wholesale agreement with a CUSO.
Same product, four different buying experiences. Different pricing, different contracts, different implementation timelines, different support structures.
Before you evaluate vendors, figure out which path actually fits your FI. The same Positive Pay product, bought through different channels, behaves like a different product.
The three buying paths.
Path 1: Direct from the fraud vendor. You sign a contract with the company that built the PP platform. You have a direct relationship with their product, sales, and support teams. Implementation involves coordinating with your core and digital banking provider, but the contract is between you and the vendor.
Path 2: Bundled through your digital banking provider. Your digital banking partner has an integration with a fraud vendor and resells the product as part of their treasury or business banking package. You sign one contract with your digital banking provider that includes PP as a line item.
Path 3: Bundled through your core or a CUSO. Your core platform or a Credit Union Service Organization has a partnership with the fraud vendor. You buy PP as a feature add-on to your core platform or as a managed service through the CUSO.
What this looks like in real life.
A small community FI engaged a fraud vendor directly for Positive Pay. After a demo and pricing discussion, they walked, citing cost. Eight months later, they came back through their digital banking provider as part of a packaged integration. The same FI that said no to direct pricing said yes when the same product was bundled into their existing vendor's order form.
"I happened to discuss the fraud vendor with our holding company manager today, and we are apparently already in process of reviewing Positive Pay options with our digital banking provider, who is working towards integrating with the same vendor. Since this is already underway, I will cancel our meeting and leave it in their hands to move this project forward."
VP, $400M community FI, 3 branches
That pattern repeats across institutions. In a recent sample of seven community FI buying journeys, five ended up on a partner path. The buying journey looked direct on day one and ended bundled on day 240.
The lesson: surface the relationships your FI already has before you start vendor evaluations. You may already be in a partner-path conversation without knowing it.
The trade-offs by path.
None of these paths is universally better — each is the right answer for a different FI. The table below lays out what changes between them so you can map the trade-offs to your situation.
| Direct | Bundled (Digital Banking) | Bundled (Core / CUSO) | |
|---|---|---|---|
| Pricing | Vendor list price | Set by your partner | Bundled into broader licensing |
| Contract complexity | New vendor relationship | Often added to an existing agreement | Often added to an existing agreement |
| Implementation speed | Vendor sets the pace | Sequenced in the partner's queue | Sequenced in the partner's queue |
| Support escalation | Direct line to the fraud vendor | Routed through the partner | Routed through the partner |
| Roadmap influence | Direct to the vendor's product team | Flows through the partner | Flows through the partner |
| Procurement friction | Highest — full new-vendor cycle | Lowest — leverages existing contract | Low — leverages existing contract |
| Internal alignment | Requires more cross-team buy-in | Easier — same partner story | Easiest — single-vendor story |
| Switching cost later | Vendor-only change | Multi-party change | Multi-party change |
Why most community FIs end up on a partner path.
Three reasons, in order of impact:
1. Procurement friction is dramatically lower. Adding a feature to an existing vendor relationship is a different conversation than onboarding a new vendor. No new security review. No new vendor risk assessment. No new contract negotiation cycle. No new invoice line in your AP system. The partner path bypasses procedural overhead that can stretch a direct deal by months.
2. Internal alignment is easier to get. "We're adding fraud protection through our existing digital banking provider" lands cleanly with your CEO and your board. "We're onboarding a new fraud vendor" requires a longer conversation, more documentation, and usually a CISO sign-off you didn't need before.
3. Your existing vendor is already pushing the conversation. Your digital banking provider or core is actively expanding their bundles. They have a TMO contact at your FI. They show up in your quarterly business reviews. The path of least resistance is to say yes to the partner who's already in the room.
None of those are bad reasons. They're real organizational dynamics that smooth procurement.
What you trade for the partner path's convenience.
The partner path solves real problems — procurement, integration, internal alignment. In exchange, four things change. Worth understanding all four before you sign, regardless of which path you choose.
Pricing structure differs by path. Each path bundles a different mix of services — the fraud product itself, integration, support routing, contract administration — and the pricing reflects what's included. The cleanest way to evaluate it for your FI is to ask both your direct and partner contacts for a quote on the same scope (your account volume, your support tier, your file delivery needs) and compare what each includes. Some FIs land on direct, some on a partner path; the right answer depends on what your FI values most. Don't assume one is better on price without seeing the actual numbers for your situation.
Roadmap requests route through the partner. Your feature requests reach the fraud vendor through your partner's product team rather than directly. That works well when your partner is actively prioritizing the fraud roadmap; it can move slower when their attention is elsewhere. Worth asking your partner how they handle and escalate fraud-specific roadmap input.
Vendor focus risk — independent of path. A second roadmap risk doesn't care which path you choose: how invested the vendor still is in the product. Some Positive Pay products live inside a much bigger software platform that acquired them years ago. The team that built the product is no longer at the company. Major releases stop. The product gets patched, not invested in. When you're evaluating any PP vendor — direct or bundled — ask: when was your last meaningful product release, and what's on the roadmap for the next 12 months? If the answer is vague, that's the answer.
Switching becomes a multi-party conversation. If you ever want to change fraud vendors later, you're not just changing one contract — you're coordinating across your fraud vendor and your bundling partner. That's not necessarily a problem. It just means the decision is stickier than a standalone vendor swap, and worth knowing up front.
"Once they have check and ACH Positive Pay configured, it's almost like you're putting a wall around your customer. They don't leave."
Chief Retail Officer, $1B+ community FI · 5 branches
That quote is about your business clients — why a well-run PP program makes them sticky with you. It's worth surfacing the same dynamic for your own buying decision: any vendor relationship gets stickier once it's working. Go in knowing that and you'll make a clearer call about which path fits.
When to buy direct.
Direct works best when:
- You want to negotiate pricing and contract terms directly with the fraud vendor
- You have a specific feature or roadmap need — advanced Payee Match, a particular file format, deep integration
- You have the IT and operations capacity to coordinate multi-party implementation yourself
- Your relationship with your existing digital banking provider or core is strained or transactional
- Your leadership prefers best-of-breed over single-vendor stack
- You expect to grow your business book significantly and want pricing tiers that benefit you
When to buy through a partner.
Partner channel works best when:
- Procurement friction is your biggest blocker
- Your IT and operations team has limited bandwidth
- Your digital banking provider or core has a robust integration already in place
- Your leadership strongly prefers single-vendor stack over best-of-breed
- You're a smaller FI without a dedicated treasury management team
- The partner's pricing fits your budget
- Implementation speed matters more than long-term flexibility or pricing
The hybrid play.
The strongest community FIs we see do something subtle: they contract with the fraud vendor through a partner, but they maintain a direct technical and product relationship.
What that looks like in practice:
- Sign through the partner (single contract, easier procurement, faster start)
- Get introduced to the fraud vendor's customer success or relationship management team directly
- Join the vendor's user community, advisory councils, and product feedback channels
- Submit feature requests directly to the vendor when the partner can't or won't advocate for them
- Maintain independent visibility into the vendor's roadmap
That hybrid keeps your procurement easy and preserves your direct influence. Most partners don't object as long as you're not actively negotiating around them on commercial terms. Ask both sides up front so there are no surprises.
Before your next Positive Pay evaluation kickoff, map your existing vendor relationships. Who at your FI talks to your digital banking provider, your core, your CUSO? Are any of them already in PP conversations with those partners? Answer that first. Half the time, the buying path is already decided at the holding company level or in your IT department. You just haven't surfaced it yet.
What to ask your existing partners.
If you suspect the partner path is right for you, three questions to ask your digital banking provider or core:
- Do you have a Positive Pay integration with a fraud vendor today, and if so, who is it?
- What's the bundled pricing, and how does it compare to direct pricing from the fraud vendor?
- What's your roadmap commitment to that integration over the next 24 months? Is the underlying fraud vendor stable, or are you considering swapping?
The third question is the most important and the one most FIs forget to ask. Partner integrations get swapped. You don't want to be six months into a bundled deployment and find out your partner is changing fraud vendors on you.
A note on CEO turnover.
If your CEO is in the loop on this decision and your timeline stretches past 6 months, leadership transition is a real risk. CEOs at community FIs turn over more than the data suggests, and a new CEO usually resets every vendor relationship in flight. If the deal is right, close it. Don't wait another quarter for perfect contract terms to materialize.
A note on the "price is too high" objection.
If price feels like the wall blocking your team from moving forward on Positive Pay, check whether the real wall is internal. Do you have the leadership air cover to make this happen? Pricing pushback that disappears when leadership re-engages was never really a pricing problem. It was a champion problem. Solve that first.
What's next.
Lesson 6 walks through the full vendor evaluation process: internal alignment, building your criteria, shortlist, demos, reference calls, and contract negotiation. The path you picked in this lesson — direct, partner, or hybrid — shapes who goes on your shortlist and what questions you ask in the demos.