On 14 November 2026, the SWIFT network stops accepting fully unstructured postal addresses in CBPR+ payment messages. After that date, a payment carrying a free-text address block where structured data should be will be rejected or delayed. The change lands as part of the SR 2026 standards release, it has been endorsed through the community's formal maintenance and country-vote process, and it is not going to move.
Most institutions know the date. The institutions that struggle in November 2026 will not struggle because of one mapping rule in their payment engine. They will struggle because poor address data keeps entering the payment chain upstream, in onboarding, in client master data, in digital channels and in corporate payment files, and no amount of last-mile translation fixes data that was never structured at source.
This is a data-quality and governance problem wearing a messaging deadline as a costume. Treating it as the latter is how a controlled data upgrade becomes a production incident.
What is actually changing
It helps to be precise, because the precision is where the work hides.
From the deadline, every CBPR+ payment message must carry the postal address of in-scope agents and parties in one of two permitted shapes: fully structured, or hybrid. Fully unstructured addresses — the familiar free-text lines into which a sender crams whatever they like — are retired. The minimum bar is that Town Name and Country must appear in their own dedicated fields: Town Name in TwnNm, Country as an ISO 3166-1 alpha-2 code in Ctry. Country and town buried inside a free-text address line do not count.
The two surviving formats differ in an important way. A fully structured address places every component in its own element and, critically, cannot contain an Address Line element at all. A hybrid address keeps Town Name and Country in structured fields but still permits up to two Address Line elements of seventy characters each for the remainder. Hybrid has been available since November 2025 and currently has no end date, which makes it the pragmatic landing zone for institutions that cannot reach full structure across their whole estate by the deadline. Fully structured remains the preferred long-term destination, and the bodies that own this market practice — the Payments Market Practice Group (PMPG), working alongside the HVPS+ group for high-value systems and the CBPR+ group for cross-border — have been consistent on that point. The deadline itself was set by the payments community through the PMPG, not imposed by SWIFT as a vendor; SWIFT operates the network on which the community's decision is enforced.
One rule inside the hybrid format catches people out, and it is worth stating plainly because it fails validation silently: structured data takes precedence. If a component has a dedicated structured field, it must go there and must not also be repeated in an Address Line. The PMPG's hybrid postal address guidance is explicit that the structured elements and the Address Line are not to duplicate each other. A message that puts London in both TwnNm and an Address Line is not a belt-and-braces hybrid — it is malformed, and it may be rejected.
The difference is easiest to see with a single address — here, 25 King Street, London EC2V 8EH, United Kingdom — rendered three ways in the PstlAdr element.
Fully unstructured, as countless legacy records still hold it, and rejected from 14 November 2026:
<PstlAdr>
<AdrLine>25 King Street</AdrLine>
<AdrLine>London EC2V 8EH, United Kingdom</AdrLine>
</PstlAdr>Town, post code and country are all trapped inside free text. Nothing sits in a dedicated field, so nothing can be reliably parsed, screened or validated by machine.
Hybrid — the transitional form that satisfies the November minimum:
<PstlAdr>
<TwnNm>London</TwnNm>
<Ctry>GB</Ctry>
<AdrLine>25 King Street</AdrLine>
<AdrLine>EC2V 8EH</AdrLine>
</PstlAdr>Town Name and Country now occupy their own elements, with Country as the ISO 3166-1 alpha-2 code GB. The street and post code remain in up to two Address Lines, which is what makes this achievable without first cleaning the whole estate.
Fully structured — the preferred end state, with no Address Line permitted:
<PstlAdr>
<StrtNm>King Street</StrtNm>
<BldgNb>25</BldgNb>
<PstCd>EC2V 8EH</PstCd>
<TwnNm>London</TwnNm>
<Ctry>GB</Ctry>
</PstlAdr>Every component is in its own machine-readable element and there is no free-text line at all. This is the version that screens cleanly, deduplicates reliably and survives the next rulebook — and it is also the version that is hardest to produce from a legacy inventory, which is the whole of the problem.
A few mechanics trip people up. Where an agent is identified by BIC, no postal address is required for that agent — the BIC stands in. A defined set of message types is exempt, including the camt statement and notification messages, so the rule is not blanket across every flow. And the requirement reaches further than the SWIFT leg: it applies to all payments, including corporate, securities, trade, FX and funds, and it captures future-value-dated payments. A payment with a value date on or after 14 November 2026 needs a compliant address even if it is initiated before the deadline.
The trap that will cost the most money is scope. Today, only Town and Country are mandatory. Street Name, Building Number and Post Code are recommended but not yet required — and they are precisely the kind of recommendation that becomes a requirement in a subsequent rulebook. This is not idle speculation: the harmonised ISO 20022 data requirements developed jointly by the BIS Committee on Payments and Market Infrastructures (CPMI) and the PMPG set an end-2027 horizon for the broader data model, and the direction of travel is unambiguously towards fuller structure. An institution that scopes its remediation to Town and Country alone meets the November bar and then has to run the entire programme a second time when the floor rises. The economical decision is to implement all five fields now, even though only two are mandatory, and absorb the next change as a configuration choice rather than a fresh project.
Nor is this only a SWIFT matter. The European Payments Council has aligned the SEPA schemes to the same window: from 15 November 2026, the unstructured format is no longer permitted across SCT, SDD and SCT Inst, deliberately timed to the SWIFT standards release. CHAPS and the payment market infrastructures for the major tradeable currencies — USD, EUR, GBP, AUD, CAD, SGD and others — are aligned to the same deadline. For any institution operating across more than one of these rails, this is a single, synchronised cliff edge, not a series of separate ones to be handled at leisure.
Why the messaging layer is the wrong place to fix it
Here is the uncomfortable part. By SWIFT's own assessment, with the deadline inside a year, roughly two-thirds of payment messages still carried unstructured addresses, and adoption across the community has been uneven. That is not a population you remediate with a syntax change the week before go-live.
The reason is that address data is not born in the payment message. It is born much earlier — when a customer is onboarded through a screen that captured their address as a single free-text field, when a corporate sends a payment file assembled from an ERP that stores counterparties as unstructured strings, when a KYC record was keyed by hand years ago. By the time that data reaches the payment engine, the damage is done. You can bolt an enrichment or translation step onto the outbound interface, and it will help one message clear one checkpoint. It does nothing for the record sitting in your master data, which will produce the same defect on the next payment, in your next screening run, and in the next investigation that relies on it.
This is why the real control point is not the outbound message at all. It is the quality and structure of the address data already inside the institution, and the capture processes that keep refilling it with free text. A last-mile fix treats the symptom. The disease is upstream, and it regenerates.
Framed that way, the work changes character. It stops being a format conversion and becomes three connected programmes: remediating the legacy inventory, fixing the capture points so the inventory stops re-polluting, and putting governance around both so the result holds. None of those is a messaging task.
Build, buy, or SWIFT's free model
Once you accept that you have a data-quality programme, the question becomes how to structure and enrich a large population of legacy addresses. There are three credible routes, and the honest answer for most institutions is some blend of them.
SWIFT's open-source model. SWIFT has released, free and as open source, a natural-language-processing model that infers Town and Country from unstructured address text and returns confidence scores. It is batch-capable, it can be embedded in internal systems or run as a pre-processing engine, and it has been available since November 2025. For an institution looking to triage a large inventory, it is a sensible starting point and the price is right. Its limits are equally clear, and SWIFT states them plainly: it infers Town and Country only, it is not integrated into any SWIFT product, you host and maintain it yourself, and it is explicitly not a complete solution — manual validation and data governance remain essential. Because it stops at Town and Country, it also does nothing to future-proof you against the day Street and Post Code become mandatory. It solves the November floor, not the floor after it.
Commercial address tools. A licensed product typically buys you broader field coverage, validation against reference data, vendor support and a service level. You pay for it in licence cost, integration effort and a degree of lock-in, and coverage quality varies by geography in ways that matter enormously for a cross-border book. A tool that is excellent on UK and German addresses may be weak on the corridors where your actual exposure sits, so the diligence question is never "is it good" but "is it good for my corridors."
In-house parsing. Building your own gives you control, a fit to your own data distribution, and owned intellectual property. It is also far harder than it looks from a distance. International address parsing is one of those problems that appears tractable for a weekend and then reveals itself: native keyword vocabularies for each language, postcode formats and validation rules that differ across every jurisdiction, a geocoding fallback for when the text alone is ambiguous, and — the part teams consistently underestimate — a confidence model that is actually calibrated, so that a high-confidence pass means something and a low-confidence flag routes to a human rather than into a payment. A naive parser will handle the easy eighty per cent of addresses and quietly mangle the twenty per cent that were the reason you needed a parser at all. This is the gap between a script and an engine, and it is the work that takes more than a year to get right. (It is the problem space our own address-to-iso20022.com was built to solve, with per-language vocabularies, multi-jurisdiction postcode validation and a calibrated confidence score — a useful reference point for what "done properly" looks like, whichever route you choose.)
The conclusion most institutions reach, correctly, is that there is no easy part. The parser, as above, is a multi-year engineering problem in its own right — trained across many languages, reconciling parsed components against real geographic names, validating postcodes against each jurisdiction's own rules, and carrying a large body of heuristics to resolve the difficult tail of edge cases that a simple approach silently gets wrong. The governance layer wrapped around it is then a second discipline entirely: what confidence threshold lets a record pass automatically, what happens to the records below it, who owns the exception queue, and how you stop the inventory re-polluting at the capture points. The two failure modes are symmetric. An under-built parser corrupts data quietly at scale; a capable engine with no governance still waves bad records straight through. A programme that respects only one of them fails about as surely as one that respects neither.
A decision framework you can act on
Strip away the vendor noise and the decision reduces to a few questions you can answer with your own data.
Start by sizing the problem honestly. What proportion of your customer and counterparty master data is genuinely parseable into structured components today, and how does that vary by corridor and by jurisdiction? The aggregate number is less useful than the distribution — a book that is ninety per cent clean overall but two-thirds free-text in its highest-value corridor has a sharper problem than the headline suggests.
Then choose your approach against your profile rather than against a feature matrix. A lower-volume institution operating a single corridor has a very different calculus from a multinational with fragmented legacy estates and a dozen source systems feeding the payment chain. The former may be well served by SWIFT's free model plus disciplined manual review; the latter needs an industrialised remediation pipeline and almost certainly a blend of tooling.
Whatever you choose, the questions that actually determine success are governance questions, not technology ones. Where do you set the confidence threshold for an automatic pass? What is the workflow for low-confidence records, and who owns it? How do you remediate without overwriting trusted operational records — enriching progressively rather than destructively, so a confident structured value never silently replaces a verified one? And, most importantly, how do you fix the capture points — onboarding, KYC, digital channels, corporate file ingestion — so that the inventory you have just cleaned does not refill with free text the moment you finish?
Controlled upgrade
The institutions that come through November 2026 in good shape will be the ones that treated it as a strategic data-quality initiative rather than a messaging patch — and they will be rewarded with more than compliance. Structured address data screens better, produces fewer false positives, and lifts straight-through processing across the chain. The deadline is the forcing function; the durable benefit is cleaner data that pays back on every payment after it.
The institutions that treat it as a last-mile mapping exercise will clear the network checkpoint and inherit every other problem the unstructured data was already causing — and they will do the work again when Street and Post Code join the mandatory set.
If you are weighing where your own address data sits, what your real exposure is by corridor, and which of these routes fits your estate, that assessment is exactly the kind of question a short, confidential discovery conversation is built to answer. The first step is never a tool. It is knowing the size and shape of the problem you are actually solving.
Bibliography
- SWIFT — ISO 20022 milestone for November 2026: Unstructured addresses to be removed.https://www.swift.com/news-events/news/iso-20022-milestone-november-2026-unstructured-addresses-be-removed
- SWIFT — Removal of unstructured address (CBPR+ usage guidelines and format rules). https://www.swift.com/standards/iso-20022/removal-unstructured-address
- SWIFT — ISO 20022: The Swift AI address structuring model (open-source NLP model FAQ). https://www.swift.com/standards/iso-20022/iso-20022-faqs/swift-ai-address-structuring-model
- European Payments Council — Important update about the 2025 EPC payment scheme rulebooks (revision of the SEPA date to 15 November 2026). https://www.europeanpaymentscouncil.eu/news-insights/news/important-update-about-2025-epc-payment-scheme-rulebooks
- European Payments Council — Guidance document: Provision of Addresses under the EPC Payment Schemes (v2.1). https://www.europeanpaymentscouncil.eu/document-library/guidance-documents/epc-guidance-document-provision-addresses-under-epc-payment
- European Payments Council — 2025 SEPA Instant Credit Transfer rulebook version 1.1.https://www.europeanpaymentscouncil.eu/document-library/rulebooks/2025-sepa-instant-credit-transfer-rulebook-version-11
- Payments Market Practice Group (PMPG) — Hybrid Postal Address guidance (October 2025). https://www.ecb.europa.eu/paym/groups/shared/docs/f2b11-pmpg-hybrid-postal-address-v1.10-20oct2025-.pdf
- Payments Market Practice Group (PMPG) — ISO 20022 Market Guidance.https://www.swift.com/sites/default/files/files/pmpg-market-guidance.pdf
- BIS Committee on Payments and Market Infrastructures (CPMI) and PMPG — Harmonised ISO 20022 data requirements for enhancing cross-border payments (updated report). https://www.bis.org/cpmi/publ/d230.htm
- address-to-iso20022.com, a purpose-built address structuring and ISO 20022 enrichment API. https://address-to-iso20022.com
