1. The payment service provider issuing a payment instrument shall have the following obligations:
(a) to make sure that the personalised security features of the payment instrument are not accessible to parties other than the payment service user entitled to use the payment instrument, without prejudice to the obligations on the payment service user set out in Article 56;
(b) to refrain from sending an unsolicited payment instrument, except where a payment instrument already given to the payment service user is to be replaced;
(c) to ensure that appropriate means are available at all times to enable the payment service user to make a notification pursuant to Article 56(1)(b) or request unblocking pursuant to Article 55(4); on request, the payment service provider shall provide the payment service user with the means to prove, for 18 months after notification, that he made such notification; and
(d) to prevent all use of the payment instrument once notification pursuant to Article