Udayavni Special

RBI issues master direction to ensure security of digital payments

PTI, Feb 19, 2021, 11:25 AM IST

Mumbai: The Reserve Bank on Thursday came out with a Master Direction for banks and card-issuing entities laying down common minimum standards to ensure security of digital payments.

The Master Direction lays down guidelines for internet banking, mobile payments, card payments, customer protection and grievance redressal mechanism.

“In view of the proliferation of cyber-attacks and their potential consequences, regulated entities should implement, except where explicitly permitted/ relaxed, multi-factor authentication for payments through electronic modes and fund transfers, including cash withdrawals from ATMs/ micro-ATMs/ business correspondents, through digital payment applications,” it said.

The provisions of these directions would apply to the Regulated Entities (REs)– Scheduled Commercial Banks, Small Finance Banks, Payments Banks; and Credit card issuing NBFCs.

Such a move is expected to improve the security of digital payment channels and also convenience for users. These directions contain requirements for robust governance, implementation and monitoring of certain minimum standards on common security controls for channels like internet and mobile banking, card payments, etc. The robust protocol will help in checking frequent outages and disruption while provide secure environment of digital transaction.

The RBI in December temporarily barred largest private sector lender HDFC Bank from selling new credit cards or launching new digital banking initiatives, taking a serious view of service outages at the systemically important bank over the last two years. The digital banking app of the country’s largest lender SBI was also facing service outages.

The Master Direction provides necessary guidelines for the Regulated Entities to set up a robust governance structure and implement common minimum standards of security controls for digital payment products and services and the guidelines are technology and platform agnostic and shall create an enhanced and enabling environment for customers to use digital payment products in a more safe and secure manner, it said.

It further said that entities would incorporate secure, safe and responsible usage guidelines and training materials for end users within the digital payment applications.

“They shall also make it mandatory (i.e. not providing any option to circumvent/ avoid the material) for the consumer to go through secure usage guidelines (even in the consumer’s preferred language) while obtaining and recording confirmation during the on-boarding procedure in the first instance and first use after each update of the digital payment application or after major updates to secure and safe usage guidelines,” it said.

REs would adhere to extant instructions, updated from time to time, to put in place systems for online dispute resolution for resolving disputes and grievances of customers pertaining to digital payments, it said.

On public awareness, it said, financial institutions should inform about types of threats and attacks used against the consumers while using digital payment products and precautionary measures to safeguard against the same.

“Customers shall be cautioned against commonly known threats in recent times like phishing, vishing, reverse-phishing, remote access of mobile devices and educated to secure and safeguard their account details, credentials, PIN, card details, devices, etc,” it said.

With regard to mobile apps, it asked to deactivate the older application versions in a phased but time-bound manner not exceeding six months from the date of release of newer version.

Udayavani is now on Telegram. Click here to join our channel and stay updated with the latest news.

Top News

CBI books case against ex-SWR senior divisional engineer, others

Mangaluru: Entrepreneur accuses CCB of deceiving money in a raid

Bengaluru: 97-year-old first to get COVID-19 vaccine in general category

I’ll come back: BR Shetty at Udupi

Over 1 mln citizens registered themselves on Co-WIN portal till 1.00 pm: Health ministry

NCP chief Sharad Pawar takes first dose of COVID-19 vaccine

Vice President Naidu takes first dose of COVID-19 vaccine in Chennai

Related Articles More

Escorts tractor sales up 30.6 pc at 11,230 units in Feb

Sensex surges over 500 pts in early trade; Nifty tops 14,680

PM Modi to inaugurate Maritime India Summit on March 2

Govt extends due date for filing FY20 GST annual returns till March 31

IKEA to increase sourcing of toys from India


I was betrayed by those whom I trusted: Dr. B. R Shetty

The entire COVID-19 Vaccination Process completed within 30 minutes

Chikmagalur: Locals apprehend dacoits after cinematic chase

I request BJP senior leaders not to trust HD Kumaraswamy and BJP must not form an alliance with the JDS: C P Yogeshwar

Problem! in Cowin App

Latest Additions

95.12 kg gold seized by customs department at Mangaluru International Airport in 4 years

CBI books case against ex-SWR senior divisional engineer, others

U’khand Assembly Budget session begins; Cong stages walkout during Guv’s address

Armenia’s political tensions heat up with rival rallies

Mangaluru: Entrepreneur accuses CCB of deceiving money in a raid

Thanks for visiting Udayavani

You seem to have an Ad Blocker on.
To continue reading, please turn it off or whitelist Udayavani.