Reserve Bank of India (Small Finance Banks – Concentration Risk Management) Amendment Directions, 2025

The Reserve Bank of India has released new directions on authentication mechanisms for digital payment transactions, 2025, aimed at strengthening the security of India’s rapidly expanding digital payments ecosystem. Under the updated framework, all digital payment transactions must be authenticated using at least two separate factors, such as passwords, PINs, biometrics, or device‑based tokens, moving beyond reliance on SMS‑based OTPs. At least one factor must be dynamic for transactions where the card is not physically present, enhancing protection against fraud.

These directions apply to all payment system participants, including banks and fintechs, and will come into effect from April 1, 2026. Issuers are required to ensure the robustness of authentication systems and may adopt risk‑based approaches for higher‑risk transactions, improving security without compromising user convenience.

Circular

Prev Post
Reserve Bank of India (Commercial Banks – Income Recognition, Asset Classification and Provisioning) Amendment Directions, 2025
Next Post
Reserve Bank of India (Commercial Banks – Concentration Risk Management) Amendment Directions, 2025

Category:

Recent Article:

26 February, 2026 / NBfcAdmin
RBI’s PA License Drive: A Data-Oriented Look at India’s Competitive Payments Ecosystem
19 February, 2026 / NBfcAdmin
Streamlining the Financial Services Ecosystem: RBI’s Push for Simplified Group Structures
10 February, 2026 / NBfcAdmin
Beyond Redressal: How the 2026 RBI Ombudsman Updates are Institutionalising Customer Trust
TRAI introduces the 1600-series to prevent impersonation-based financial fraud. Discover how NBFCs must implement this new numbering system by 2026.
06 February, 2026 / NBfcAdmin
How the 1600-Series Numbering Will Curb Financial Fraud in NBFCs

Tags:


FREE CONSULTATION