The RBI's new directions, effective 2027, introduce zero customer liability for digital fraud stemming from bank negligence. This fundamentally shifts the burden of proof and protection from the customer to the financial institution. Fintechs building on UPI will see a ripple effect across their fraud detection and customer service models.
Prior to this, customers often bore the brunt of proving their innocence in fraud cases, leading to prolonged disputes. The new framework updates the earlier 2017 guidelines for customer protection.
Banks have until January 1, 2027, to implement these comprehensive fraud protection policies and systems. Expect early movers to start pilots by late 2025 to test new tech stacks and reporting flows.
🇮🇳 Why This Matters for India
For fintech founders in Pune and Hyderabad building payment gateways or lending platforms, this mandates a complete re-evaluation of their security frameworks and compliance costs.
The Take
The true winners here are the consumers, but the hidden cost will be felt by banks and, indirectly, their fintech partners through increased compliance spend. Expect smaller fintechs to struggle with the 2027 deadline.
Source:  MediaNama ↗