Skip to main content

Who bears the loss of fraudulent financial transactions?

We carry out various financial transactions through bank accounts, debit cards, credit cards, prepaid payment instruments (PPIs), e-wallets, etc. But what if there is an unauthorised / fraudulent financial transaction from the account / card / PPI? Who will bear the loss of unauthorised financial transactions? 

What if unauthorised transaction is due to customer’s negligence?

When the unauthorized financial transaction is due to the negligence of the customer (for eg. sharing password, PIN, OTP, etc), the customer is liable to bear the entire loss until he / she reports the unauthorized transaction to the bank / non-bank PPI issuer. At its discretion, bank / non-bank PPI issuer may waive off customer liability for the unauthorized transactions even in cases of customer negligence. 

Any loss occurring after the reporting of the unauthorized transaction must be borne by the bank / non-bank PPI issuer.

What if unauthorised transaction is due to bank’s / non-bank PPI issuer’s fault?

When the unauthorized financial transaction is due to the contributory fraud / negligence / deficiency on the part of the bank / non-bank PPI issuer (irrespective of whether the transaction is reported by the customer), there is zero liability of the customer, and the loss has to be borne by the bank / non-bank PPI issuer.

What if unauthorised transaction is due to third party breach?

When neither the customer nor the bank / non-bank PPI issuer is at fault and the unauthorized financial transaction is due to third party breach because of deficiency elsewhere in the system, the liability of the customer depends upon the time taken by him / her to report the unauthorized transaction to the bank / non-bank PPI issuer.

  • If the customer notifies the bank / non-bank PPI issuer within 3 working days of receiving the communication from the bank / non-bank PPI issuer regarding the unauthorized transaction, the liability of the customer is zero.
  • If there is a delay of 4 - 7 working days in notifying the bank / non-bank PPI issuer of such transaction, the per transaction liability of the customer is limited to the transaction value or the amount mentioned below, whichever is lower.
Type of Account Maximum liability (Rs.)
Basic Savings Bank Deposit Accounts (BSBDA) 5,000
All other savings bank accounts
Prepaid Payment Instruments and Gift Cards
Current / Cash Credit / Overdraft accounts of MSMEs
Current accounts / Cash Credit / Overdraft accounts of individuals with annual average balance (during 365 days preceding the incidence of fraud) / limit up to Rs.25 lakh
Credit cards with limit up to Rs.5 lakh
 10,000
All other Current / Cash Credit / Overdraft accounts
Credit cards with limit above Rs.5 lakh
 25,000

  • If the delay in reporting is beyond 7 working days, the customer liability is determined as per the bank’s / non-bank PPI issuer’s Board approved policy. 

What is bank’s / non-bank PPI issuer’s role after receiving report of unauthorized transaction?

On receiving a report / complaint from the customer regarding the unauthorized transaction, the bank / non-bank PPI issuer shall credit (notional reversal / shadow reversal) the amount involved in the unauthorized transaction to the customer’s account / PPI within 10 working days from the date of receipt of the complaint.

The bank / non-bank PPI issuer shall resolve the complaint and establish the liability of the customer, if any, within 90 days from the date of receipt of the complaint.

Where the bank / non-bank PPI issuer is unable to resolve the complaint or determine the customer liability, if any, within 90 days, the customer needs to be compensated. The final credit is to be given as on the date of the unauthorized transaction to ensure that there is no loss of interest for the customer in case of debit card / bank account, and the customer does not bear any additional burden of interest in case of credit card.

The burden of proving the customer liability in case of unauthorized transactions lies on the bank / non-bank PPI issuer.


References

Reserve Bank of India. (2017, July 06). 'Customer Protection – Limiting Liability of Customers in Unauthorised Electronic Banking Transactions'. Retrieved from https://rbi.org.in/Scripts/BS_CircularIndexDisplay.aspx?Id=11040

Reserve Bank of India. (2021, August 27). 'Master Directions on Prepaid Payment Instruments (PPIs) (Updated as on November 12, 2021)'. Retrieved from https://www.rbi.org.in/Scripts/BS_ViewMasDirections.aspx?id=12156


Follow at - Telegram   Instagram   LinkedIn   Twitter

Labels:

Comments

Post a Comment

Popular Posts

Digital Payments – E-mandate Framework 2026

Reserve Bank of India (RBI) has issued e-mandate framework for digital payments. What is an e-mandate?  A mandate is a standard instruction that a customer provides to his / her issuing bank and other institutions allowing them to automatically debit the mentioned amount from his / her bank account. e-mandate is the electronic version of it. To whom shall the framework be applicable? The framework shall be applicable to Payment System Providers and Payment System Participants. To which transactions shall the framework be applicable? The framework shall be applicable to processing of recurring transactions, domestic or cross-border, using cards / Prepaid Payment Instrument (PPI) / Unified Payments Interface (UPI). What are the guidelines for registration and revocation of e-mandate? A customer desirous of opting for e-mandate facility shall undertake a one-time registration process. The mandate shall be registered only after successful validation of additional factor of authenticati...
Post a Comment
Read more

Guidelines to facilitate faster cross-border inward payments

Reserve Bank of India (RBI) has issued guidelines to facilitate faster cross-border inward payments. What is the rationale behind the guidelines? The RBI’s Payments Vision 2025 aims to bring efficiency in the cross-border payments aligning with the G20 roadmap for cross-border payments that has set targets for achieving cheaper, faster, more transparent, and more accessible cross-border payments. One of the challenges with speed of cross-border payments is experienced at the beneficiary leg i.e., the time taken from receipt of the payment at the beneficiary bank till credit to the beneficiary account. What are the guidelines to facilitate faster cross-border inward payments? Banks shall inform their customer of the receipt of cross-border inward transactions immediately on receipt of inward message. Messages received after close of operating hours of banks shall be informed to customer immediately at the start of the next business day. Banks shall undertake reconciliation and confirmat...
1 comment
Read more

Utkarsh 2029

Reserve Bank of India (RBI) has published its medium-term strategy framework – Utkarsh 2029, for the period April 2026 to March 2029. Utkarsh RBI had first formulated its medium-term strategy framework, viz. ‘Utkarsh 2022’ for the period 2019-2022 in July 2019, replacing its annual action plans as the latter spanned over a short period, insufficient to pursue strategic objectives.  The strategic framework contained, inter alia, RBI’s Mission, Core Purpose, Values and Vision Statements, reiterating RBI’s commitment to the Nation. It became a medium-term strategy document guiding RBI’s progress towards realisation of the identified milestones. The subsequent strategy framework, i.e., ‘Utkarsh 2.0’, spanned the period 2023-25. Utkarsh 2029  Utkarsh 2029 is the medium-term strategy framework for the period April 2026 to March 2029. Utkarsh 2029 has a 3-layered structure consisting of strategy pillars guided by the vision and values of RBI. Vision of Utkarsh 2029 – Continue excelle...
Post a Comment
Read more

Credit Information Reporting

Reserve Bank of India (RBI) had issued directions on credit information reporting by the regulated entities. What are Credit Information Companies (CICs)? Credit Information Companies (CICs) mean companies that have been granted a certificate of registration by RBI under section 5 of the Credit Information Companies (Regulations) Act, 2005 (CICRA).  The following CICs are registered with RBI – CRIF High Mark Credit Information Services Private Limited Equifax Credit Information Services Private Limited Experian Credit Information Company of India Private Limited TransUnion CIBIL Limited What are Credit Institutions (CIs)? Credit Institutions (CIs) mean the following institutions – Commercial Banks  Small Finance Banks (SFBs) Local Area Banks (LABs) Regional Rural Banks (RRBs) Primary (Urban) Co-operative Banks (UCBs) Rural Co-operative Banks – State Co-operative Banks (StCBs) Central Co-operative Banks (CCBs) All India Financial Institutions (AIFIs) regulated by RBI – Export I...
Post a Comment
Read more

Guidelines on Money Changing Activities (Updated as on April 02, 2026)

Reserve Bank of India (RBI) has updated the guidelines on money changing activities. Who is Authorised Person? Authorised Person means an authorised dealer, money changer, off-shore banking unit or any other person authorised under section 10(1) of Foreign Exchange Management Act, 1999 (FEMA) to deal in foreign exchange or foreign securities. What are the categories of Authorised Persons? Authorised Dealer (AD) Category-I – entities which are authorised by RBI to carry out all permissible current and capital account transactions. Authorised Dealer (AD) Category-II – entities which are authorised by RBI to carry out specified non-trade related current account transactions, all the activities permitted to Full Fledged Money Changers (FFMC) and any other activity as decided by RBI, and include (i) Upgraded FFMCs; (ii) Select Regional Rural Banks (RRBs); (iii) Select Urban Cooperative Banks (UCBs); and (iv) Other entities. Authorised Dealer (AD) Category-III – entities which are authorised...
Post a Comment
Read more