Skip to main content

What are restrictions on storage of actual card data?

Reserve Bank of India (RBI) restricts storage of actual card data [i.e. Card-on-File (CoF)] by non-bank payment aggregators and merchants.

What is Card-on-File (CoF)?

Card-on-file (CoF) is the storing of customer card and payment information by a merchant, i.e. keeping card information “on file”.

What are the guidelines on storage of actual card data [i.e. Card-on-File (CoF)]?

No entity in the card transaction / payment chain, other than the card issuers and / or card networks, shall store Card-on-File (CoF) data, and any such data stored previously shall be purged.

From when are the restrictions on storage of actual card data [i.e. Card-on-File (CoF)] applicable?

Reserve Bank of India (RBI) had periodically extended the deadline for effecting the restriction on storage of actual card data [i.e. Card-on-File (CoF)] from June 30, 2021 to September 30, 2022, taking into account the representations received from the stakeholders.

All entities, except card issuers and card networks, are required to purge the CoF data before October 01, 2022.

What relaxations are allowed for “guest checkout transactions”?

For ease of transition to an alternate system in respect of transactions where cardholders decide to enter the card details manually at the time of undertaking the transaction (commonly referred to as “guest checkout transactions”), the following are permitted as an interim measure –

  • Other than the card issuer and the card network, the merchant or its Payment Aggregator (PA) involved in settlement of such transactions, can save the CoF data for a maximum period of T+4 days (“T” being the transaction date) or till the settlement date, whichever is earlier. This data shall be used only for settlement of such transactions, and must be purged thereafter.
  • For handling other post-transaction activities, acquiring banks can continue to store CoF data until January 31, 2023.


References

Reserve Bank of India. (2020, March 17). 'Guidelines on Regulation of Payment Aggregators and Payment Gateways (Updated as on November 17, 2020)'. Retrieved from https://www.rbi.org.in/Scripts/NotificationUser.aspx?Id=11822&Mode=0

Reserve Bank of India. (2021, December 23). 'Restriction on storage of actual card data [i.e. Card-on-File (CoF)]'. Retrieved from https://www.rbi.org.in/Scripts/NotificationUser.aspx?Id=12211&Mode=0

Reserve Bank of India. (2022, June 24). 'Restriction on Storage of Actual Card Data [i.e. Card-on-File (CoF)]'. Retrieved from https://www.rbi.org.in/Scripts/NotificationUser.aspx?Id=12345&Mode=0

Reserve Bank of India. (2022, July 28). 'Restriction on Storage of Actual Card Data [i.e. Card-on-File (CoF)]'. Retrieved from https://www.rbi.org.in/Scripts/NotificationUser.aspx?Id=12363&Mode=0


Follow at - Telegram   Instagram   LinkedIn   Twitter

Labels:

Comments

Post a Comment

Popular Posts

FX Global Code

Reserve Bank of India (RBI) has signed its renewed Statement of Commitment (SoC) to the FX Global Code.  What is FX Global Code? FX Global Code is a set of global principles of good practice in the foreign exchange market. The Code contains 55 principles that provide a common set of guidelines to promote the integrity and effective functioning of the wholesale foreign exchange market. The principles cover ethics, governance, execution, information sharing, risk management and compliance as well as confirmation and settlement. The establishment of the Code was facilitated by the Foreign Exchange Working Group (FXWG), which operated under the auspices of the BIS Markets Committee.  The Code was developed by a partnership between central banks and market participants from around the globe and was first published in 2017. The Code promotes a robust, fair, liquid, open, and appropriately transparent market in which a diverse set of market participants, supported by resilient infras...
Post a Comment
Read more

Amendments in / additions to forex guidelines

Reserve Bank of India (RBI) has amended various forex guidelines. This article lists out some of the such recent amendments. What are the updates in the existing guidelines? Previous guidelines Revised guidelines Persons resident outside India that maintain a rupee account in terms of regulation 7(1) of Foreign Exchange Management (Deposit) Regulations, 2016 may purchase or sell dated Government Securities / treasury bills. The amount of consideration paid for the purchases shall be out of the funds held in the said rupee account. Persons resident outside India that maintain a rupee account in terms of regulation 7(1) of Foreign Exchange Management (Deposit) Regulations, 2016 may purchase or sell dated Government Securities / treasury bills and non-convertible debentures / bonds and commercial papers issued by an Indian company. The amount of consideration paid for the purchases shall be out of the funds held in the said rupee account. The balance...
Post a Comment
Read more

Lending against Gold and Silver collateral

Reserve Bank of India (RBI) has issued directions on lending against the collateral of gold and silver. To whom are the directions applicable? The directions are applicable to the following regulated entities (REs) – Commercial Banks (including Small Finance Banks, Local Area Banks and Regional Rural Banks, but excluding Payments Banks). Primary (Urban) Co-operative Banks (UCBs) & Rural Co-operative Banks (RCBs), i.e., State Co-operative Banks (StCBs) and Central Co-operative Banks (CCBs). Non-Banking Financial Companies (NBFCs), including Housing Finance Companies (HFCs). Which loans are covered under the directions? The directions shall apply to all loans offered by an RE for the purpose of consumption or income generation (including farm credit) where eligible gold or silver collateral is accepted as a collateral security. What is eligible collateral? Eligible collateral means the collateral of jewellery, ornaments or coins made of gold or silver. A lender shall not grant any ad...
Post a Comment
Read more

Directions on Regulation of Payment Aggregators (PAs)

Reserve Bank of India (RBI) has issued directions on regulation of Payment Aggregators (PAs). Who is Payment Aggregator (PA)? Payment Aggregator (PA) is an entity that facilitates aggregation of payments made by customers to the merchants through one or more payment channels through the merchant’s interface (physical / virtual) for purchase of goods, services or investment products, and subsequently settles the collected funds to such merchants.  What are the categories of PA? PA – Physical (PA-P) – PA that facilitates transactions where both the acceptance device and payment instrument are physically present in close proximity while making the transaction. PA – Cross Border (PA-CB) – PA that facilitates aggregation of cross-border payments for current account transactions, that are not prohibited under Foreign Exchange Management Act, 1999 (FEMA), for its onboarded merchants through e-commerce mode. The 2 sub-categories of PA-CB are – PA-CB facilitating inward transaction (i.e. tr...
Post a Comment
Read more

Investments in Non-SLR instruments by State Co-operative Banks (StCBs) and Central Co-operative Banks (CCBs)

Reserve Bank of India (RBI) has issued directions on investments in non-SLR instruments by State Co-operative Banks (StCBs) and Central Co-operative Banks (CCBs). What is the prudential limit for non-SLR investment by StCBs and CCBs? Total Non-SLR investments shall not exceed 10% of the total deposits of a bank as on March 31 of the preceding financial year. Which instruments are permitted for non-SLR investments by StCBs and CCBs? StCBs / CCBs may invest in the following instruments – "A" or equivalent and higher rated Commercial Papers (CPs), debentures and bonds. Units of Debt Mutual Funds and Money Market Mutual Funds. Shares of Market Infrastructure Companies (MICs), e.g. Clearing Corporation of India Ltd. (CCIL), National Payments Corporation of India (NPCI), Society for World-wide Inter-bank Financial Telecommunication (SWIFT). Share capital of Shared Service Entity (SSE) set up by National Bank for Agriculture and Rural Development (NABARD) for StCBs and CCBs. Which a...
Post a Comment
Read more