Skip to main content

Draft Directions on Outsourcing of Financial Services

Reserve Bank of India (RBI) had issued draft directions on managing risks and code of conduct in outsourcing of financial services.

What is the objective of the directions?

The purpose of the directions on 'managing risks and code of conduct in outsourcing of financial services' is to ensure that outsourcing arrangements neither diminish the ability of the regulated entity (RE) to fulfil its obligations to customers nor impede effective supervision by the supervisory authority. 

What is outsourcing?

“Outsourcing” refers to an RE’s use of a third party (either an affiliated entity within a group or an external entity) to perform activities that would normally be undertaken by the RE itself on a continuing basis, now or in the future.

‘Continuing basis’ would include agreements for a limited period. This means REs shall not enter into perpetual agreements.

What is material outsourcing?

“Material outsourcing arrangement” means an outsourcing arrangement which –

  • In the event of failure of service or breach of security, has the potential to either materially impact an RE’s –
    • business operations, reputation, strategies, or profitability; or
    • ability to manage risk and comply with applicable laws and regulations, or
  • In the event of any unauthorised access or disclosure, loss or theft of customer information, may have a material impact on the RE’s customers.

To whom will the directions be applicable?

The directions will be applicable to the following entities –

  • Commercial Banks [including Local Area Banks (LABs), Regional Rural Banks (RRBs), Payments Banks (PBs), and Small Finance Banks (SFBs)]
  • All-India Financial Institutions (AIFIs) [viz. Exim Bank, National Bank for Agriculture and Rural Development (NABARD), National Housing Bank (NHB), Small Industries Development Bank of India (SIDBI), and National Bank for Financing Infrastructure and Development (NaBFID)]
  • Non-Banking Financial Companies (NBFCs) including Housing Finance Companies (HFCs)
  • Urban Co-operative Banks (UCBs), State Co-operative Banks (StCBs), and Central Co-operative Banks (CCBs)
  • Credit Information Companies (CICs)

Which are the supervisory authorities?

Supervisory authorities include –

  • RBI in case of Commercial Banks (including LABs, PBs, SFBs, and UCBs), NBFCs, CICs, and AIFIs.
  • NABARD in case of StCBs, CCBs, and RRBs
  • NHB in case of HFCs

What are the major directions?

  • REs desirous of outsourcing of financial services shall not require prior approval from RBI. However, such arrangements shall be subject to on-site / off- site monitoring and inspection / scrutiny by the supervisory authority.
  • REs shall not outsource core management functions including policy formulation, decision-making functions like determining compliance with KYC norms, according sanction for loans (i.e. decision to lend shall be solely taken by the RE and the role of the service provider shall only be that of a facilitator), management of investment portfolio, compliance function, and internal audit function.
  • REs shall be responsible not only for the actions of their service provider but also of their sub-agents engaged in the context of outsourced activity. 
  • REs shall also be responsible for the confidentiality of customer information available with the service provider.
  • Access to customer information by staff of the service provider shall be on ‘need to know’ basis, i.e., limited to those areas where the information is required in order to perform the outsourced function.
  • The responsibility for redressal of customers’ grievances related to outsourced services shall rest with the RE. If a complainant does not get any reply from the RE within 30 days after the RE received the complaint or is not satisfied with the reply of the RE, he / she will have the following options for redressal of his / her grievances.
    • RBI’s Ombudsman in case of REs to which RBI’s Integrated Ombudsman Scheme, 2021 applies, or
    • Consumer Education and Protection Cell (CEPC) of respective Regional Office of RBI in case of RBI supervised REs to which RBI’s Integrated Ombudsman Scheme, 2021 does not apply, or
    • Grievance Redressal mechanism of the respective supervisory authority in case of REs supervised by an authority other than RBI.
  • REs shall ensure that the service provider shall neither impede / interfere with the ability of the RE to effectively oversee and manage its activities nor impede the supervisory authority in carrying out the supervisory functions and objectives.
  • In considering or renewing an outsourcing arrangement, REs shall undertake appropriate due diligence to assess the capability of the service provider to comply with obligations in the outsourcing agreement. 
  • The event of termination of any outsourcing agreement, on account of the below-mentioned reasons (indicative in nature), where the service provider deals with customers, shall be publicised by publishing in the leading local newspaper with sufficient circulation in the locality, displaying at a prominent place in the branches, and posting it on the RE’s website so as to ensure that the customers do not continue to deal with the service provider.
    • Fraud committed by the service provider
    • Leakage of information / data
    • Breach of confidentiality or code of conduct by the service provider
    • Blacklisting of the service provider by GoI, RBI, SEBI, or any other regulator / supervisory authority
  • If a service provider’s contract is terminated prematurely prior to the completion of the contracted period of service, on account of the reasons mentioned below (indicative in nature), Indian Banks' Association (IBA) / respective RBI-recognised Self-Regulatory Organizations (SROs) would have to be informed of the reasons for termination. IBA / respective RBI-recognised SROs would be maintaining a caution list of such service providers for sharing among themselves and the respective member REs.
    • Fraud committed by the service provider
    • Leakage of information / data
    • Breach of confidentiality or code of conduct by the service provider
    • Blacklisting of the service provider by GoI, RBI, SEBI, or any other regulator / supervisory authority
  • Some of the key risks in outsourcing that need to be evaluated by the REs are - Compliance Risk, Concentration and Systemic Risk, Contractual Risk, Counterparty Risk, Country Risk, Exit Strategy Risk, Legal Risk, Operational Risk, Reputation Risk, Strategic Risk.
What are the reporting requirements for REs?
  • REs shall immediately notify the supervisory authority in the event of any significant problems that have the potential to materially affect the outsourcing arrangement and, as a consequence, materially affect the business operations, profitability, reputation or strategies of the RE.
  • REs shall report all material financial outsourcing arrangements (including arrangements involving extensive data sharing across geographic locations as part of process outsourcing and when data pertaining to Indian operations are processed abroad) to the supervisory authority on a quarterly basis.
  • REs shall submit an Annual Compliance Certificate giving the particulars of outsourcing contracts, the prescribed periodicity of audit by internal / external auditor, major findings of the audit and action taken through the Board, to their respective supervisory authorities.

References

Reserve Bank of India. (2023, October 26). 'Draft Master Direction on Managing Risks and Code of Conduct in Outsourcing of Financial Services'. Retrieved from https://www.rbi.org.in/scripts/bs_viewcontent.aspx?Id=4334

Reserve Bank of India. (2023, October 26). 'RBI invites comments on draft Master Direction on Managing Risks and Code of Conduct in Outsourcing of Financial Services'. Retrieved from https://rbi.org.in/Scripts/BS_PressReleaseDisplay.aspx?prid=56630


Follow at - Telegram   Instagram   LinkedIn   X   Facebook

Comments

Popular Posts

Trade Receivables Discounting System (TReDS)

Reserve Bank of India (RBI) has issued the directions on Trade Receivables Discounting System (TReDS). What is TReDS? TReDS is a technology platform on a digital or electronic network for facilitating factoring of trade receivables through multiple financiers. What is a Factoring Unit? Factoring unit refers to trade receivable in the form of invoice / bill uploaded either by the seller (in the case of factoring) or by the buyer (in case of reverse factoring), as the case may be. Who are the participants in TReDS? Seller – Micro, Small and Medium Enterprise (MSME) Buyer – any person liable to the seller, whether under a contract or otherwise, against an invoice or bill of exchange, to pay any trade receivable Financier – all entities / institutions permitted to undertake factoring business under the Factoring Regulation Act, 2011 Insurance companies  Credit Guarantee Fund Trust notified by the Government of India Who can operate TReDS platforms? An entity shall seek authorisation fr...

Transfer of Surplus by the RBI to the Government

The surplus payable by the Reserve Bank of India (RBI) to the Central Government for the financial year 2025-26 amounted to ₹2,86,588.46 crore.  Why does the RBI transfer the surplus amount to the Central Government? As per section 47 of the RBI Act, 1934, after making provision for bad and doubtful debts, depreciation in assets, contributions to staff and superannuation funds and other provisions, the balance of the profits of the RBI is required to be paid to the Central Government. Also, the Central Government holds 100% of the share capital of the RBI. How much risk provision is required to be maintained by the RBI? The RBI developed the Economic Capital Framework (ECF) during 2014-15 and 2015-16 for determining the appropriate level of risk provisions to be made under the provisions of section 47 of the RBI Act, 1934.  In November 2018, the RBI, in consultation with the Government, constituted an Expert Committee to review the ECF of the RBI (Chairman: Dr. Bimal Jalan, fo...

Payment of Agency Commission to Agency Banks (ABs) and Disbursement of Government Pension by ABs

Reserve Bank of India (RBI) has issued guidelines on the conduct of Government business by Agency Banks (ABs), payment of agency commission to ABs and disbursement of Government pension by ABs. Who are ABs? ABs mean all Public Sector Banks (PSBs), scheduled Private Sector Banks (PVBs), scheduled Payments Banks (PBs), and scheduled Small Finance Banks (SFBs) appointed by the RBI under Section 45 of the RBI Act, 1934, by mutual agreement, to carry out Government banking business of the Central Government (CG) / State Governments (SGs). What is agency commission? Agency commission means the remuneration paid by the RBI to an AB in consideration of it acting as an agent of the RBI in the conduct of general banking business of the CG and the SGs at the places and in the manner specified in the agreement between the RBI and the bank, with the exception of the functions relating to the management of the public debt. What are the guidelines on appointment of ABs? Any eligible bank which intend...

Swap Facility for FCNR (B) Deposits, ECBs and OFCBs (updated as on June 23, 2026)

Reserve Bank of India (RBI) has introduced US Dollar-Rupee swap facility for Foreign Currency Non-Resident (Bank) [FCNR (B)] deposits, External Commercial Borrowings (ECBs) and Overseas Foreign Currency Borrowings (OFCBs). Swap facility for FCNR (B) deposits Swap facility for ECBs and OFCBs The swap facility has been introduced for fresh FCNR (B) deposits, including deposits that are renewed upon maturity, for a minimum tenor of 3 years and a maximum tenor of 5 years. The swap facility has been introduced for – ECBs of average maturity of 3 years and above, drawn on after June 8, 2026 till December 31, 2026 by – (a) Public Sector Undertakings (PSUs) whose majority ownership is held by the central and / or state government (other than banks), or (b) PSUs which are incorporated, established or registered under a Central or State Act and controlled by the central / state government. The facility will also be available for the undrawn portion of any exist...

Highlights of RBI Annual Report 2025-26 – Chapter 7 to 12

Reserve Bank of India (RBI) has published its annual report for the financial year 2025-26. In a series of articles, we will go through the highlights of the report. This is the fifth and final article in the series.  Chapter 7 – Public Debt Management The ways and means advances (WMA) limit for the Government of India (GoI) for H1:2025-26 (April to September 2025) was fixed at ₹1,50,000 crore and for H2:2025-26 (October 2025 to March 2026) was fixed at ₹50,000 crore. The RBI entered into an agreement with the Government of National Capital Territory of Delhi (GNCTD), under Section 21A(1) of the RBI Act, 1934, to carry on the general banking business of GNCTD and manage its rupee public debt. The WMA limit of GNCTD was set at ₹890 crore, taking the aggregate WMA limit of all the states / UTs to ₹61,008 crore. The RBI introduced Separate Trading of Registered Interest and Principal of Securities (STRIPS) in the state government securities. Retail Direct Gilt (RDG) account – An au...