What changed
RBI has operationalised the '.bank.in' domain for banks, with IDRBT appointed as the exclusive registrar under NIXI and MeitY. Banks must now migrate from their current domains to '.bank.in' and complete the process no later than October 31, 2025.
What it means for you
This move aims to reduce phishing and spoofing attacks by giving banks a verified, exclusive domain. Banks will need to coordinate with IDRBT for registration and migration, which may involve technical changes to websites, email systems, and customer communication channels. Non-compliance by the deadline could expose banks to regulatory action.
What you must do
- Contact IDRBT at [email protected] immediately to initiate the domain registration process.
- Plan and execute migration of all existing bank domains to the '.bank.in' domain before October 31, 2025.
- Update all customer-facing digital channels, email systems, and internal links to reflect the new domain.
- Communicate the domain change to customers well in advance to prevent confusion or phishing risks.
Who it affects
All Commercial Banks, All Primary (Urban) Co-operative Banks, All State Co-operative Banks, All District Central Co-operative Banks
What is the deadline for migrating to the .bank.in domain?
All banks must complete the migration by October 31, 2025, as per the RBI circular dated April 22, 2025.
Who should banks contact for the domain registration process?
Banks should contact IDRBT at [email protected], which has been authorised as the exclusive registrar for the .bank.in domain.
Why is RBI introducing the .bank.in domain?
To combat increased fraud in digital payments and enhance cybersecurity, thereby boosting public trust in digital banking systems.