RBI Tightens Customer Liability Rules for Unauthorised EBTs (Applicable from Jan 1, 2027)

Live · in forceNo withdrawal recorded as of 25 Jun 2026. Reviewed by our expert review panel; always verify against the official RBI source below.

Issued by RBI: 01 Jan 2027 · Decoded by BankPulse: 25 Jun 2026, 12:18 IST

⏱ ~2 min read

Quick answerRBI has revised liability limits for unauthorised electronic banking transactions (EBTs) applicable to transactions on or after Jan 1, 2027. Banks must now clearly define negligence, including system failures and scam warnings, to determine customer liability. Zero liability applies if bank negligence is proven.

What changed

RBI inserted new definitions for Card Not Present, Card Present, EBT, fraudulent EBT, negligence by bank/customer, shadow reversal, third-party breach, and unauthorised EBT into the Responsible Business Conduct Directions, 2025 via the Third Amendment Directions, 2026. The amendments clarify when customers are liable for unauthorised transactions, including scenarios like ignoring bank scam warnings or downloading malicious apps. Shadow reversal is defined as temporary provisional credit.

What it means for you

Banks must update their internal policies to align with these explicit negligence criteria, which include system failures and security breaches as bank negligence. Lenders face higher operational risk if they fail to provide 24x7 reporting channels or act diligently on customer fraud reports. The new definitions will likely increase customer claims for zero liability, requiring stronger fraud monitoring and alert systems.

What you must do

Review and update your bank's liability framework for unauthorised EBTs to match the new definitions by Jan 1, 2027.
Ensure 24x7 channels for reporting fraudulent EBTs or lost cards are operational and well-publicised.
Train customer service teams to handle scam warnings and negligence assessments per the new rules.
Audit your alert systems to guarantee mandatory EBT alerts are sent without fail.

Who it affects

Commercial banks (excluding SFBs, PBs, RRBs, LABs), Credit card issuers, Deposit account holders

What is the effective date for these new liability rules?

The amendments apply to electronic banking transactions undertaken on or after January 1, 2027.

Does customer negligence now include ignoring bank scam warnings?

Yes, the new definition of customer negligence includes not paying attention to specific, directed, and clear warnings from the bank that a prospective transaction is likely a scam.

What happens if a bank is found negligent?

If bank negligence is proven (e.g., system failure, no alerts, no 24x7 reporting), the customer may have zero liability for the unauthorised transaction.

AI-drafted · 3-model AI consensus fact-check · under the editorial review of our expert review panel · decoded & published by BankPulse · 25 Jun 2026, 12:18 IST

Official RBI source: https://www.rbi.org.in/scripts/NotificationUser.aspx?Id=13543&Mode=0 — Plain-English summary by BankPulse (bankpulse.ai), reviewed by our expert review panel. Independent platform, not affiliated with the Reserve Bank of India; never reproduces RBI text verbatim.