AdVocate harshit Sachar | chamber no: 617 | district courts ludhiana | 2817 gurdev nagar ludhiana | ✆+91 7889228369
RBI Circulars and Customer Rights in Online Banking Fraud
An educational explanation of RBI circulars governing unauthorized electronic banking transactions and the rights available to customers in cases of online fraud.
CYBER CRIME & FREEZING OF BANK
Advocate Harshit Sachar
1/25/20263 min read


RBI Circulars and Customer Rights in Online Banking Fraud
With the rapid growth of digital banking, online fraud has emerged as a major concern for bank customers across India. While victims often assume that loss of money through online fraud is final, Indian banking regulation provides a structured framework of customer protection and bank accountability. These protections flow primarily from binding circulars issued by the country’s banking regulator.
Understanding these circulars is essential to knowing what rights customers actually have when unauthorized transactions occur.
Regulatory Authority Behind Customer Protection
The Reserve Bank of India (RBI) regulates banks and issues mandatory directions to protect customers using electronic banking channels. RBI circulars are not advisory in nature; they are binding on all regulated banks.
Banks are legally required to align their internal policies, grievance redress mechanisms, and response timelines with RBI directions.
What Is an “Unauthorized Electronic Banking Transaction”?
Under RBI guidelines, an unauthorized transaction includes:
Transactions carried out without customer knowledge
Transfers executed due to fraud, hacking, phishing, or social engineering
Debit of funds where the customer has not consented
The classification of a transaction as “unauthorized” is central to determining customer liability.
Customer Liability Depends on the Cause of Fraud
RBI circulars clearly distinguish between different scenarios:
1. Fraud Due to Bank or System Failure
If the fraud occurs due to:
System glitches
Security lapses at the bank’s end
Failure of internal safeguards
Customer liability is zero, regardless of when the fraud is reported.
2. Fraud Due to Third-Party Breach (Without Customer Negligence)
Where fraud is caused by third parties and the customer has:
Not shared credentials knowingly
Not acted negligently
Customer liability is limited, provided the fraud is reported promptly.
3. Fraud Due to Customer Negligence
If fraud occurs because the customer:
Shared OTP, PIN, or passwords knowingly
Ignored explicit security warnings
Customer liability may increase, but only up to the point of reporting the fraud to the bank.
Importance of Timely Reporting
RBI circulars emphasize that customers must report unauthorized transactions as soon as they become aware. Once reported:
Further liability must stop
Banks must take immediate preventive steps
Recovery and reversal mechanisms must be activated
Delay after detection may affect liability allocation, but delay alone does not automatically disqualify a customer from protection.
Mandatory Timelines for Banks
Banks are required to:
Acknowledge complaints promptly
Resolve and reverse transactions within prescribed timelines
Credit the amount provisionally where required
Failure to adhere to these timelines may amount to regulatory non-compliance.
Burden of Proof Lies on the Bank
A critical protection under RBI guidelines is that:
The bank must prove customer negligence
The customer is not required to prove innocence
Banks cannot deny claims based on assumptions or generic disclaimers. Each case must be examined on facts and evidence.
Right to Grievance Redressal
Customers have the right to:
Raise complaints through the bank’s grievance system
Seek escalation if initial response is inadequate
Receive reasoned responses
Banks are obligated to maintain transparent grievance redress mechanisms as per RBI norms.
RBI Circulars vs Bank Terms and Conditions
RBI directions override:
Internal bank policies
Account opening declarations
Standard disclaimer clauses
Banks cannot contract out of regulatory obligations by inserting blanket exclusions in customer agreements.
Police Complaint Is Not the Sole Remedy
RBI circulars recognize that:
Criminal investigation and bank liability operate independently
Bank obligations are not suspended due to pending police inquiry
Even if police investigation is delayed or inconclusive, banks must still comply with regulatory duties regarding customer protection.
Common Reasons Banks Wrongly Reject Claims
Banks often reject claims citing:
“Customer shared OTP” without proof
Delay in reporting without factual assessment
Ongoing police investigation
Such rejections are not automatically valid under RBI norms and must be supported by evidence.
Why RBI Circulars Matter in Banking Fraud Cases
These circulars:
Shift focus from blame to accountability
Recognize sophistication of modern frauds
Protect customers from arbitrary denial of relief
They represent a policy decision that customers should not bear disproportionate loss for failures beyond their control.
Conclusion
RBI circulars form the backbone of customer protection in online banking fraud cases. They clearly define unauthorized transactions, allocate liability based on fault, impose strict timelines on banks, and place the burden of proof on financial institutions. Awareness of these rights is crucial, as recovery and redress do not depend solely on police investigation. Regulatory compliance by banks remains an independent and enforceable obligation under Indian law.
Services
Sachar Law Firm – Advocate, Lawyer, Attorney & Solicitor Services in India | Ludhiana, Punjab.
Expert legal advice across various practice areas - Civil, Criminal, Divorce and Matrimonial, Consumer and Corporate laws, Bail Matters, Property Contract Disputes, Insurance claim disputes, cyber Crime cases, Cheque bounce, Family Divisions, Arbitration. Bail Matters, Electricity Board Cases, Appeals before Session court Ludhiana, Marriage certificate, Court Marriage, Succession Certificate Accident Claim (MACT), NRI Legal Matters, NRI Property Matters.
“Get in Touch with Sachar Law Firm”
Quick Links
© 2025. All rights reserved.
Advocate Harshit SACHAR
Legal Blog
2817, 1st Floor , Gurdev Nagar, Ludhiana, Punjab -141001
Address: Office Cum Res:
Corporate Liquidation and Recovery Litigation
☎️ 0161 7965410
