06 April, 2026
The Reserve Bank of India’s draft on customer protection in
digital transactions is open for public comments, with today being the last
day.
The document sits there, formally—on https://www.rbi.org.in (Notifications),
supported by systems like https://cybercrime.gov.in
and helpline 1930.
My earlier reflections on this subject are at:
01) https://prashantnepayments.blogspot.com/2026/03/rbi-draft-2026-fraud-reporting-instant-76g2.html
02) https://prashantnepayments.blogspot.com/2026/03/rbi-draft-2026-5-day-rule-fraud-reporting-protection.html
03) https://prashantnepayments.blogspot.com/2026/04/rbi-draft-2026-zero-liability-digital-transactions-protection.html
What This Draft Fundamentally
Introduces
At its core, the draft introduces three clear shifts:
• Defined timelines for reporting (like the 5-day window)
• Conditional zero or limited customer liability
• Greater responsibility on banks to enable and respond
Everything else builds around these.
It could be a late evening.
A message comes in.
“₹8,000 debited…”
For a second, it doesn’t register.
You look again.
You scroll.
You pause.
Maybe it was something you forgot.
Maybe it’s nothing.
Or maybe… it isn’t.
Over the past few days, I didn’t experience this draft as a
document.
I experienced it through moments like this.
Small ones.
Almost easy to miss.
These Moments Are Not Rare
A small business owner, between customers, phone buzzing
quietly in the pocket.
A notification seen—but not opened.
“Will check later.”
Later becomes night.
Night becomes the next day.
And somewhere in between,
time quietly moves ahead.
Or an elderly parent.
A call.
A voice that sounds convincing.
A request that feels urgent.
OTP shared—not out of carelessness,
but out of trust.
Minutes later,
a message arrives.
And with it,
a realization that comes just a little too late.
Nothing here looks dramatic.
No alarms.
No flashing warnings.
Just ordinary life.
And that is exactly where this draft begins to matter.
What Is Quietly Changing
In these same moments, something is different now.
• That message is no longer just information—it allows
response
• That delay is no longer invisible—it has a boundary
• That responsibility is no longer one-sided—it begins to shift
• That loss is no longer absolute—it may be shared
Four Moments That Stayed With Me
When I step back, four moments emerge—
not as clauses, but as experiences:
The Moment of Action
A simple alert.
But now, with the ability to respond.
From:
• reading
To:
• acting
A small shift.
But one that brings response into the same moment as awareness.
The Moment of Time
A 5-day window.
Not too short.
Not too long.
Just enough to recognise, and respond.
A quiet reminder that:
Protection is not just about what happens
but when we respond to it
The Moment of Trust
Zero liability.
A phrase that feels reassuring.
But more than that, it answers a deeper question:
“Will I be left alone in this?”
And for the first time, it feels like:
“Not always.”
The Moment of Recovery
Recovery may not always be complete.
But the intent is clear:
Loss is no longer expected to rest entirely on the customer.
It reflects a shift towards shared responsibility,
where outcomes are not absolute,
but more balanced than before.
From Moments to Meaning
Individually, these appear as rules.
Together, they form a system:
Awareness → enables Action
Action → is
shaped by Time
Time → builds
Trust
Trust →
influences Recovery
This is not just a checklist.
It is a designed flow of protection.
A Subtle Shift in Thinking
What stood out to me across this draft is a quiet shift.
From:
• defining liability
To:
• shaping behaviour
From:
• assigning blame
To:
• enabling response
And somewhere in between:
👉 A shared
responsibility begins to emerge
Not imposed.
Not forced.
But designed.
A Personal Reflection
Digital transactions have become routine.
A tap.
A scan.
A transfer.
Things we don’t think twice about.
Until one day, something feels off.
And in that moment, what matters is not just technology.
It is:
• how quickly we can act
• how clearly the system responds
• and whether we feel supported
Final Thought
Protection in digital transactions is not created in one step.
It is built across moments.
Small ones.
Quiet ones.
Often unnoticed ones.
And perhaps,
if these small moments are becoming more responsive,
more time-bound,
and more shared,
then something larger is quietly improving:
Not just systems,
but the experience of being protected within them.
Yes, moments are important in a
Digital Payment process.
In digital transactions, protection is built not in rules, but
in the moments when we notice, act, and respond.
What next – By now,
Reserve Bank of India must have received few inputs. Or as is the norm, the last-minute
inputs will be bit more. Either way, the respective Reserve Bank of India team
will go through the inputs and release the final notification.
Once the final notification is in public domain, the
respective stakeholders will start working for the Go Live Date.
Disclaimer
This post is a personal reflection on a draft regulatory
document released for public comments.
The observations are interpretative in nature and intended for general
awareness.
The Joy of Digital Transactions
—
Nayakanti Prashant
Citizen Advocate – Digital Transactions Day (Proposed: April 11)
Series archive:
https://movethebarrier.blogspot.com/April11SafeePayDay
Author’s blogs
https://prashantrandomthoughts.blogspot.com
https://prashantnepayments.blogspot.com
https://innovationinbanking.blogspot.com
