₹25,000 Protection: Will It Keep Cyber Fraud at Bay?
More than 22.68 lakh cybersecurity incidents were recorded in India in 2024, up from 10.29 lakh in 2022. It’s a staggering rise. While the Reserve Bank of India (RBI) frames its new ₹25,000 compensation scheme as a safety net for victims of small-value fraudulent transactions, the policy raises a critical question: Is this a forward-thinking initiative or another patchwork remedy for an increasingly complex problem? At the heart of the issue lies the growing digital footprint of India — and with it, the vulnerabilities of its users.
RBI's Proposal: A Double-Edged Safety Net?
The RBI’s compensatory mechanism will cover losses arising from small-value fraudulent transactions up to ₹25,000, with payouts financed through surplus funds from the Deposit Education and Awareness Fund (DEAF). This fund was originally created to educate on dormant deposits but is now being repurposed as a crisis tool. Compensation will be capped at 85% of losses (or 70% in some cases, with the remainder borne by banks). However, the plan is not open-ended; each customer is entitled to such redress only once. Moreover, the RBI has promised draft guidelines addressing mis-selling, fair loan recovery, and customer liability, alongside measures like delayed credit verification for vulnerable users and enhanced authentication for digital payments.
This intervention occurs against the backdrop of a dramatic expansion in India's digital financial ecosystem. With over 86% of Indian households connected to the internet, digital payment volumes have surged. Yet, this growth has come at a cost: India sees one fraudulent transaction for every 1,01,242 transactions, with ₹1.40 lost for every ₹1 lakh moved. While this is statistically low, the absolute financial loss—running into tens of thousands of crores—is profound, exacerbated by low recovery rates and scam sophistication.
The Argument for RBI's Move
First, the compensation scheme directly addresses a trust deficit. Frequent cyber frauds erode public confidence in digital platforms. By guaranteeing some level of reimbursement, the RBI could instill a culture of accountability within both banks and digital users.
Second, the use of DEAF funds is pragmatic. With compensation limited to ₹25,000 per customer per incident, the immediate financial risk is mitigated. DEAF had over ₹39,000 crore in surplus as of 2023, making this a sustainable source, at least in the short term. A modest allocation here could act as a meaningful safety buffer while keeping the core corpus largely intact.
Third, the RBI's focus on vulnerable users, such as those with low digital literacy or rural segments, touches on a pressing equity issue. Fraud cases disproportionately affect these populations, not merely because of economic constraints but because of systemic gaps like inadequate outreach of digital literacy campaigns. Compensation could help cushion the financial impact on these groups, potentially narrowing the digital divide.
The Critique: Misdirection or Mismanagement?
Critics argue that compensation only treats the symptoms, not the disease. Fraud prevention mechanisms, such as enhancing telecom system security and real-time risk analytics, directly confront the root causes but are receiving less attention. Additionally, the once-per-customer payout cap risks creating moral hazards: banks may deprioritize preventive investments, knowing that losses are externally insured.
The mechanism for distributing compensation also raises questions. DEAF, by design, is not an insurance fund. Its redirection towards fraud compensation circumvents its primary goal of promoting deposit awareness. This could set a dubious precedent for cannibalizing surpluses in other safeguarding institutions for unrelated exigencies. Meanwhile, systemic loopholes — from phishing exploits to mule accounts — persist largely unaddressed due to insufficient inter-agency coordination between CERT-In, banks, and the judiciary.
Furthermore, delayed guidelines and the lack of customer-centric grievance redressal augment the skepticism. The Digital Personal Data Protection Act, 2023, lays critical obligations on banks and fintech firms to ensure secure processing. But anecdotal evidence suggests poor adherence, particularly in semi-urban and rural lending ecosystems. Hence, much depends on the timely and uniform implementation of RBI’s “draft guidelines” — an area where institutional inertia has historically been a stumbling block.
How Other Nations Tackle Digital Fraud
Consider the United Kingdom, where the Authorised Push Payment (APP) Fraud Code ensures reimbursement for victims of certain types of scams, provided they haven't acted negligently. Unlike India, the UK mandates banks to reimburse victims irrespective of liability debates, embedding strong institutional safeguards over discretionary payouts. Post-implementation in 2019, UK fraud reimbursements surged, but so did contentious disputes over defining "customer negligence." The system demonstrates that while compensatory mechanisms enhance trust, they also risk creating endless legal and operational ambiguities.
By comparison, India’s framework appears conservative. Its ‘one-time relief’ policy reflects an unwillingness to shoulder costs systemically, possibly stemming from the banking sector’s already strained non-performing assets (NPAs). Nonetheless, the Indian approach avoids the regulatory minefield that Britain continues to navigate, albeit at the cost of consumer confidence.
Where Things Stand
India’s digital fraud problem has undeniably deep structural roots: low digital literacy, weak prosecution of cybercriminals, and overlapping jurisdictional grey zones between cybersecurity agencies and banks. The RBI’s new compensatory scheme — limited, conditional, and discretionary — does little to resolve these foundational issues.
While the intent is laudable, the mechanisms remain bureaucratically heavy and reactive rather than proactive. A more sustainable model would pair compensation funds with rigorous preventive frameworks, such as mandating private banks and fintech firms to invest in consumer awareness drives or deploying advanced AI in fraud detection. Without these, the policy risks remaining a headline-grabber with limited functional impact.
- Question 1: Which of the following funds will be used to compensate digital fraud victims under the RBI's new proposal?
a) Consolidated Fund of India
b) Deposit Education and Awareness Fund
c) Madhya Nidhi Fund
d) Financial Cybersecurity Corpus
Answer: b - Question 2: Under the proposed RBI guidelines, what is the maximum compensation cap for individual customers?
a) ₹10,000
b) ₹15,000
c) ₹25,000
d) ₹50,000
Answer: c
Practice Questions for UPSC
Prelims Practice Questions
- It is intended to cover losses from small-value fraudulent transactions, with financing drawn from surplus funds of the DEAF.
- It provides unlimited redressal events per customer as long as each claim is within the specified cap.
- It is designed to fully indemnify the customer for the loss, with banks bearing no share of the residual liability.
Which of the above statements is/are correct?
- A compensation backstop can help address a trust deficit in digital payments by offering some level of reimbursement to victims.
- Diverting DEAF surpluses for compensation is portrayed as unambiguously aligned with DEAF’s original purpose of deposit education.
- Compensation mechanisms, if not matched with stronger prevention and coordination, may treat symptoms while systemic loopholes like mule accounts persist.
Which of the above statements is/are correct?
Frequently Asked Questions
How does the RBI’s proposed compensation scheme aim to rebuild trust in digital payments, and what is its core limitation?
The proposal seeks to reduce the trust deficit created by frequent cyber frauds by guaranteeing partial reimbursement for small-value fraudulent transactions, signalling accountability for banks and users. However, it is limited because compensation is available only once per customer, which may not reflect the repeated nature of cyber risks and evolving scam tactics.
Why is the use of the Deposit Education and Awareness Fund (DEAF) for fraud compensation considered pragmatic, yet controversial?
It is pragmatic because the scheme’s payouts are financed through DEAF surplus funds, and the per-incident cap helps contain immediate fiscal risk while keeping the corpus largely intact in the short run. It is controversial because DEAF was created for deposit education related to dormant deposits, and repurposing it for compensation may dilute its original mandate and set a precedent of diverting safeguarding funds.
What design features of the compensation plan could create a moral hazard, and why?
The once-per-customer payout and external financing through DEAF can reduce the perceived financial consequences for banks if fraud losses are partially socialized. Critics argue this could unintentionally deprioritize preventive investments by banks, since a part of the losses may be covered without directly improving fraud detection or telecom/payment security.
How does the article link digital expansion to increased vulnerability, especially for rural or low digital literacy users?
With a large share of households connected to the internet and rising digital payment volumes, the attack surface has expanded, increasing exposure to phishing and other fraud vectors. The article highlights that vulnerable users—often with low digital literacy or in rural segments—are disproportionately affected due to systemic gaps like inadequate outreach of digital literacy campaigns.
What governance and coordination gaps does the article identify as obstacles to tackling digital fraud effectively?
The article points to persistent systemic loopholes like phishing exploits and mule accounts, which remain inadequately addressed due to insufficient coordination among CERT-In, banks, and the judiciary. It also flags delayed guidelines and weak customer-centric grievance redressal, raising doubts about timely and uniform implementation of RBI’s proposed measures.
About LearnPro Editorial Standards
LearnPro editorial content is researched and reviewed by subject matter experts with backgrounds in civil services preparation. Our articles draw from official government sources, NCERT textbooks, standard reference materials, and reputed publications including The Hindu, Indian Express, and PIB.
Content is regularly updated to reflect the latest syllabus changes, exam patterns, and current developments. For corrections or feedback, contact us at admin@learnpro.in.