Published On: April 17th 2026
Authored By: Sai Sloka Duvvuri
Nirma University
Introduction
Digital banking in India has transformed significantly in recent years. Banking regulation is no longer peripheral but central to the sector’s functioning — driven by rapid technological advancement and evolving consumer expectations. The Reserve Bank of India has responded by developing a structured regulatory framework for digital banking.[1] This framework comprises the Digital Banking Channels Authorisation Directions 2025, the Digital Lending Directions 2025, and the guidelines governing Digital Banking Units.[2] Together, these measures establish a cohesive regulatory architecture for digital banking in India, comparable to models adopted in Singapore and China.
Digital payments in India have grown at a remarkable pace and now require robust regulatory oversight. Transaction volumes over the past decade have increased more than thirty-eight-fold. Projections estimate 206 billion transactions by the end of March 2025 and 617 billion transactions by 2030.[3] This article analyses the RBI’s 2025 framework by examining the interlinkages between licensing requirements, corporate structuring norms, and operational compliance standards.[4]
I. Evolution of Digital Banking Regulation in India
India’s digital banking regulatory journey began with the Committee on Comprehensive Financial Services for Small Businesses and Low Income Households, chaired by Shri Nachiket Mor in 2013.[5] The Committee proposed a differentiated banking structure aimed at strengthening financial inclusion. It recommended specialised licences for payment banks and wholesale banks, with reduced capital requirements of ₹50 crore — marking a shift from a uniform regulatory model to one that recognised differences in institutional purpose and risk exposure.[6]
The Reserve Bank of India implemented these recommendations by issuing guidelines in November 2014. External advisory committees chaired by Nachiket Mor and Usha Thorat evaluated applications. By 2015, the RBI had granted in-principle approval to eleven payment banks and ten small finance banks.
In 2022, the Union Budget announced the establishment of seventy-five Digital Banking Units across districts to mark seventy-five years of Indian independence.[7] In April 2022, the RBI issued guidelines permitting scheduled commercial banks to set up Digital Banking Units across Tier 1 to Tier 6 centres without prior approval. These units are designed to provide end-to-end digital banking services through specialised infrastructure integrated with core banking systems. NITI Aayog released a Discussion Paper on Digital Banks in the same year.[8] This paper proposed full-stack digital banking licences to address the ₹25.8 trillion credit gap in the MSME sector and highlighted the structural limitations of traditional banks in assessing and delivering small-ticket loans.
The RBI consolidated its digital banking framework in 2025 through the draft Digital Banking Channels Authorisation Directions. These Directions distinguish between view-only and transactional digital facilities.[9] Transactional services require prior RBI approval, a minimum net worth of ₹50 crore, and board-supported technical assessments.
Further consolidation was achieved through the Digital Lending Directions 2025, issued on 8 May 2025. These Directions replaced earlier digital lending frameworks and expanded their scope to cooperative banks and all-India financial institutions. They capped Default Loss Guarantee arrangements at five percent and required specific instruments — such as cash or bank guarantees — to be invoked within 120 days of default. The 2025 framework is also aligned with the Digital Personal Data Protection Act, 2023, mandating borrower consent for data collection, restricting the use of biometric information, and requiring data to be stored within India, with limited cross-border processing permitted. The RBI places full responsibility on regulated entities for ensuring compliance by third parties handling data. India’s digital banking regulation now seeks to balance innovation with consumer protection and systemic stability, positioning India as a leading jurisdiction in digital banking governance.[10]
II. Licensing Framework and Corporate Structure Requirements
Digital Banking Unit Licensing Model
The Reserve Bank of India introduced the Digital Banking Unit framework through a circular dated 7 April 2022. The framework was developed by a working group comprising representatives from banks and the Indian Banks’ Association. It applies only to domestic scheduled commercial banks and excludes regional rural banks, payment banks, and local area banks — a limited scope that reflects the intention to maintain institutional stability and ensure regulatory compliance.[11]
Banks with prior experience in digital operations are permitted to establish Digital Banking Units in Tier 1 to Tier 6 centres without obtaining prior approval from the RBI. These units operate as fixed-point outlets providing secure and paperless digital banking services integrated with the parent bank’s core banking systems. Each unit must function from a physically separate space while remaining connected to the bank’s backend infrastructure. Banks are required to disclose digital and non-digital retail operations separately in their reporting. Digital Banking Units may be operated directly by the bank or through outsourced arrangements, subject to RBI norms.[12] Capital requirements are aligned with those applicable to the parent bank under the Banking Regulation Act, 1949, removing the need for separate capital norms for these units.
NITI Aayog’s Proposed Digital Bank Licensing Regime
NITI Aayog in 2022 proposed a licensing framework for full-stack digital banks that would function as independent entities under the Banking Regulation Act, 1949. These digital banks are conceived as standalone institutions with their own licences and balance sheets.[13] Unlike Digital Banking Units — which can only be established by existing banks — the proposed digital banks would operate independently, thereby widening participation and fostering competition in the sector. The framework introduced a three-stage graduated licensing model designed to allow controlled market entry while maintaining regulatory oversight.[14]
Stage 1: Restricted Digital Business Bank Licence
In the first phase, applicants are granted a restricted digital bank licence subject to limits on the number of customers and transaction values. The minimum paid-up capital requirement is ₹20 crore — significantly lower than the ₹500 crore prescribed for universal banks. Applicants are required to participate in the RBI’s regulatory sandbox, which relaxes certain financial and operational requirements to facilitate innovation.[15] The sandbox provides a supervised environment for applicants to test digital business models, technological infrastructure, and risk management systems before progressing to the next licensing stage.
Stage 2: Regulatory Sandbox Operations
At this stage, licensees function within the regulatory sandbox under close supervision. Monitoring focuses on customer acquisition, MSME lending, technological resilience, and compliance with prudential norms. The RBI and the licensee jointly determine evaluation criteria to measure performance and assess risk management capacity.[16] An entity demonstrating operational stability and regulatory compliance may transition to full-scale digital business bank operations, which requires paid-up capital of ₹200 crore — comparable to the requirement applicable to Small Finance Banks.
Stage 3: Full Digital Universal Bank Licence
The final phase involves the grant of a full digital banking licence with universal banking rights, contingent on satisfactory regulatory and operational performance. At this stage, the digital bank functions as a fully licensed entity under the Banking Regulation Act, 1949 and must comply with the same prudential and liquidity norms applicable to conventional banks. Capital requirements are aligned with those prescribed for traditional universal banks,[17] ensuring financial strength while recognising the distinct features of a digital banking model.
Capital and Corporate Structure Requirements
The capital requirement structure reflects a regulatory approach that encourages innovation without compromising financial stability. The ₹20 crore requirement for sandbox operations acknowledges the limited and experimental nature of that phase. The ₹200 crore threshold for full digital business banks addresses the higher risks associated with unrestricted operations.[18] This structure contrasts with the ₹500 crore minimum capital requirement for universal banks under Section 11 of the Banking Regulation Act, 1949.
Eligibility criteria emphasise prior experience in related sectors such as e-commerce, payments, and technology services. Consortium applications are permitted and neo-banks may apply for licence upgrades, broadening participation in the sector.[19] Governance requirements mandate boards with expertise in digital operations, cybersecurity, and risk management. Digital banks must comply with RBI directions on data protection and are required to maintain secure and resilient technological systems. The framework also provides mandatory access to essential financial infrastructure — including Aadhaar e-KYC, UPI, and IMPS — ensuring operational parity with traditional banks and supporting fair competition.
III. Operational Compliance and Risk Management Framework
Digital Banking Channels Authorisation Requirements
The Reserve Bank of India issued the draft Digital Banking Channels Authorisation Directions in July 2025, with effect from 2026.[20] These Directions apply to all commercial and cooperative banks. They consolidate and replace sixteen circulars issued between 2001 and 2022, while preserving approvals granted under the earlier framework.
The Directions draw a distinction between view-only and transactional digital banking facilities. View-only services — such as balance enquiries, account statement downloads, and cheque book requests — do not involve any financial transaction.[21] Banks that have implemented Core Banking Solutions and IPv6-enabled infrastructure may offer such services without prior approval but must submit audit-certified Gap Assessment and Internal Control reports within thirty days. Transactional services, including fund transfers and digital loan applications, require prior RBI approval. Banks must satisfy capital adequacy requirements, maintain a minimum net worth of ₹50 crore, and demonstrate compliance with cybersecurity standards supported by findings from previous information security audits.
Risk Management and Cybersecurity Framework
The RBI’s directives aim to strengthen risk management in accordance with evolving cybersecurity standards. The Financial Stability Report of June 2025 identifies Zero Trust Architecture as central to risk supervision and cyber risk management.[22] Zero Trust Architecture operates on the principle of continuous verification and rejects automatic trust for any user or device. Its core features include restricted access rights, network segmentation, identity-based authentication, and the assumption that internal breaches are possible.
Banks are expected to implement behaviour-based transaction monitoring and anomaly detection systems. They must ensure data protection and maintain uninterrupted operations through regular system testing.[23]
Consumer Protection and Governance Standards
Consumer protection is central to the 2025 framework. Banks are prohibited from compelling customers to adopt digital channels as a condition for accessing other banking services. Digital enrolment requires explicit and documented consent. Banks must present terms and conditions clearly in English, Hindi, and relevant local languages, with due regard to accessibility for persons with disabilities.[24]
The promotion of third-party products on digital platforms without prior RBI approval is restricted, with the aim of preventing cross-selling and conflicts of interest — including those involving promoter or subsidiary entities. Mandatory SMS and email alerts are prescribed as additional consumer safeguards. Governance standards require board-level oversight of digital operations, with boards responsible for sound technology governance, effective risk management, and regulatory compliance.[25] Senior management is accountable for operational performance and compliance with the Information Technology Act, 2000, the Digital Personal Data Protection Act, 2023, and RBI guidelines on KYC, AML, and CFT.
IV. Data Privacy and Digital Infrastructure Requirements
Data Protection Compliance Framework
The RBI’s Digital Lending Directions 2025 strengthen data privacy standards in alignment with the Digital Personal Data Protection Act, 2023.[26] Financial institutions bear legal responsibility for the handling of personal data. Data may be collected only on the basis of clear, informed, and specific consent, supported by accessible privacy notices in multiple languages. The Directions restrict the collection of biometric data unless authorised by law and require compliance with the principles of data minimisation and purpose limitation.[27]
Borrowers are granted specific rights in relation to their data — including the right to access, correct, erase, or transfer personal information and to withdraw consent subject to statutory limits. All financial and payment-related data must be stored on servers located within India.[28] Where overseas processing takes place, the data must be deleted and repatriated to India within twenty-four hours. Banks and non-banking financial companies remain fully accountable for third-party data handlers. Entities classified as significant data fiduciaries are required to appoint data protection officers, conduct periodic audits, and maintain transparent privacy policies reviewed annually.
Technology Infrastructure Standards
Digital banking operations depend on technological infrastructure that complies with RBI-prescribed standards.[29] The implementation of Core Banking Solutions with full IPv6 compatibility is treated as a basic operational requirement, as it improves security, operational efficiency, and network connectivity. The RBI also emphasises the need for secure Application Programming Interfaces — banks must undertake detailed testing and risk assessments before integrating APIs, supported by documentation on encryption protocols, authentication mechanisms, and data protection safeguards.
Cloud services and third-party technology arrangements are governed by the RBI Master Direction on Outsourcing of IT Services 2023. These Directions require banks to adopt board-approved outsourcing policies and conduct due diligence of service providers. Outsourcing agreements must include provisions on data protection, audit rights, and business continuity.[30] Even where services are outsourced, regulatory responsibility remains with the bank — institutions continue to be accountable for compliance, data security, and operational integrity.
V. Regulatory Reporting and Compliance Obligations
The RBI’s Digital Lending Directions 2025 introduce a structured framework for reporting and compliance in the digital lending ecosystem, creating two primary reporting channels to improve credit information transparency and strengthen regulatory oversight.[31]
Digital Lending Reporting Framework
All regulated entities are required to report lending activities carried out through Digital Lending Applications to Credit Information Companies in accordance with the Credit Information Companies (Regulation) Act, 2005. This obligation covers secured and unsecured loans, deferred payment arrangements, and credit facilities extended through Lending Service Providers or merchant platforms.[32] Such reporting supports the creation of comprehensive borrower credit histories, strengthens credit appraisal processes, and reduces the risk of over-indebtedness.
In May 2025, the RBI operationalised the Centralised Information Management System (CIMS) as a regulatory platform for the collection and analysis of data relating to Digital Lending Applications. Regulated entities are required to submit details of all such applications by June 2025 in the prescribed format. The submission must be certified by the Chief Compliance Officer or another authorised official,[33] confirming the accuracy of the data, public disclosure of loan-related information, the existence of grievance redressal mechanisms, and compliance with applicable data protection standards.
Digital Banking Unit Reporting
Digital Banking Units operate under a distinct reporting framework that reflects the digital character of their services. Banks must maintain separate accounting and disclosure systems clearly distinguishing digital retail operations from traditional retail banking.[34] This segregation enables the RBI to track the growth of Digital Banking Units, measure digital adoption levels, and identify risks specific to digital delivery channels.
Given their reliance on technology, Digital Banking Units are subject to detailed cybersecurity reporting obligations. The Digital Banking Channels Authorisation Directions 2025 require banks to submit Gap Assessment Reports and Internal Controls Adequacy Reports within thirty days of launching even limited view-only digital facilities.[35] These reports must be certified by auditors empanelled with the Indian Computer Emergency Response Team (CERT-In). This requirement ensures independent evaluation of technological readiness and the adequacy of internal controls.
Auditors empanelled with CERT-In are subject to technical scrutiny and must follow the Cybersecurity Audit Standards and Procedures Guidelines issued in July 2025. The audit process combines automated testing tools with manual examination to provide a comprehensive assessment of system vulnerabilities, control effectiveness, and the overall security framework.[36]
VI. Comparative Analysis with Global Digital Banking Frameworks
The RBI’s 2025 digital banking framework reflects global regulatory practices while adapting them to India’s financial context. Several jurisdictions — including Singapore, Hong Kong, and Malaysia — have adopted phased licensing models that seek to balance innovation with financial stability.[37]
In Singapore, the Monetary Authority of Singapore introduced a two-stage licensing structure permitting up to five digital full bank licences. During the restricted phase, licensees are required to maintain capital of SGD 15 million and are subject to a deposit cap of SGD 75,000 per depositor.[38] Upon meeting supervisory requirements, they may progress to full operations with capital of SGD 1.5 billion and without deposit restrictions. In Hong Kong, the Hong Kong Monetary Authority’s 2019 framework requires digital banks to comply with the same prudential norms as conventional banks,[39] while maintaining a physical head office and delivering services primarily through technology-driven channels. Malaysia adopted a similar phased approach in 2020 through Bank Negara Malaysia, providing for a foundational stage with a capital requirement of RM 100 million and an asset cap of RM 3 billion — with eligible entities transitioning after five years to a second phase requiring RM 300 million in capital.
India’s digital bank licensing proposal put forward by NITI Aayog adopts a comparable phased structure. It begins with restricted licences requiring ₹20 crore in capital within a regulatory sandbox, advances to a ₹200 crore threshold for full-scale digital business banks, and ultimately allows for universal digital bank status.[40] The RBI framework also aims for regulatory equivalence to prevent regulatory arbitrage. Digital banks are expected to meet prudential, cybersecurity, and capital standards similar to those applicable to traditional banks, while access to UPI, IMPS, and ATM networks is designed to ensure competitive neutrality.[41]
VII. Implementation Challenges and Industry Impact
Technological Infrastructure Adaptation
Financial institutions must undertake significant technological transformation to comply with the 2025 digital banking framework. Legacy banking systems — designed decades ago — are often incompatible with digital-first models, API-based integration, or cloud infrastructure. Banks are adopting phased modernisation strategies that typically prioritise customer-facing platforms and payment systems while gradually replacing older monolithic core systems.[42]
The mandatory transition to Internet Protocol Version 6 (IPv6) presents an additional compliance challenge. Upgrading network infrastructure and related software may cost up to thirty percent of existing technology investments. Staff members also require specialised training estimated at forty to sixty hours. Smaller cooperative banks and non-banking financial companies face particular difficulty given their limited financial and technical resources.
The implementation of Zero Trust Architecture further increases operational demands, requiring a shift from traditional perimeter-based security to systems built on identity management, continuous authentication, and micro-segmentation. The implementation period extends to eighteen months. During this transition, institutions must maintain both IPv4 and IPv6 systems simultaneously, adding to overall costs.[43]
Market Structure Implications
The framework confers a structural advantage on existing banks through the Digital Banking Unit model, which allows digital expansion without separate RBI approval. New entrants seeking licences under the NITI Aayog model face stricter capital thresholds and licensing requirements.[44] The establishment of seventy-five Digital Banking Units across the country is intended to strengthen financial inclusion, particularly in underserved regions. By leveraging digital channels and shared payment infrastructure such as UPI and IMPS, the framework encourages cost-effective service delivery.
VIII. Regulatory Developments and Strategic Considerations
Evolution Toward Full Digital Banking Licences
The RBI’s graduated approach to digital banking reflects a deliberate policy choice. Rather than permitting rapid licence expansion, the regulator has preferred a phased, evidence-based method. The Digital Banking Unit framework functions as a controlled environment in which market behaviour, operational risks, and compliance standards can be closely observed before full-scale digital bank licensing is pursued.[45] Performance data on profitability, asset quality, and consumer impact will play an important role in shaping future regulatory decisions.
Emerging Technology Integration
The Reserve Bank of India released the Framework for Responsible and Ethical Enablement of Artificial Intelligence on 13 August 2025. This framework lays down governance principles for the use of AI within financial institutions. Given that only approximately twenty-one percent of institutions have adopted AI systems to date, the framework seeks to build trust by emphasising fairness, accountability, and transparency.[46] It requires the constitution of board-level committees to oversee AI deployment, and institutions must undertake model validation, bias testing, and continuous monitoring in areas such as credit scoring, fraud detection, and customer service.
Blockchain technology presents a further area of regulatory development. The pilot project for the Digital Rupee, launched in December 2022, has demonstrated the potential of distributed ledger-based settlements and the expansion of central bank digital currency systems. As adoption increases, further regulatory measures may be required to address interoperability between CBDC platforms, commercial banking networks, and cross-border settlement systems.
Regulatory Sandbox Expansion and Global Convergence
Encouraged by initial results, the RBI has indicated plans to expand the scope of regulatory sandboxes to cover innovations in insurance, securities, and payments — in coordination with SEBI and IRDAI. Multi-sector sandboxes can create a supervised environment for innovation while safeguarding consumer interests and financial stability.[47] India’s broader regulatory direction is consistent with global trends favouring technology-neutral and function-based regulation. Greater cross-border harmonisation through bilateral regulatory recognition arrangements may further strengthen India’s position as a regional regulatory leader.[48]
The 2025 digital banking framework — bringing together the Digital Banking Unit guidelines, the Digital Lending Directions, and the NITI Aayog licensing proposal — establishes a structured basis for the long-term transformation of the sector.[49] Although legacy system modernisation and rising compliance costs remain practical concerns, the framework’s graduated, risk-sensitive design supports regulatory flexibility, systemic stability, and consumer confidence, reinforcing India’s standing as an important jurisdiction in inclusive and responsible digital banking regulation.
References
[1] ‘Reserve Bank of India Issues Draft Circular on Digital Banking Guidelines for Enhanced Customer Protection’ (Goodreturns, 2025) <https://www.goodreturns.in/news/reserve-bank-of-india-issues-draft-circular-on-digital-banking-guidelines-for-enhanced-customer-prot-011-1444159.html> accessed 12 February 2026.
[2] Argus Partners, ‘RBI (Digital Lending) Directions, 2025 — An Overview’ (Argus Partners, 2025) <https://www.argus-p.com/updates/updates/rbi-digital-lending-directions-2025-an-overview/> accessed 12 February 2026.
[3] ‘”Digital Bank” — Licensing and Regulatory Framework in India and Way Forward’ (Banking Finance, 2025) <https://www.bankingfinance.in/digital-bank-licensing-and-regulatory-framework-in-india-and-way-forward.html> accessed 12 February 2026.
[4] Lawrbit, ‘RBI Digital Lending Guidelines 2025: Key Rules & CIMS’ (Lawrbit, 2025) <https://www.lawrbit.com/article/reserve-bank-of-india-digital-lending-directions-2025/> accessed 12 February 2026.
[5] ‘RBI Proposes Stricter Digital Banking Rules: How It Will Affect You’ (India Today, 22 July 2025) <https://www.indiatoday.in/business/story/rbi-proposes-stricter-digital-banking-rules-what-it-means-for-you-2759405-2025-07-22> accessed 12 February 2026.
[6] CredAble, ‘Key Highlights of the RBI Guidelines for Establishment of Digital Banking Units’ (CredAble, 2025) <https://credable.in/insights-by-credable/key-highlights-of-the-rbi-guidelines-for-establishment-of-digital-banking-units/> accessed 12 February 2026.
[7] Reserve Bank of India, Draft Digital Banking Channels Authorisation Directions, 2025 (RBI, 2025) <https://www.banklaw.in/manage/images/services/1923209665RBi-DraftDigitalBankingChannelsAuthorisationDirections2025.pdf> accessed 12 February 2026.
[8] ‘RBI Bars Banks from Promoting Third-Party Products on Digital Platforms’ (The Times of India, 2025) <https://timesofindia.indiatimes.com/business/india-business/rbi-bars-banks-from-promoting-third-party-products-on-digital-platforms-new-draft-rules-mandate-customer-consent-risk-checks-for-online-banking/articleshow/122817883.cms> accessed 12 February 2026.
[9] ‘RBI Proposes Stricter Digital Banking Rules: How It Will Affect You’ (India Today, 22 July 2025) <https://www.indiatoday.in/business/story/rbi-proposes-stricter-digital-banking-rules-what-it-means-for-you-2759405-2025-07-22> accessed 12 February 2026.
[10] Press Information Bureau, ‘PM Dedicates 75 Digital Banking Units across 75 Districts’ (PIB, 2022) <https://www.pib.gov.in/PressReleasePage.aspx?PRID=1868239> accessed 12 February 2026.
[11] AK & Partners, ‘Guidelines on Establishment of Digital Banking Units’ (AK & Partners, 2025) <https://www.akandpartners.in/post/guidelines-on-establishment-of-digital-banking-units> accessed 12 February 2026.
[12] Ikigai Law, ‘NITI Aayog’s Discussion Paper on Digital Banks’ (Ikigai Law, 2025) <https://www.ikigailaw.com/article/101/niti-aayogs-discussion-paper-on-digital-banks> accessed 12 February 2026.
[13] Press Information Bureau, ‘NITI Aayog Releases Report on Digital Banks’ (PIB, 2022) <https://www.pib.gov.in/PressReleaseIframePage.aspx?PRID=1843259> accessed 12 February 2026.
[14] CUTS International, Digital Banks: A Proposal for Licensing & Regulatory Regime for India — Comments on NITI Aayog Discussion Paper (CUTS CCIER, 2022) <https://cuts-ccier.org/pdf/cuts-comments-niti-aayog-digital-banks.pdf> accessed 12 February 2026.
[15] Legality Simplified, ‘Digital Banking Channels Authorisation Directions, 2025’ (Legality Simplified, 2025) <https://www.legalitysimplified.com/digital-banking-channels-authorisation-directions-2025/> accessed 12 February 2026.
[16] CUTS International, Digital Banks: A Proposal for Licensing & Regulatory Regime for India — Comments on NITI Aayog Discussion Paper (CUTS CCIER, 2022) <https://cuts-ccier.org/pdf/cuts-comments-niti-aayog-digital-banks.pdf> accessed 12 February 2026.
[17] Legality Simplified, ‘Digital Banking Channels Authorisation Directions, 2025’ (Legality Simplified, 2025) <https://www.legalitysimplified.com/digital-banking-channels-authorisation-directions-2025/> accessed 12 February 2026.
[18] PwC India, ‘Guidelines on the Establishment of Digital Banking Units: A Regulatory Perspective’ (PwC, 2025) <https://www.pwc.in/assets/pdfs/consulting/financial-services/fintech/publications/guidelines-on-the-establishment-of-digital-banking-units-dbus-a-regulatory-perspective.pdf> accessed 12 February 2026.
[19] InstantPay, ‘How Digital Banking Units Will Transform Banking in India?’ (InstantPay, 24 December 2024) <https://www.instantpay.in/blog/2024/12/24/digital-banking-units/> accessed 13 February 2026.
[20] Law.Asia, ‘A Comparison of Digital Banking Regulations: India’ (Law.Asia, 2025) <https://law.asia/comparison-digital-banking-regulations-india/> accessed 13 February 2026.
[21] The IAS Hub, ‘Digital Banks: A Proposal for Licensing & Regulatory Regime for India’ (The IAS Hub, 2025) <https://theiashub.com/free-resources/mains-marks-booster/digital-banks-a-proposal-for-licensing-regulatory-regime-for-india> accessed 13 February 2026.
[22] Drishti IAS, ‘Digital Banking Units: Progress & Challenges’ (Drishti IAS, 2025) <https://www.drishtiias.com/daily-updates/daily-news-analysis/digital-banking-units-progress-challenges> accessed 13 February 2026.
[23] Lakhbir Singh, ‘Corporate Governance in Indian Banks: Ensuring Stability’ (LinkedIn, 2025) <https://www.linkedin.com/pulse/corporate-governance-indian-banks-ensuring-stability-lakhbir-singh-vlxdc> accessed 13 February 2026.
[24] The Digital Fifth, ‘RBI Master Direction on IT Governance — Key Highlights & Insights’ (The Digital Fifth, 2025) <https://thedigitalfifth.com/decoding-rbis-master-direction-on-it-governance/> accessed 13 February 2026.
[25] Angel One, ‘RBI Aims to Tighten Rules for Digital Banking’ (Angel One, 2025) <https://www.angelone.in/news/market-updates/rbi-aims-to-tighten-rules-for-digital-banking> accessed 13 February 2026.
[26] Medianama, ‘RBI Bans Mandatory Digital Banking for Bank Customers’ (Medianama, July 2025) <https://www.medianama.com/2025/07/223-rbi-2025-digital-banking-directions-ensure-financial-inclusion/> accessed 13 February 2026.
[27] The New Indian Express, ‘RBI to Tighten Digital Banking Norms, Proposes Ban on Display of Third-Party Products and Services’ (The New Indian Express, 22 July 2025) <https://www.newindianexpress.com/business/2025/Jul/22/rbi-to-tighten-digital-banking-norms-proposes-ban-on-display-of-third-party-products-and-services> accessed 13 February 2026.
[28] JISA Softech, ‘RBI’s Cybersecurity Mandates 2025: Securing India’s Digital Banks’ (JISA Softech, 2025) <https://www.jisasoftech.com/rbis-cybersecurity-mandates-2025-securing-indias-digital-banks/> accessed 13 February 2026.
[29] Taxmann, ‘Technology Risk in Banking — RBI Guidelines and Fraud Management’ (Taxmann, 2025) <https://www.taxmann.com/post/blog/technology-risk-in-banking> accessed 14 February 2026.
[30] PwC India, ‘RBI’s DBU Guidelines: Highlights, Implications and Next Steps’ (PwC, 2025) <https://www.pwc.in/assets/pdfs/consulting/financial-services/fintech/publications/rbis-dbu-guidelines-highlights-implications-and-next-steps.pdf> accessed 14 February 2026.
[31] Drishti IAS, ‘Digital Banks’ (Drishti IAS, 2025) <https://www.drishtiias.com/summary-of-important-reports/digital-banks-1> accessed 14 February 2026.
[32] Bajaj Finserv, ‘The Latest RBI Guideline to Make Digital Transactions Safe’ (Bajaj Finserv, 2025) <https://www.bajajfinserv.in/latest-rbi-guideline-to-make-digital-transactions-safe> accessed 14 February 2026.
[33] National Institute of Bank Management, Licensing Digital Banks & Proposing a Regulatory Regime for Them in India (NIBM, 2025) <https://www.nibmindia.org/working-papers/licensing-digital-banks-proposing-a-regulatory-regime-for-them-in-india/> accessed 14 February 2026.
[34] Reserve Bank of India, RBI/2025-26/36 (RBI, 2025) <https://www.pdicai.org/Docs/RBI-2025-26-36_125202512145948.pdf> accessed 14 February 2026.
[35] Bhatt & Joshi Associates, ‘RBI Digital Banking Framework 2025: Legal and Compliance Impact on Indian Banks’ (Bhatt & Joshi Associates, 2025) <https://bhattandjoshiassociates.com/rbi-digital-banking-framework-2025-legal-and-compliance-impact-on-indian-banks/> accessed 14 February 2026.
[36] Taxtmi, ‘Digital Banking Channels Authorisation (Directions), 2025’ (Taxtmi, 2025) <https://www.taxtmi.com/news?id=50108> accessed 14 February 2026.
[37] Indian Bank, ‘Digital Banking Unit: Shaping the Financial Future of India’ (Indian Bank, 2025) <https://www.indianbank.in/blogs/digital-banking-unit-shaping-the-financial-future-of-india/> accessed 14 February 2026.
[38] Profinch, ‘Revolutionizing Indian Banking Ecosystem with RBI’s Mandate on Digital Banking Unit (DBU)’ (Profinch, 2025) <https://www.profinch.com/revolutionizing-indian-banking-ecosystem-with-rbis-mandate-on-digital-banking-unit-dbu/> accessed 14 February 2026.
[39] Yes Bank, ‘About Digital Banking Unit (DBU)’ (Yes Bank, 2025) <https://www.yesbank.in/digital-banking/dbu> accessed 14 February 2026.
[40] Institute of Company Secretaries of India, ‘Info Capsule 09 October 2025’ (ICSI, 2025) <https://www.icsi.edu/media/webmodules/infocapsule/Info_Capsule_09102025.pdf> accessed 14 February 2026.
[41] ‘NITI Aayog CEO Says Regulations Must Not Stifle Fintech Innovation’ (The Economic Times, 2025) <https://economictimes.com/news/economy/policy/niti-aayog-ceo-says-regulations-must-not-stifle-fintech-innovation/articleshow/124361263.cms> accessed 14 February 2026.
[42] ‘NITI Aayog CEO Says Regulations Must Not Stifle Fintech Innovation’ (The Economic Times, 2025) <https://economictimes.com/news/economy/policy/niti-aayog-ceo-says-regulations-must-not-stifle-fintech-innovation/articleshow/124361263.cms> accessed 14 February 2026.
[43] Press Information Bureau, ‘NITI Aayog Unveils Groundbreaking Roadmap on AI for India’ (PIB, 2025) <https://www.pib.gov.in/PressReleasePage.aspx?PRID=2176362> accessed 14 February 2026.
[44] NITI Aayog, ‘A Proposal for Licensing & Regulatory Regime for India’ (NITI Aayog, 2025) <https://www.niti.gov.in/node/704> accessed 14 February 2026.
[45] PureSoftware, ‘Digital Banking Trends in India 2025’ (PureSoftware, 2025) <https://www.puresoftware.com/blog/digital-banking-trends-in-india-2025> accessed 14 February 2026.
[46] Moneylife, ‘RBI’s Comprehensive Digital Banking Overhaul: Expanded Regulations, Enhanced Resilience and Consumer Protection’ (Moneylife, 2025) <https://mas360.moneylife.in/article/rbi-s-comprehensive-digital-banking-overhaul-expanded-regulations-enhanced-resilience-and-consumer-protection/4790.html> accessed 14 February 2026.
[47] Institute for Development and Research in Banking Technology, Organisational Structure for IT in the Indian Banking Sector (IDRBT, July 2022) <https://www.idrbt.ac.in/wp-content/uploads/2022/07/IT-Governance-Framework-MVS_organizational-Structure.pdf> accessed 14 February 2026.
[48] Amity Institute of Training and Development, ‘Digital Banking Trends in 2025: An Overview’ (AITD Amity, 2025) <https://aitd.amity.edu/blog/digital-banking-trends-in-an-overview/> accessed 14 February 2026.
[49] KS Babu and R Narayan, ‘A Non-Parametric Index of Corporate Governance in the Indian Banking Sector’ (2019) 67 Socio-Economic Planning Sciences <https://www.sciencedirect.com/science/article/abs/pii/S0038012118302258> accessed 14 February 2026.
