logotype
RBI Payment Aggregators & Gateway Audit
Home RBI Payment Aggregators & Gateway Audit

Overview

The Reserve Bank of India has circulated new guidelines on 17th March 2020 related to the Regulation of Payment Aggregators and Payment Gateways. These guidelines mandate the Payment Aggregators and Payment Gateways to get authorization from RBI, by obtaining the settlement of payment to the merchant at fixed transaction time. The guidelines are the detailed technical and operational for Payment Aggregators and Payment Gateways that includes merchant onboarding, customer data access, audit obligations, and data sovereignty. Through these guidelines, RBI decided to regulate the activities of payment aggregators and assist them by providing baseline technology related to payment gateways.

What is RBI Payment Aggregators & Payment Gateway Audit?

In March 2020, all the existing non-banks Payment Aggregators are required to take the authorization from RBI before 30th June 2021. From now, the Payment Aggregators and Payment Gateways will be regulated by RBI to ensure the safety of all the online transactions.

The Key aspects that RBI is going to include in their guidelines are described below.

  • Non-Banks Payment Aggregators will have the minimum net worth of Rs 15 Crore which also varies up to INR 25 crore by the end of the financial year.
  • The Payment Aggregators required baseline technology, which includes the implementation of Data Security standards, Cybersecurity audits, incident reporting, and framing IT policies.
  • Payment Aggregators have clear policies while on-boarding the merchant, privacy policy, Customer Grievances, etc. and followed the provisions set by Prevention of Money Laundering ACT 2002.
  • E-commerce organization with a Payment Aggregators business, need to take the authorized license and have to segregate Payment Aggregators into the separate entity.
  • A non-bank Payment Aggregators have to be a complete company incorporated under the Act of the organization with the PA activity forming a party.
  • In case of any takeover or acquisition of control or any change in upper management of non-bank Payment, Aggregators have to communicate with the Chief General Manager of RBI within 15 days of the change.
  • The RBI also gives the format of authorization which includes net-worth certificate director's undertaking, auditor certificate while maintaining the balance on an escrow account, and a format for storing the data of transaction handled by Payment Aggregators every month.

What We Deliver ?

It’s an important practice that gives organizations visibility into real-world threats to your security. As part of a routine security check, penetration tests allow you to find the gaps in your security before a hacker does by exploiting vulnerabilities and providing steps for remediation.

search-concept-illustration_114360-95

Digital Report

Our experts will furnish an itemized security evaluation report with legitimate remediation steps to be taken. Distinguish Security Weaknesses inside your Digital Asset permitting you to proactively remediate any issues that emerge and improve your security act.

businessman-make-money-growth-business-success-financial-investment-and-return-on-investment-roi-concept-free-vector

Vulnerability Data

Constantly updating Vulnerability Information to stay in touch with the emerging threat landscape. Receive overview and trend data of all of the current security issues you face in your organisation. All viewable on an Digital Report.

d54f85cf7eb853cd9636beb1f0853303

Skilled Consultants

We also assured you that your assessments are executed by Qualified Experts. Our group of security specialists holds industry capabilities, for example, CHECK Team Member and Team Leader, CEH, ECSA, OSCP, CISA, CISSP, and many more.

Trusted by International Brand

33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
52 (1)
51 (1)
53
54
55 (1)
1 (1)
2 (1)
10
8
9
6
11

Leave us massage

How May We Help You!