Bankpulse
BanksHomeSearchLatestCo-pilotRankingsCrosswalkHistoryWithdrawnDashboardsRBI UniverseMethodologyGlossaryCircularsAskAnswersChangelogReviewsAbout
HomeCirculars › RBI/2025-26/161

Payments Banks KYC Amendment: CKYCR Responsibility Clarified

Live · in forceNo withdrawal recorded as of 20 Jun 2026. Reviewed by Vikram Jain; always verify against the official RBI source below.
Issued by RBI: 29 Dec 2025  ·  Decoded by BankPulse: 19 Jun 2026, 02:02 IST
⏱ ~2 min read
📄 Official RBI source ↗
Quick answerRBI clarifies that the payments bank which last uploaded or updated a customer's KYC records in CKYCR is responsible for verifying identity/address. Other banks downloading those records need not re-verify, but remain liable for all other CDD aspects.

What changed

RBI inserted an Explanation in paragraph 65 of the Payments Banks KYC Directions, 2025. It specifies that the entity which last uploaded or updated KYC records in CKYCR bears the responsibility for verifying the customer's identity and/or address. Banks downloading and relying on such current and compliant records are exempt from re-verifying identity/address, but must still handle all other CDD procedures.

What it means for you

This amendment reduces duplication of KYC verification for payments banks when they rely on CKYCR records, lowering operational costs and onboarding time. However, the downloading bank retains full responsibility for all other CDD aspects, so due diligence on record currency and compliance is critical. It aligns with the government's September 2025 office memorandum on CKYCR responsibility.

What you must do

Who it affects

Payments banks, Other banks using CKYCR for customer KYC, Compliance and AML teams, CKYCR system administrators

Does this amendment apply to all banks or only payments banks?

The amendment is specifically to the Payments Banks KYC Directions, 2025, so it directly applies to payments banks. However, the principle may influence broader KYC practices for other regulated entities.

What happens if the CKYCR records are not current or compliant?

The downloading bank must not rely on such records for exemption from re-verification. It remains responsible for all CDD procedures, including identity/address verification, if records are outdated or non-compliant.

Who is liable if a customer's identity is later found to be fraudulent?

The bank that last uploaded or updated the KYC records in CKYCR is responsible for verifying identity/address. The downloading bank is not required to re-verify, but must ensure records are current and compliant.

Track this rule
⏳ How this rule evolved — History Map →Full RBI rulebook crosswalk →
AI-drafted · 3-model AI consensus fact-check · under the editorial review of Vikram Jain · decoded & published by BankPulse · 19 Jun 2026, 02:02 IST
Official RBI source: https://www.rbi.org.in/Scripts/NotificationUser.aspx?Id=13237&Mode=0 — Plain-English summary by BankPulse (bankpulse.ai), reviewed by Vikram Jain. Independent platform, not affiliated with the Reserve Bank of India; never reproduces RBI text verbatim.