BankingRules – RBI Tightens Digital Banking Norms Against Manipulative Designs

BankingRules –  India’s banking regulator has introduced a major set of consumer-focused measures aimed at improving transparency across digital banking platforms. Through the Reserve Bank of India (Commercial Banks – Responsible Business Conduct) Second Amendment Directions, 2026, announced on June 15, the central bank has identified and prohibited several online practices that can influence customers into making decisions they never intended to make.

The new framework will take effect from January 1, 2027, requiring banks and Direct Selling Agents (DSAs) to review their websites, mobile applications, and digital services to ensure compliance.

RBI Defines Unfair Digital Manipulation

In its notification, the RBI formally described “dark patterns” as deceptive design techniques used within digital interfaces that interfere with a consumer’s ability to make informed and independent choices. According to the regulator, such practices can mislead users, compromise decision-making, and potentially violate consumer rights.

To address these concerns, the RBI has outlined 11 categories of prohibited practices, many of which have become common across online financial services.

Pressure Tactics and Artificial Deadlines

One of the prohibited methods involves creating a false sense of urgency. Banking customers frequently encounter messages suggesting that a loan offer or special interest rate will expire within a short period. The RBI has stated that banks should not use countdown timers, urgency-driven messages, or promotional language designed to rush consumers into financial commitments without adequate consideration.

The regulator believes financial decisions should be made carefully and not under manufactured time pressure.

Hidden Add-Ons and Preselected Services

Another area of concern involves additional products being included without explicit customer approval. Examples include insurance policies or fraud protection services automatically selected during loan or account applications.

Under the new directions, banks must obtain clear consent before adding any extra service that affects the final cost or terms of a transaction.

Ending Guilt-Based Marketing Messages

The RBI has also targeted communication techniques that attempt to shame or pressure customers into accepting offers. These practices often appear when users decline marketing emails, premium account upgrades, or optional protection services.

Instead of using emotionally loaded wording that implies a customer is making a poor decision, banks will now be required to present choices in straightforward and neutral language.

Restrictions on Forced Navigation

Many banking app users have experienced promotional pop-ups that redirect them to product pages even when they attempt to close the advertisement. Such practices now fall under prohibited conduct.

The RBI has clarified that customers should not be compelled to view, purchase, or sign up for unrelated products in order to access the service they originally intended to use. Similarly, unnecessary requests for personal data or device permissions will face closer scrutiny.

Simpler Cancellation Processes Required

The regulator has also addressed situations where customers can easily subscribe to financial products but face difficulties when attempting to cancel them.

Whether it involves a credit card, insurance policy, or another banking service, institutions must ensure that cancellation procedures are clear, accessible, and reasonably simple. Complicated navigation paths and excessive confirmation steps designed to discourage cancellation will not be allowed.

Greater Transparency in Pricing and Promotions

Several prohibited practices focus on pricing disclosures. The RBI has warned against advertising attractive loan rates, cashback offers, or lifetime-free credit cards without fully explaining conditions, fees, or eligibility requirements.

Processing charges and other costs must be disclosed upfront rather than appearing late in the application process. Customers should be able to understand the complete financial implications before making a commitment.

Fair Design Standards for Banking Platforms

The directions also address interface design choices that subtly influence user behaviour. Examples include prominently displaying options favourable to the bank while making alternative choices less visible.

Banks must avoid design techniques that steer users toward specific outcomes through visual manipulation, confusing wording, or default consent settings. Information related to account closure, privacy controls, and personal data management must remain easy to locate.

Stronger Oversight and Customer Remedies

To ensure compliance, banks will be required to conduct periodic reviews of their digital platforms and remove prohibited practices. The RBI has also stated that institutions must follow existing consumer protection guidelines issued by the Central Consumer Protection Authority.

Customers who believe a bank continues to engage in these practices after January 1, 2027, can first approach the bank’s grievance redressal mechanism. If the issue remains unresolved, complaints may be escalated through the RBI Ombudsman system.

The regulator has further clarified that the published list is illustrative rather than exhaustive, allowing additional unfair practices to be addressed as digital banking continues to evolve.