Safe Digital Banking Practices
- Never share your account details such as account number, login ID, password, PIN, UPI-PIN, OTP, ATM/Debit card/credit card details with anyone, not even with bank officials, however genuine they might sound.
- Any phone call/email threatening the blocking of your account on the pretext of non-updation of KYC and suggestion to click the link for updating the same is a common modus operandi of fraudsters. Do not respond to offers for getting KYC updated/expedited. Always access the official website of your bank / NBFC/e-wallet provider or contact the branch.
- Do not download any unknown app on your phone/device. The app may access your confidential data secretly.
- Transactions involving receipt of money do not require scanning barcodes/QR codes or entering MPIN. Thus, exercise caution if asked to do so.
- Always access the official website of the bank/NBFC/e-wallet provider for contact details. Contact numbers on internet search engines may be fraudulent.
- Check URLs and domain names received in emails/SMSs for spelling errors. Use only verified, secured, and trusted websites/apps for online banking, that is, websites starting with "https". In case of suspicion, notify the local police/cyber crime branch immediately.
- If you receive an OTP for debiting your account for a transaction not initiated by you, inform your bank/e-wallet provider immediately. If you receive a debit SMS for a transaction not done, inform your bank/e-wallet provider immediately and block all modes of debit, including UPI. If you suspect any fraudulent activity in your account, check for any addition to the beneficiary list enabled for internet / mobile banking.
- Do not share the password of your email linked to your bank/e-wallet account. Do not have common passwords for e-commerce / social media sites and your bank account/email linked to your bank account. Avoid banking through public, open, or free networks.
- Do not set your email password as the word "password" while registering in any website/application with your email as a user-id. The password used for accessing your email, especially if linked with your account, should be unique and used only for email access and not for accessing any other website/application.
- Do not be misled by advice intimating deposit of money on your behalf with RBI for foreign remittances, receipt of commission, or wins of a lottery.
- Regularly check your email and phone messages for alerts from your financial service provider. Report any unauthorized transaction observed to your bank/NBFC/Service provider immediately for blocking the card/account/ wallet, so as to prevent any further losses.
- Secure your cards and set daily limits for transactions. You may also set limits and activate/deactivate for domestic/international use. This can limit the loss due to fraud.