The Reserve Bank of India has imposed monetary penalties on five major Indian banks — ICICI Bank, Axis Bank, Bank of Baroda, Bank of Maharashtra, and IDBI Bank — for deficiencies in regulatory compliance. The fines, announced on Friday, reflect lapses across various domains including cybersecurity, customer billing, KYC norms, and interest rate policies.
ICICI Bank Fined ₹97.80 Lakh for Cybersecurity and Billing Lapses
Among the five banks penalized, ICICI Bank received the highest fine of ₹97.80 lakh. According to the Reserve Bank of India (RBI), the private lender failed to report a cybersecurity incident within the prescribed timeline, thereby violating RBI’s cyber incident reporting norms.
Additionally, ICICI was found to have not implemented robust alert-generation software for specific categories of accounts, potentially exposing customers to undetected risks. In another serious lapse, the bank was found to have levied late payment fees on credit card holders who had not received their monthly statements or bills, thus violating customer protection guidelines.
Axis Bank, Bank of Baroda, and Bank of Maharashtra Also Face Action
Axis Bank has been directed to pay a penalty of ₹29.60 lakh for routing unauthorised or unrelated transactions through certain internal or office accounts, a breach of standard banking practices and regulatory norms. Such discrepancies could result in opaque accounting and raise risks of internal misuse.
Bank of Baroda, one of the country’s leading public sector banks, was fined ₹61.40 lakh for two key violations. Firstly, the bank failed to ensure that staff engaged in insurance distribution services were not incentivized with non-cash benefits from insurers, a violation of corporate agency norms. Secondly, the bank did not credit interest in inoperative, dormant, or frozen savings accounts as required, impacting dormant account holders.
Meanwhile, Bank of Maharashtra was fined ₹31.80 lakh for failing to comply with regulatory requirements related to deposit accounts opened using Aadhaar-based OTP e-KYC in non-face-to-face onboarding. The RBI mandates strict due diligence for such digital account openings to mitigate risks of fraud and misidentification.
IDBI Bank Penalised for Charging Excess Interest on Kisan Credit Card Accounts
IDBI Bank, a public sector lender, has also been penalized with a fine of ₹31.80 lakh. The RBI found that the bank had charged interest exceeding the applicable rate on certain Kisan Credit Card (KCC) accounts, thereby burdening farmers and violating priority sector lending norms designed to protect agricultural borrowers.
RBI Clarifies Intent: Penalties Based on Compliance Gaps, Not Customer Disputes
In its official statement, the RBI clarified that these penalties are based solely on deficiencies in regulatory compliance, and are not a verdict on the legality or validity of transactions or agreements between the banks and their customers. The move underscores the regulator’s firm stance on ensuring that both public and private sector banks strictly adhere to operational, procedural, and customer service standards.
This wave of penalties sends a strong signal to India’s banking sector that non-compliance with core regulatory frameworks — especially in areas like cybersecurity, KYC, interest rate application, and fair customer treatment — will not be tolerated.
