RBI’s Revised Master Directions on Fraud Risk Management for Cooperative Banks


July 23, 2024
RBI’s Revised Master Directions on Fraud Risk Management for Cooperative Banks
Listen to this article

Table of Contents

The Reserve Bank of India (RBI) is vital in protecting the Indian financial structure. As a part of measures to strengthen the UCBs (Urban Cooperative Banks), StCBs (State Cooperative Banks), and CCBs (Central Cooperative Banks) against fraud, the RBI released Master Directions on Fraud Risk Management in July 2024 with enhanced features.

Understanding the master directions

Building a Strong Governance Framework 

The foundation of the directions is built upon the creation of a policy on the management of fraud risk adopted by the Board. This policy acts as a roadmap, outlining clear roles and responsibilities for the following:: 

  • The Board: However, at the setup of the bank, the Board holds overall responsibility of providing oversight of fraud risk in the entity. This policy should give details on their mandate for the approval and supervision of the bank’s fraud risk management framework. 

  • Board Committees: The policy may also designate certain responsibilities to certain parts of the Board such as the Audit Committee to monitor the implementation and efficiency of the fraud risk management practices. 

  • Senior Management: This explains why the execution of the fraud risk management framework depends on senior management. The policy should state the responsibilities regarding activities such as recognizing and reporting suspicious conduct, investigations, and prevention of fraud. 

Ensuring Fairness and Transparency

Another element that should be included in the policy is the procedure for identification of the fraudulent account, non-discriminatory and clear. This includes: 

Issuing Notices: The bank should give show cause notice to all the parties that they suspect fraud and should give the party involved the chance to explain the scenario or defend him/herself. 

Considering Responses: The decision on the account may have to wait, given that the bank receives several responses before making the final move about the account is fraudulent. 

Early Warning Systems: Ex Ante Prevention of Fraud 

The directions underscore the need for risk assessment and screening, which is in concordance with the earlier guidelines. Particular UCBs and StCBs/CCBs depending on deposit measurement are supposed to introduce an Early Warning Signals (EWS) framework. This framework acts as a vigilant guard, continuously monitoring the following for suspicious activities: 

Credit Facilities: The EWS should also focus on credit facilities and keep track of any activity, including; If there is a rise in credit facility applications or people who fail to honor their repayments. 

Loan Accounts: It is recommended to maintain constant supervision of the loan accounts to prevent such signs, such as mismatch in the given loan details, improper usage of the loan amount, or changes in the identity of the borrower. 

Other Banking Transactions: The EWS should also be set to sound an alert when other banking activities that may be considered abnormal are being carried out, for example, cash withdrawal or transfer, to unknown people. 

Identifying and Investigating Fraudulent Activities: AlRTs: Red Flags & Procedural Contingencies 

The directions contain a list of signs provided to the banks with a note that banks should be wary of these signs. These indicators can be categorized as follows:

Red Flags in Account Behavior: If there are large variations and fluctuations in account activity or any activities that do not fall into the customer’s typical behavior, then it can be an indication of possible fraud. 

Red Flags in Loan Applications: Arithmetical irregularities or disparity between the reported earnings or excessive and unreasonable ‘securities’ against the loan advanced or the borrower has a bad record of repayment could be the signs of fictitious loan requests. 

Red Flags in Documentation: Raising suspicion should be any inconsistencies that are documented or forged and or any loan papers that are subjected to suspicious alterations.

The legal framework also underlines the necessity to conduct detailed scrutiny as soon as fraud intentions or activities are spotted. This may involve: 

Internal Audits: They can look at suspicious activities and even delineate areas that have the potential of having internal control issues within the bank. 

External Forensic Audits: In complex structures, banks may take the services of external forensic auditors with a deep understanding of the anticipated fraud. 

Collaboration with Law Enforcement Agencies: When it comes to criminality, cooperation with police authorities is necessary for the arrest of offenders and the recovery of stolen money. 

The directions also underscore the need to promote responsibility among the staff when implementing the steps. All individuals who work with the organization’s data or manage financial matters must be taught how to recognize and report fraud. 

Following principles of natural justice 

The newer directions stress the need to follow the principles of natural justice while qualifying an account as fraudulent. This helps in the fair determination of outcomes and relates to the protection of the rights of the litigants. 

Prompt Reporting: Several authorities need to be informed for instance; 

The modification in the specific directions also emphasizes prompt and clear reporting. 

Reporting to Law Enforcement Agencies (LEAs): Incidentally, in a fraud incident, Cooperative Banks are required to immediately inform the Law Enforcement Agencies like the Police from the State. This enables the authorities to conduct the probe and apprehend the culprits of the crime. 

Reporting to Reserve Bank of India (RBI): These directions provided a clear report submitting the framework of the RBI. UCBS must inform the fraud incidents through the electronically completed Fraud Monitoring Returns (FMRs). The FMR filing mandates specific timeframes for reporting and specifies the type of information to be included, such as: 

  • The particulars of the fraud and its monetary worth.  
  • Date of fraud or suspected fraud. 
  • The account holder and all the beneficiaries will also be captured in the details of the parties involved. 
  • The ways the fraud was carried out Such issues include: 
  • The measures that the bank has employed to carry out an investigation into the fraud and manage to recover losses.

Additional Measures for Enhanced Security

Instead of simply pointing out and notifying the organization of fraud, the directions extend to that. Here are some additional security measures mandated by the RBI:

Legal Audits of Title Documents: There are preconditions before obtaining the loan accounts: legal audits of title documents especially for large value accounts. This helps in preventing fake documents as clients provide genuine documents which are in most cases used in securing credit. 

Critical Analysis 

The RBI’s directions for the Cooperative Banks have been revised and they contain bite against frauds. There is a clear delegation of duties among the Board, committees, and management when the Board and committees hold a brief and everybody is ready to act. Early Warning Systems (EWS) enable certain designated banks in the prevention of suspicious activities. Moreover, the elaborated red flags and investigative steps enable banks to respond efficiently to the fraud risk factors within their organizations. Despite that, there is still tolerance for improvement. It is more useful to use EWS for all the Cooperative Banks rather than selective ones to have a coherent safety net. Although the current approach addresses the traditional fraud issue effectively, integrating procedures describing cybersecurity threats would provide adaptability to the framework. Last but not least, collective public awareness programs could help enlist the customers into a stronger force against the exploitation of the financial system. In sum, the RBI directions that are being talked about are well-timed. They can do so by properly implementing the said framework, consistently improving it, and raising the public’s awareness about it to enhance the defense of cooperative banks against fraud. Thus, as a concluding part, it is worth once again highlighting the increased importance of cooperation not only between banks but also with the police and the RBI to counter continuous changes in mules’ behavior and maintain a high level of security for clients and financial institutions. 

Looking Ahead 

Following the directions provided by the RBI is time-appropriate and logically sequenced. Strong implementation by the Cooperative Bank and arguably minor modifications of the framework, and updating, combined with awareness campaigns among the public will be important for countering the new form of fraud attempts in the financial sphere. 

Conclusion

The Master Directions on Fraud Risk Management issued by RBI which earlier guided to initiate the steps towards strengthening the anti-fraud defense in Cooperative Banks have now been updated to be fully protective of cooperative banks against fraud. These directions provide better control over the situation by setting up a robust governance system and increasing the efficiency of Early Warning Systems as well as mandatory reporting enabling the banks to prevent frauds more actively. But it is also pertinent here to note that these measures will depend on a cooperative effort to be made by the nationalized banks on one hand, police departments, and the RBI on the other. This way, they can ensure the safety of the banking system for all the participants effectively targeting their goals. 

RBI’s changed directions are going to be far more helpful and effective for enhancing the fraud risk management of Cooperative Banks. Here's a breakdown of the strengths and areas for potential improvement: 

Strengths

Clear Roles and Responsibilities: The policy requires that Board-endoraged framework with a clear line of efficiency and/or oversights with the Board, committees, and senior management. 

Early Warning Systems: Thus, the specific identification of the banks in question leads to the EWS requirement which can help prevent or at least identify fraudulent activities on time. 

Detailed Red Flags and Procedures: The availability of a list of red flags and investigation procedures gives the banks adequate standards when it comes to suspicious activities. 

Staff Accountability: Concentration on staff’s education and sensitization to potential risks and reporting also enhances the first-line defense. 

Transparent Reporting: Reporting to LEAs and the RBI helps the latter to take immediate action. 

Areas for Improvement

Scope of EWS Implementation: Phasing the financial inclusion of all Cooperative Banks based on the deposits can offer better coverage. 

Cybersecurity Measures: The attention to conventional types of fraud could be further elaborated on and provide recommendations for fighting cyber threats and online fraud attempts. 

Consumer Awareness: Efforts that make people aware of the prevalent fraud schemes and how to inform the authorities could deepen the general protection plan.

Written By:
Vidhikarya

Vidhikarya


Recommended Free Legal Advices
question markBanking 3 Response(s)
Dear Sir, You can file a suit since it is a pure contract between you and the banks. If those are govt. banks you can approach the High Court. Make the issue very big and fight. You will succeed.
question markProperty related issue - property management through a stamped agreement 3 Response(s)
1. Mr. B can file a case of fraud against Mr. A 2. Mr C. can fight the case in court to seek his right of tenancy once the payment has been made but there is a caveat that since the agreement itself is not valid so it depends on the court to resolve this. 3. No 4. Depends on the case that is going on
question markDELAY IN CREDITING PENSION IN RESPECT OF DEFENCE PENSIONERS 2 Response(s)
Plz provide copies of documents. Plz also contact through Vidhikarya. This is Adv JS Pawar ex army
question markRBI Guidlines for Frozen Account 4 Response(s)
Hi, You have not mentioned whether a order for freezing the bank account was passed by the judge or the magistrate, therefore it cannot be commented upon whether the account is an frozen account or not. You will have to provide with more details concerning the same. The bank can renew the original fixed deposit with the consent or without the consent of the customer, but the amount will not be given to the customer until further direction/order is issued by the magistrate/judge. If you like my answer, please rate me.
question markCryptocurrency Usdt P2P fraud inside Legit Exchange BYBIT 2 Response(s)
Dear Client, Incidentally, P2P cryptocurrency/asset trading is neither illegal nor regulated by any specific legislation yet in India. The National Cyber Crime Reporting Portal(NCCRP) is an initiative of the Government of India to facilitate victims/complainants to report cybercrime including cryptocurrency scams or complaints online. However, when one is a victim of scams and frauds while trading in cryptocurrency, is advised that when any suspicious activity is detected in a trader’s exchange wallet, they should contact the customer service of that exchange, and voice their concern with the representatives as a precautionary measure to seek justice in India. So, once a cyber crime involving cryptocurrency trading is reported online to NCCRP, on the instruction of Cyber Crime Cell, the victim's Bank account is frozen/inoperative putting a lien on the account by the Bank and you have to wait for the completion of the investigation of the scam by the investigating agency. The length of time it takes to investigate a cybercrime can vary greatly depending on the complexity of the case, the resources available to the investigating agency, and the cooperation of the victim. you may visit the cyber crime cell of the Police for further clarifications and necessary guidance in the matter and extend your cooperation to get yourself free from cyber scams. Section 457 of the CrPC empowers a Magistrate to use their discretion to order the conditional release of the amount frozen under cyber scam. In this situation, the police seek an indemnity bond from the victim who needs to declare that he/she will pay 1. 5 times the refunded amount to the bank in case his/her claim is false or if other claims are made on the amount. Further, if you are sure about the deficiency in service on the part of the Bank that caused financial loss, you can file a complaint against the Bank before the Dist. Consumer Forum claiming refund of money lost owing to deficiency in service of the bank and compensation for harassment. The complaint should be filed within two years of the date of cause of action.