Call Us Now

+91 9606900005 / 04

For Enquiry

legacyiasacademy@gmail.com

Tokenisation For Credit and Debit Card Transactions

Context:

Recently, the Reserve Bank of India’s card-on-file (CoF) tokenisation norms have kicked in, which aim at improved safety and security of card transactions.

Relevance:

GS-III: Indian Economy (Growth and Development of Indian Economy, Mobilization of Resources, Financial Inclusion, Banking Sector)

Dimensions of the Article:

  1. What is Tokenisation and what are RBI’s guidelines?
  2. How will tokenisation work?
  3. Who can offer tokenisation services?
  4. What do customers gain from tokenisation?

What is Tokenisation and what are RBI’s guidelines?

  • Tokenisation means replacement of actual card details with an alternate code dubbed as “token”.
  • The token will be unique for a combination of card, token requestor and device.
  • This token us used to do card transactions in contactless mode at point-of-sale terminals, code payments and quick response.
  • A tokenised card transaction is considered safer as the actual card details are not shared with the merchant during transaction processing.
  • Customers who do not have the tokenisation facility will have to key in their name, 16-digit card number, expiry date and CVV each time they order something online.
  • RBI had issued new guidelines in September 2021. Under the guidelines, merchants will not be able to store customers’ card data in their servers.
  • It prohibited merchants from storing customer card details as well as mandated for the adoption of card-on-file (CoF) tokenisation as an alternative to card storage.
Card-on-File (CoF)
  • In CoF transaction, cardholder authorises a merchant to store his/her Mastercard or Visa payment details. The cardholder then authorises same merchant to bill the stored Mastercard or Visa account.
  • E-commerce companies and airlines and supermarket chains normally store card details in their system.

How will tokenisation work?

  • A debit or credit card holder can get the card tokenised by initiating a request on the app provided by the token requester.
  • The token requester will forward the request to the card network which, with the consent of the card issuer, will issue a token corresponding to the combination of the card, the token requester, and the device.
  • The customer will not be charged for availing the tokenisation service.
  • Earlier, the facility for card tokenisation was available only for mobile phones and tablets of interested card holders.
  • Subsequently, with an uptick in tokenisation volume, the RBI decided to extend the scope of tokenisation to include consumer devices – laptops, desktops, wearables (wrist watches, bands, etc.) and Internet of Things (IoT) devices.

Who can offer tokenisation services?

  • Tokenisation can be performed only by the authorised card network and recovery of original Primary Account Number (PAN) should be feasible for the authorised card network only.
  • Adequate safeguards have to be put in place to ensure that PAN cannot be found out from the token and vice versa, by anyone except the card network.
  • RBI has emphasised that the integrity of the token generation process has to be ensured at all times.

What do customers gain from tokenisation?

  • A tokenised card transaction is considered safer as the actual card details are not shared with the merchant during transaction processing.
    • Actual card data, token and other relevant details are stored in a secure mode by the authorised card networks.
  • The token requestor cannot store Primary Account Number (PAN), or any other card details.
  • Card networks are also mandated to get the token requester certified for safety and security that conform to international best practices/globally accepted standards.

-Source: Indian Express

Recent Posts
April 2024
MTWTFSS
1234567
891011121314
15161718192021
22232425262728
2930 
Categories
Tags
Biodiversity Budget Disaster management Diseases Economic Development Economic Survey Education GS-1 Art and Culture GS-1 Geography GS-1 History GS-1 Indian Society GS-2 Agriculture GS-2 Bilateral GS-2 Environment and Ecology GS-2 Executive and judiciary GS-2 Geography GS-2 Governance GS-2 Health GS-2 Indian Constitution GS-2 Indian Economy GS-2 International Relations GS-2 Polity and Constitution GS-2 Social Justice GS-2 Welfare Schemes GS-3 Agriculture GS-3 Disaster Management GS-3 Environment and Ecology GS-3 Food Processing GS-3 Growth and Development GS-3 Indian Economy GS-3 Industry and Infrastructure GS-3 Internal Security GS-3 Science and Technology GS2 GS 3 International Relations History Optional Strategy Indian economy International Institutions Motivation PIB Preparation Strategy for History Optional Sociology Optional Strategy Space Technology Welfare Schemes Women Empowerment
Enquire Now

About

Legacy IAS Academy (LIA) is a well-known name for IAS Preparation in Bangalore. LIA is a group of experienced faculties, which included retired IAS/IPS/IRS officers, Academics, and extraordinary tutors from trusted Institutes in India.

Newsletter

Stay updated with our latest analysis on Daily Current affairs from the Hindu, Indian Express and other leading newspapers along with our PIB and Editorial Summaries.
Register now and be a part of the clan to not miss even a single update on getting one step closer to your dreams!

    Facebook Twitter Youtube Instagram Telegram

    Contact us

    Legacy IAS Academy – Drive Location 

    Address: #1535, 39th Cross Rd, Kottapalya, 4th T Block East, Jayanagara 9th Block, Jayanagar, Bengaluru, Karnataka 560041

    Phone: +91 9606900005 /04

    Email:  legacyiasacademy@gmail.com

                  info@legacyias.com

    Legacy IAS Academy © 2019-2024 All Rights Reserved.