ENTERSLICE PRIVATE LIMITED Logo

NBFC Account Aggregator Compliances

The Reserve Bank of India in 2016 had issued Directions on Registration and Operations of NBFC - Account Aggregators (AA) under section 45-IA of the RBI Act, 1934. Hence every NBFC undertaking the business of AA must comply with these directions. We at Enterslice have professionals who are expert in providing con..

100000 + Happy Customer

100000 +

Happy Customers

500 + CAs, CS & Lawyers

500 +

CAs, CS & Lawyers

50 + Offices Globally

50 +

Offices Globally

Rated at 4.9 By 30000 + Customers Globally

Google Reviews

21,789+ Global Rating by Happy Customers4.8/5 | 21,789+ Global Rating by Happy Customers

REQUEST A CALL BACK

Rated at 4.8 Rated at 4.8/5 21,789+ Happy Reviews

A Brief Overview of NBFC Account Aggregator Compliances

The concept of account aggregator was conceptualised by the Reserve Bank, and in furtherance of which a framework for the registration & operation of Account Aggregator in India was notified by the RBI. Account aggregators have a slew of compliances that they need to meet in order to operate smoothly. NBFC Account aggregator compliances range from ensuring data security to having a board approved policy, among others.

Who are Account Aggregators and what do they do?

An account aggregator is regulated by the Reserve Bank of India that helps a person to access and share information securely and digitally from one financial institution they have an account with to other regulated financial institution in the Account Aggregator network. One of the things to note here is that the data cannot be shared without the consent of the individual. There would be various Account Aggregators an individual can choose from. With the onset of Account aggregators, it replaces the terms and conditions form of ‘blank cheque’ acceptance with a step-by-step permission and control for each use of an individuals’ data.

NBFC

Empowering Financial Access with Digital Lending

In today's fast-paced world, digital lending provides financial convenience, speed, and accessibility to borrowers. In this presentation, we are exploring the benefits, challenges, and the future of digital lending

Download PDF

What are the various NBFC Account Aggregator Compliances?

NBFC Account Aggregator Compliances range from ensuring data security to having a board approved policy and setting up committees, among various other compliances.

Compliances after obtaining in-principle approval

The bank shall grant an in-principle approval which will be valid for 12 months, within which the company should set up a technology platform, enter into legal Paper works needed to be ready for operations and report compliance position to the bank. If the bank is satisfied that the company can commence operations now, it will grant a certificate of registration as NBFC account aggregator.

The account aggregator needs to ensure that the company maintains accounts, publishes and discloses its financial position as per the legal requirements or direction or order from the bank. Further, it should also submit or offer for inspection of its books of account or other Documents when it's demanded.

Data Security

  1. With respect to data security, the account aggregator business must be IT driven.
  2. The technology must be scalable to cover any other financial assets or financial service provider.
  3. Adequate safeguards should be put in place in its IT systems in order to ensure that it’s protected from any unauthorised access, alteration, destruction, disclosure etc.
  4. There should be appropriate measures in place for Disaster Risk Management and Business Continuity.
  5. Information system audit of the internal system and processes shall be conducted at least once every two years' time by external auditors. The external auditor's report has to be submitted to the regional office, Department of Non-Banking supervision of the bank within a month of submission of the report by the external auditor.

Board Approved Policy

  • Customer grievance

An account aggregator should have a board approved policy in order to handle/dispose customer grievance. The customer grievance should be handled/disposed of within such time, and manner as specified under its board approved policy. However, it should not take more than a month.

The account aggregator needs to display- name and contact details of the grievance redressal officer on the website and at the place(s) of the business.

  • Pricing

The Account Aggregator should also have a Board approved policy for pricing of services. Pricing of services should strictly conform to the internal guidelines adopted by the Account Aggregator, which must be transparent and available in public domain.

Corporate Governance

The account aggregator must put in place an internal mechanism to review, monitor and evaluate its controls, systems, procedures etc. the IT systems' integrity should be ensured at all times, and precautions should be taken so that the records are not destroyed, lost or tampered with.

Set up Committees

  • Audit Committee and Nomination Committee

An audit committee needs to be constituted of not less than 3 board of directors members.

A nomination committee needs to be formed of not less than 3 members of its board of directors.

  • Risk Management Committee

To control the integrated risk, Account Aggregator needs to form a Risk Management Committee. It shall consist of not less than 3 members of its Board of Directors.

The account aggregator must establish a well-Documented risk management framework which should include a sound and robust technology risk management framework, strong authentication to protect access to customer data and system, system security, reliability, resiliency etc.

Fit and Proper Criteria

An Account Aggregator is required to ensure that a policy is in place with the Board of Directors’ approval to ascertain fit and proper criteria of the directors/managing director/CEO at the time of appointment, and on a continuing basis.

Further, the account aggregator also needs to obtain a declaration and undertaking from directors/managing director/CEO providing additional information on directors/managing director/CEO.

The account aggregator should obtain a Deed of Covenant signed by the directors/managing director/CEO.  They also need to furnish to the Bank an annual statement on change of directors/ managing director/ CEO, which needs to be duly certified by Statutory Auditors that fit and proper criteria in the selection of the directors has been followed.

The account aggregator platform runs on technological platform and involves the transmission of sensitive financial data between Financial Information Providers and Financial Information Users hence the AA Platform setup in India should comply with the account aggregator compliances as specified by the RBI.

Frequently Asked Questions

When the Department of Non-Banking is satisfied with the company’s application, it shall grant In-Principle approval to set up Account Aggregator for a period of 12 months.

The AAs need to form Audit Committee, Nomination Committee and Risk Management Committee.

No company can commence or carry on a business as an Account Aggregator without obtaining a CoR.

Related Services

Annual Compliance of LLP
Annual Compliance For Private Limited
Annual Compliance of Public Limited
XBRL Filings
ECB Compliance Advisory
MCA Compliance for Insurance Company
Audit Services
Cybersecurity Due Diligence
Compliance Risk Management
NBFC Accounting
Anti Money Laundering Compliance
Global Compliance and Reporting

Our Awards Our Awards

Top 100 Companies in Asia - Red Herring
Top 100 Companies in Asia - Red Herring

Red Herring Top 100 Asia enlists outstanding entrepreneurs and promising companies. It selects the award winners from approximately 2000 privately financed companies each year in the Asia. Since 1996, Red Herring has kept tabs on these up-and-comers. Red Herring editors were among the first to recognize that companies such as Google, Facebook, Kakao, Alibaba, Twitter, Rakuten, Salesforce.com, Xiaomi and YouTube would change the way we live and work.

Top 25 in India - Consultants Review

Researchers have found out that organization using new technologies in their accounting and tax have better productivity as compared to those using the traditional methods. Complying with the recent technological trends in the accounting industry, Enterslice was formed to focus on the emerging start up companies and bring innovation in their traditional Chartered Accountants & Legal profession services, disrupt traditional Chartered Accountants practice mechanism & Lawyers.

Top 25 in India - Consultants Review

We partner with more than 100+ companies

-- Testimonials

Don't take our word for it

“Enterslice use technology better than others. That saves time and money; Team enterslice is more efficient than traditional competitors, and that helps to pass on the cost advantage to its clients. The company is building a high-level transparency in legal services by optimum use of technology and process automation in consulting. I highly recommend this company.”

Nilanjan Bandyopadhyay
Nilanjan Bandyopadhyay

“Excellent advisory role by Enterslice Team. They are a trusted partners to us. Narendra and his team helped us with our pre NBFC applications and Post NBFC advisory services.”

Amit Goel
Amit Goel

“Amazing services provided by your organization. They have completed our NBFC registration order within stipulated time period of 90 days. They provide constant guidance and support in the process. Their support in building fintech software is amazing.”

Manisha Mantri
Manisha Mantri

“I chose Enterslice to start my new Indian adventure as entrepreneur, and respect my past experience i was surprised by their professionalism. In particular, Raksha T. followed my startup process, and i was delighted with her support on every moment. Great, great experience.”

Antonio Colella
Antonio Colella

“I came to know about Enterslice through a friend. Since then I have done GST Registration through them. The services are consumer centric and fast. I have recommended them to many of my acquaintance already.”

Leena Krishnan
Leena Krishnan

“Great set of people working together. Very customer friendly. I am very satisfied with the food license registration services and will definitely come back for other similar requirements.”

Arun Mahadik
Arun Mahadik

“They provided customized and Highly skilled CA &services. The management invests themselves in your work. They ensured timely NBFC registration and are always ready and prepared with excellent advisory services. The best part of working with Enterslice is they are not having expertise of law but they are well versed with Digital marketing skills &fintech business model.”

Ketan Shukla
Ketan Shukla

“I have registered my Trademark through them. The application was filed within 3 days. And the charges were also very reasonable. We got TM Approved in 6 month’s time without any re-submission or objection. They charge high to deliver the best in industry.”

Manish Pandy
Manish Pandy

“I would like to thank the Enterslice team for the excellent business plan made by them. They understood our requirement and gave us exactly what we wanted. Thank you Team Enterslice.”

Prashant Tipanis
Prashant Tipanis

“Thanks for your services. The team is really professional. They make sure that things are delivered in time. The best part about Enterslice is the consultative approach and guiding us on all our business matters.”

Akash Deep
Akash Deep

Haiden Group - UAE

In the news

CNBC
Huffpost
tnw
ABP News
Business Standard News
Outlook Magazine
Business Insider
Get Started Live Chat