logo
. . .

Payment Aggregator License

Get the competitive edge in the digital payment landscape with Corpzo's expert guidance on obtaining the payment aggregator license in India. We help streamline your payment aggregation services while ensuring compliance with RBI guidelines. Unlock new op

Get Expert Assistance

Understanding the Payment Aggregator License in India

Payment Aggregators are service providers through which e-commerce merchants can process their payment transactions are known as payment aggregators, they are also known as merchant aggregators. Aggregators allow merchants to accept credit cards and bank transfers without having to set up a merchant account with a bank.

As per the RBI guidelines Payment Aggregators are entities that facilitate e-commerce sites and merchants to accept various payment instruments from the customers for completion of their payment obligations without the need for merchants to create a separate payment integration system of their own. PAs facilitate merchants to connect with acquirers. In the process, they receive payments from customers, pool and transfer them on to the merchants after a time period.

A payment aggregator, or a merchant aggregator, is a service provider that allows businesses to accept various forms of digital payments without the need to establish their own merchant account with each individual bank or credit card company. This model provides a convenient and efficient way for businesses, particularly small to medium-sized enterprises, to facilitate transactions in the rapidly evolving digital marketplace.

The role of a payment aggregator is essentially that of an intermediary in the payment process. When a customer makes a purchase and chooses to pay via a digital method, such as a credit card, debit card, or digital wallet, the payment is initially collected by the aggregator. The aggregator then transfers the funds to the business, typically deducting a small processing fee for the service.

One of the main advantages of using a payment aggregator is the simplicity it offers. Businesses can accept a wide variety of payment methods through a single channel, which not only reduces administrative efforts but also enhances the customer experience. It also allows smaller businesses, which may not have the transaction volume to justify individual merchant accounts with various banks or credit card companies, to accept a broad range of payment methods.

RBI Guidelines also define the following in reference to obtainment of Payment Aggregator License:

1. Overall Procedure for Application of Payment Wallet License and Payment Aggregator License;

2. Prerequisites for Payment Aggregator License;

3. Fees and other Charges for Payment Aggregator License;

4. Net Worth and Capital Requirements for Payment Aggregator Licence and Payment Gateway;

5. Guidelines for Governance of Payment Aggregators and Payment Gateways;

6. Standards to be Followed against Money Laundering (KYC / AML / CFT) Provisions;

7. Merchant Onboarding Guidelines

8. Guidelines for Settlement and Escrow Account Management

9. Customer Grievance Redressal and Dispute Management Framework

10. Security, Fraud Prevention and Risk Management Framework

11. Security Related Recomendations t Aggregators and Payment Gateways 

12. Meaning and definition of Payment Aggregator;

13. Periodic reports to be submitted by Authorised Payment Aggregators


Embark on your journey towards Payment Aggregator Registration in India with Corpzo, your steadfast guide in the complex financial landscape. Our astute team of financial mavens and legal advisors demystifies RBI regulations, turning roadblocks into stepping stones. From the genesis of your application to the continuous monitoring post-registration, Corpzo's end-to-end services illuminate your path. Renowned as a top-tier business consultancy, we meticulously adhere to the Reserve Bank of India's guidelines, crafting bespoke strategies to suit your business blueprint. With a resolute commitment to client success, Corpzo empowers your enterprise to scale new heights in the dynamic digital payments arena. Trust Corpzo - we make your regulatory challenges our mission, paving your way to business growth and success.



Understanding the Capital Requirements for Payment Aggregator License

Capital requirements refer to the minimum amount of financial resources that a company must have to operate safely and effectively. These requirements are designed to ensure that the company can absorb losses, fulfill its financial obligations, and maintain stable operations. For payment aggregators, these requirements are typically defined by financial regulatory bodies.

The primary objective of imposing capital requirements is to ensure the financial health and stability of the payment aggregator. Given the critical role payment aggregators play in e-commerce transactions, it is crucial that they have sufficient financial resources to manage risks, absorb losses, and continue providing uninterrupted service. Additionally, capital requirements instill confidence in merchants and customers, reassuring them that the payment aggregator is reliable and robust.

The specific capital requirements for a payment aggregator license vary based on the jurisdiction. For instance, in India, the Reserve Bank of India (RBI) requires payment aggregators to have a minimum net worth of INR 15 crore at the time of application for the license. This net worth has to be increased to INR 25 crore within the first three years of receiving the license. Further, this net worth of INR 25 crore has to be maintained at all times thereafter.

The net worth is calculated as per the last audited balance sheet and must be maintained as per the guidelines issued in the RBI's Guidelines on Regulation of Payment Aggregators and Payment Gateways (DPSS.CO.PD No.1164/02.14.008/2019-20).

 

Requirement Details
Minimum Net Worth at the time of application INR 15 Crore
Minimum Net Worth within three years of receiving the license INR 25 Crore
Ongoing Minimum Net Worth Requirement INR 25 Crore
Basis for Calculation Last Audited Balance Sheet
Regulatory Reference RBI Directive (DPSS.CO.PD No.1164/02.14.008/2019-20)

Capital requirements are not a one-time requirement. Instead, payment aggregators must continuously meet these requirements to maintain their license. Failure to comply can result in penalties, including fines and, in severe cases, the revocation of the license.

To ensure compliance, payment aggregators need to regularly monitor their financial health and make necessary adjustments to meet the capital requirements. They may need to raise additional funds, cut costs, or optimize their operations to maintain the required capital level.

TIMELINES FOR ACHEIVING THE APPPICABLE NET-WORTH REQUIREMENTS

Existing Payment Aggregators shall achieve a net-worth of ₹15 crores by March 31, 2021, and a net-worth of ₹25 crores by the end of the third financial year, i.e., on or before March 31, 2023. All the time thereafter net-worth of ₹25 crores shall be maintained.

Entity

(Non-Banking)

Application date/

Authorisation date

Due date of Achieving

₹ 15 Cr. Net-worth

Due date of Achieving

₹ 25 Cr. Net-worth

For Existing PGs

the license shall

be obtained

by 30/06/2021

31/03/2021 or 

application date

whichever is earlier

31/03/2023

Net worth consists of paid-up equity capital, preferred securities that are compulsorily convertible to equity, free reserves, balance in the share premium account and capital reserves representing surplus arising from the selling of assets but not reserves generated by the revaluation of assets adjusted for accrued loss balance, the book value of intangible assets and deferred revenue expenditure if any. Compulsorily convertible preferential shares can be either non-cumulative or cumulative and must be convertible into equity shares and the shareholder agreements will specifically prohibit any withdrawal of this preferential capital at any time.

Unlocking Potential: Key Advantages of Becoming a Payment Aggregator

In the rapidly expanding digital universe, businesses are consistently seeking innovative solutions to enhance customer experiences, streamline operations, and boost revenue. One such solution that has garnered significant attention is the payment aggregator model. Becoming a payment aggregator carries numerous advantages, from amplifying customer reach to simplifying the payment process. Here's an in-depth exploration of these benefits and how they can elevate your business in the bustling e-commerce landscape.

1. Broadening Customer Reach

The foremost advantage of becoming a payment aggregator is the potential to vastly broaden customer reach. By facilitating a wide array of payment methods – from credit and debit cards to digital wallets and net banking – payment aggregators open up numerous avenues for customers to engage in transactions. This feature is particularly beneficial in the diverse and fragmented digital marketplace, where customers prefer different payment methods based on factors like convenience, security, and speed.

2. Enhancing Customer Experience

The digital age customer prioritizes convenience and speed. By offering multiple payment options under one roof, payment aggregators deliver an efficient and hassle-free checkout experience. This convenience can significantly improve customer satisfaction, boost conversion rates, and encourage repeat business. With an easy and user-friendly payment process, businesses can significantly enhance their reputation and build long-lasting relationships with their customers.

3. Simplifying Payment Processes

Traditionally, businesses looking to accept digital payments had to establish individual merchant accounts with each 

have the opportunity to leverage robust security protocols and systems, typically provided by the service, to ensure safe and secure transactions. This not only safeguards sensitive customer data but also builds customer trust and promotes brand integrity. Implementing advanced cybersecurity measures like end-to-end encryption and tokenization can enhance this trust, leading to higher customer retention.

6. Real-Time Reporting and Analytics

Another key advantage of becoming a payment aggregator is the ability to access real-time reporting and analytics. Payment aggregators provide businesses with valuable insights into their transactions, helping them understand customer purchasing behaviors, identify trends, monitor transaction success rates, and more. This data is invaluable for strategic decision-making, enabling businesses to optimize their operations, tailor their offerings, and drive growth.

7. Regulatory Compliance

Payment aggregators ensure that businesses remain compliant with all relevant financial regulations and standards. This is particularly crucial given the stringent laws around online transactions, customer data protection, and anti-money laundering. By becoming a payment aggregator, businesses can seamlessly navigate this complex regulatory landscape, reducing the risk of non-compliance and the associated penalties.

8. Swift Market Entry

Finally, becoming a payment aggregator can expedite market entry for businesses. Instead of waiting for individual approval from banks and card companies, businesses can start accepting multiple payment methods as soon as they register with a payment aggregator. This can significantly shorten the time to market, providing businesses with a competitive edge.

Who requires Payment Aggregator License - Applicability

The payment aggregator license is a regulatory requirement enforced by the Reserve Bank of India (RBI) for entities engaged in payment aggregation services in India. The license is applicable to specific entities involved in facilitating the acceptance and processing of payments on behalf of merchants or service providers. In this comprehensive guide, we will explore the entities to which the payment aggregator license applies, highlighting key points and providing references to relevant regulations.

1. Entities Engaged in Payment Aggregation Services:

The payment aggregator license is primarily applicable to entities that provide payment aggregation services. Payment aggregators act as intermediaries, consolidating payment instructions from customers and facilitating transactions between customers and merchants/service providers. They enable businesses to accept payments through various channels, such as debit/credit cards, net banking, e-wallets, and other electronic payment methods.

2. E-commerce Platforms and Marketplaces:

E-commerce platforms and marketplaces that facilitate the sale of goods and services are among the entities to which the payment aggregator license applies. These platforms often integrate payment aggregation services to enable seamless and secure transactions between buyers and sellers. By obtaining the payment aggregator license, e-commerce platforms can ensure compliance with the regulatory framework and provide a trusted payment gateway for their users.

3. Mobile Wallet Providers:

Mobile wallet providers, which offer digital payment solutions and enable users to store funds electronically, may fall under the purview of the payment aggregator license. These entities often aggregate payments from customers and facilitate transactions at various merchants and service providers. Obtaining the payment aggregator license is essential for mobile wallet providers to operate within the regulatory framework and build trust among users.

4. Third-Party Payment Service Providers:

Third-party payment service providers that offer payment aggregation services are also subject to the payment aggregator license requirements. These entities typically integrate with merchants and service providers to process payments on their behalf. By obtaining the license, third-party payment service providers ensure compliance with regulatory guidelines and provide a secure and reliable payment platform for their clients.

5. Software and Technology Companies:

Software and technology companies that develop and provide payment aggregation solutions are also impacted by the payment aggregator license requirements. These companies often create the underlying infrastructure, software platforms, and systems used by payment aggregators. While they may not directly engage in payment aggregation services, they play a crucial role in enabling payment transactions. Compliance with the payment aggregator license is necessary to ensure that their solutions are aligned with regulatory guidelines.

6. Online Travel Agencies and Ticketing Platforms:

Online travel agencies (OTAs) and ticketing platforms that aggregate bookings and process payments on behalf of customers are subject to the payment aggregator license. These entities facilitate the purchase of flight tickets, hotel bookings, event tickets, and other travel-related services. Compliance with the payment aggregator license regulations is essential for OTAs and ticketing platforms to operate legally and provide secure payment options to their customers.

7. Other Entities Providing Payment Aggregation Services:

Apart from the aforementioned entities, various other organizations or individuals engaged in payment aggregation services may also come under the ambit of the payment aggregator license. This includes entities involved in aggregating payments for utility bill payments, online subscription services, online marketplaces, and more. The license ensures that these entities adhere to the regulatory framework and maintain the integrity and security of payment transactions.

It is important to note that the RBI guidelines provide detailed definitions and requirements for entities that need to obtain the payment aggregator license. These guidelines specify the activities, responsibilities, and criteria for obtaining the license. Entities engaged in payment aggregation services should carefully review the guidelines to determine their applicability and ensure compliance with the regulatory framework.

Essential Documents for Payment Aggregator License Application: A Comprehensive Guide

Obtaining a payment aggregator license is a crucial step for businesses looking to operate in the digital payment space. To ensure a smooth and successful license application process, it is essential to understand the required documentation. In this comprehensive guide, we will outline the essential documents needed for a payment aggregator license application, ensuring compliance with regulatory requirements and positioning your business for success.

1. Company Incorporation Documents

To initiate the payment aggregator license application process, you will typically need to provide the following company incorporation documents:

  • Certificate of Incorporation: This document verifies the legal existence of the company and is issued by the respective company registrar or authority.
  • Memorandum and Articles of Association: These documents outline the company's objectives, structure, and internal governance rules.
  • Board Resolution: A board resolution is a formal statement issued by the board of directors authorizing the application for a payment aggregator license.

2. Business Plan

A comprehensive business plan is a vital document that showcases your vision, objectives, and strategies as a payment aggregator. It should include the following elements:

  • Executive Summary: An overview of your business model, target market, and competitive advantage.
  • Market Analysis: A thorough analysis of the digital payment industry, including market size, trends, and potential growth opportunities.
  • Operational Plan: Details about your technical infrastructure, payment processing procedures, risk management strategies, and customer support capabilities.
  • Marketing and Sales Strategy: An outline of your marketing and customer acquisition strategies, pricing models, and partnerships with financial institutions or technology providers.
  • Financial Projections: Revenue forecasts, cost estimates, and break-even analysis to demonstrate the financial viability of your payment aggregator business.

3. Ownership and Shareholding Structure

Regulatory authorities typically require information about the ownership and shareholding structure of your payment aggregator entity. You will need to provide the following documents:

  • Shareholding Pattern: A detailed breakdown of the ownership structure, including the names and shareholdings of individual shareholders or corporate entities.
  • Share Certificates: Official documentation certifying the ownership of shares issued by the company to its shareholders.
  • Know Your Customer (KYC) Documents: Identification and address proof documents of the shareholders, directors, and key personnel involved in the payment aggregator business.

4. Financial Statements and Audited Reports

Financial statements and audited reports provide regulators with insights into your company's financial health, stability, and compliance. The required financial documents generally include:

  • Balance Sheet: A snapshot of your company's financial position, summarizing assets, liabilities, and equity.
  • Profit and Loss Statement: An overview of your company's revenue, expenses, and net profit or loss over a specific period.
  • Cash Flow Statement: A report detailing the inflow and outflow of cash during a given period, providing insights into your company's liquidity and cash management.

5. Technology Infrastructure Details

Since technology forms the backbone of payment aggregator operations, it is crucial to provide comprehensive details about your technology infrastructure. This includes:

  • System Architecture: An overview of your payment processing system, including transaction flows, security features, and data protection measures.
  • Data Privacy and Security Policy: A document outlining your company's policies and procedures for data privacy, confidentiality, and security.
  • Disaster Recovery and Business Continuity Plan: A plan that demonstrates your ability to recover from unexpected events or disruptions and resume operations seamlessly.
  • Technology Infrastructure Plan: Provide details of your payment processing systems, network architecture, and IT infrastructure. Highlight scalability, reliability, and redundancy.
  • Security Policy: Describe your security measures, including data encryption, access controls, vulnerability assessments, and incident response plans. Refer to international standards such as the Payment Card Industry Data Security Standard (PCI DSS) and the ISO/IEC 27001 framework.

6. Compliance and Anti-Money Laundering (AML) Policies

Regulatory authorities place significant emphasis on compliance and anti-money laundering measures. You will need to include the following documents:

  • Compliance Policy: A document outlining your company's commitment to regulatory compliance, including measures to prevent fraud, money laundering, and terrorist financing.
  • AML and Know Your Customer (KYC)

7. Organizational Structure and Key Personnel

Demonstrate your organizational structure and the qualifications of key personnel involved in payment aggregation:

  • Organizational Chart: Provide an organizational chart highlighting key positions and reporting lines.
  • Resumes and Qualifications: Include resumes of key personnel, emphasizing their experience in the financial technology industry, payment processing, compliance, and risk management.

8. Other Supporting Documents

In addition to the above, include the following supporting documents:

  • Board Resolutions: Provide copies of board resolutions authorizing the application for a payment aggregator license.
  • Partnership Agreements: If you have entered into partnerships with banks, payment service providers, or other relevant entities, include copies of the partnership agreements.

SOME BASIC DOCUMENTS/INFORMATION TO BEGIN WITH:

Requirement Documents Required
Minimum number of directors and members Company COI (Certificate of Incorporation)
Minimum capital requirement Proof of net worth
  Canceled cheque
  Bank statement of the last 12 months
  Last Audited Balance Sheet of the last 2 years
Business address proof Business address proof
Detailed 5-year business plan Detailed 5 Years Business Plan
System flow and code testing report by software certifying agency System flow and code testing report by a software certifying agency
Compliance with PCI DSS PCI DSS certificate

Security Standards for Payment Aggregators in India: Ensuring Trust and Safety in Digital Transactions

In India, the Reserve Bank of India (RBI) has established comprehensive security standards and guidelines for payment aggregators to ensure the safety and trustworthiness of digital payment ecosystems. In this article, we will explore these security standards in detail, highlighting their importance and providing key insights into the regulatory framework.
Compliance with the security standards is not only a legal obligation but also essential for building trust, promoting the growth of digital payment ecosystems, and fortifying the overall digital economy. Payment aggregators must stay updated with the regulations and guidelines, ensuring continuous compliance and enhancement of security practices based on globally recognized frameworks.

By strictly adhering to these security standards, payment aggregators can foster secure environments, protect customer data, prevent fraudulent activities, and build trust among businesses and consumers. It is essential for payment aggregators to recognize their responsibilities in ensuring the safety and integrity of digital transactions, as their adherence to these security standards plays a pivotal role in the sustainable growth of the digital payment ecosystem.

In the following sections, we delve into the pre and post-registration security requirements for payment aggregators in India, outlining their significance, regulatory references, and best practices to ensure compliance. By understanding and implementing these security measures, payment aggregators can thrive in the digital landscape, fortify their operations, and contribute to a secure and trustworthy digital payment ecosystem.

The security standards for payment aggregators can be categorized into pre and post-registration requirements.


PRE-REGISTRATION SECURITY REQUIREMENTS:

Before applying for a payment aggregator license, businesses are expected to demonstrate adherence to specific security measures such as Payment Card Industry Data Security Standard (PCI DSS) compliance, security incident reporting, fraud monitoring, access controls, user authentication, and security awareness and training. These requirements establish a secure foundation for operations and foster confidence among businesses and consumers.

Before applying for a payment aggregator license, businesses must ensure that they meet certain security requirements to establish a secure foundation for their operations. These pre-registration security requirements include:

  1. Payment Card Industry Data Security Standard (PCI DSS) Compliance: Payment aggregators must comply with the globally recognized PCI DSS. This standard sets out guidelines for securely processing, storing, and transmitting cardholder data. It encompasses various areas such as network security, access controls, encryption, and vulnerability management.

  2. Security Incident Reporting: Payment aggregators need to have robust incident reporting mechanisms in place. This ensures that any security incidents, breaches, or unauthorized access are promptly detected, reported, and appropriately managed. Such reporting mechanisms help the regulatory authorities and stakeholders take timely actions to mitigate risks.

  3. Fraud Monitoring and Prevention: Payment aggregators should implement robust fraud monitoring and prevention measures. This involves deploying advanced analytics, machine learning algorithms, and transaction monitoring tools to identify and prevent fraudulent activities. Proactive monitoring helps in safeguarding customer transactions and minimizing financial losses.

  4. Access Controls and User Authentication: It is crucial for payment aggregators to have strong access control mechanisms and user authentication protocols. This includes implementing secure password policies, multi-factor authentication, and regular review of user access rights. By enforcing strict access controls, payment aggregators can prevent unauthorized access to sensitive data and systems.

  5. Security Awareness and Training: Payment aggregators should conduct regular security awareness and training programs for their employees. These programs aim to educate employees about security best practices, emerging threats, and their responsibilities in safeguarding customer data. By creating a security-conscious culture, payment aggregators can minimize the risk of human errors and ensure compliance with security standards.


POST-REGISTRATION SECURITY REQUIREMENTS:

Post-registration, payment aggregators must sustain their commitment to security standards, including continued compliance with PCI DSS, security incident reporting, fraud monitoring, access controls, user authentication, security awareness and training, and business continuity and disaster recovery planning. Adhering to these measures enables payment aggregators to maintain secure environments, promptly address security incidents, prevent fraudulent activities, and ensure uninterrupted services.

Once payment aggregators obtain their license and commence operations, they are required to maintain a strong security posture to ensure the continued safety of digital transactions. The post-registration security requirements for payment aggregators in India include:

  1. Security Incident Reporting: Payment aggregators must continue to report any security incidents to the regulatory authorities as per the established guidelines. This ensures that prompt actions can be taken to investigate and resolve security breaches.

  2. Fraud Monitoring and Prevention: Post-registration, payment aggregators need to maintain robust fraud monitoring and prevention mechanisms. This involves continuously enhancing their systems and implementing new measures to detect and prevent fraudulent activities in real-time.

  3. Access Controls and User Authentication: Payment aggregators must regularly review and update access controls and user authentication protocols. This helps in mitigating the risk of unauthorized access and strengthens the security of customer data.

  4. Security Awareness and Training: Ongoing security awareness and training programs should be conducted to keep employees updated on the latest security practices and emerging threats. Regular training sessions ensure that employees remain vigilant and maintain a high level of security awareness.

  5. Business Continuity and Disaster Recovery: Payment aggregators need to have comprehensive business continuity and disaster recovery plans in place. These plans outline strategies for minimizing disruptions and ensuring the availability of services during unforeseen events or incidents. Backup systems, redundant infrastructure, and recovery procedures are essential components of these plans.

It is important for payment aggregators in India to comply with these pre-registration and post-registration security requirements as outlined by the regulatory authorities such as the Reserve Bank of India (RBI). By doing so, payment aggregators can establish a secure environment for digital transactions, protect customer data, and maintain the trust of businesses and consumers in the digital payment ecosystem.

Avoiding Money Laundering: KYC/AML Requirements for Payment Aggregators

  1. Customer Due Diligence (CDD):

    • Payment aggregators must perform customer due diligence to verify the identity of their customers.
    • They should obtain and verify information such as name, address, contact details, and identification documents.
  2. Risk-Based Approach (RBA):

    • Payment aggregators should adopt a risk-based approach to KYC/AML.
    • They should categorize customers into different risk categories based on factors like location, transaction volumes, nature of business, and known risk factors.
    • Enhanced due diligence should be conducted for higher-risk customers.
  3. Record Keeping:

    • Payment aggregators must maintain records of customer identification information, transaction records, and other relevant documents.
    • These records should be retained for a minimum period as specified by the regulatory authorities.
  4. Ongoing Monitoring:

    • Payment aggregators need to monitor customer transactions on an ongoing basis.
    • They should scrutinize transactions for any unusual or suspicious activity, such as large transactions without a clear business rationale or frequent transactions with high-risk jurisdictions.
  5. Suspicious Transaction Reporting:

    • Payment aggregators have a legal obligation to report any suspicious transactions or activities to the relevant regulatory authorities.
    • They should establish internal procedures to identify and report suspicious transactions promptly.
    • Reporting mechanisms should be in line with the guidelines provided by the regulatory authorities.
  6. Employee Training and Awareness:

    • Payment aggregators must provide regular training to their employees on KYC/AML procedures and best practices.
    • Employees should be aware of the importance of KYC/AML compliance and be knowledgeable about the latest regulatory requirements.

Please note that these requirements are generally applicable for payment aggregators, but specific regulations and guidelines may vary based on the jurisdiction. Payment aggregators should refer to the regulations and guidelines issued by the respective regulatory authorities in their operating region for detailed and accurate compliance requirements.

Ensuring compliance with these KYC/AML requirements is crucial for payment aggregators to mitigate the risk of money laundering, terrorist financing, and other illicit activities. By implementing robust KYC/AML procedures, payment aggregators contribute to maintaining the integrity of the financial system and fostering trust among businesses, consumers, and regulatory authorities.

Step-by-Step Guide to Apply for a Payment Aggregator License in India

If you're considering entering the digital payment ecosystem as a payment aggregator in India, obtaining a license is a crucial step. The license not only grants you legal authorization but also ensures compliance with the regulatory framework set by the Reserve Bank of India (RBI). In this step-by-step guide, we will walk you through the process of applying for a payment aggregator license in India, referencing the relevant regulations and providing valuable insights to help you navigate the application process successfully.

Step 1: Understand the Regulatory Framework

Before initiating the application process, it is vital to gain a comprehensive understanding of the regulatory framework governing payment aggregators in India. The Reserve Bank of India (RBI) has issued guidelines and regulations, including the Master Directions for Payment Aggregators, which outline the eligibility criteria, capital requirements, operational guidelines, and other compliance obligations.

Step 2: Incorporate Your Company

To start the application process, you must incorporate a company under the Companies Act, 2013. Ensure that your company meets the necessary requirements, such as having a minimum of two directors and two shareholders. Obtain the Certificate of Incorporation (COI) from the Registrar of Companies (ROC) as proof of your company's legal establishment.

Step 3: Capital Adequacy Requirement

Payment aggregators in India are required to meet specific capital adequacy requirements. As per RBI guidelines, the initial minimum net-worth requirement is INR 15 crores. This capital requirement must be increased to INR 25 crores within three years from the date of obtaining the license. Prepare the necessary documents, such as bank statements and audited financial statements, to demonstrate compliance with these requirements.

Step 4: Prepare the Application Documents

The application for a payment aggregator license requires the submission of various documents. Prepare the following documents as part of your application package:

1. Form A: Complete and submit Form A, as prescribed by the RBI. This form captures essential details about your company, directors, shareholders, business plan, and other relevant information.

2. Business Plan: Prepare a detailed and comprehensive business plan covering aspects such as market analysis, revenue model, operational strategies, marketing plan, and financial projections for at least five years. Align your business plan with the requirements specified in the RBI guidelines.

3. KYC Documents: Submit Know Your Customer (KYC) documents of the directors and shareholders of the company. These include identity proofs, address proofs, and PAN cards.

4. Infrastructure and Security Measures: Provide information about your technology infrastructure, security protocols, data protection measures, and risk management frameworks. Demonstrate compliance with security standards, such as the Payment Card Industry Data Security Standard (PCI DSS), and include relevant certifications, if applicable.

5. Board Resolutions and Partnership Agreements: Include copies of board resolutions authorizing the application for a payment aggregator license. If you have entered into partnerships with banks, payment service providers, or other entities, include copies of the partnership agreements.

6. Audit Reports and Financial Statements: Submit the audited financial statements of the company for the past two years, along with any additional reports as required by the RBI. These documents should accurately represent your financial position and provide assurance of your company's stability.

Step 5: Complete the Application Form

Fill out the application form provided by the RBI, adhering to the instructions and guidelines provided. Ensure that all information provided is accurate, complete, and aligns with the supporting documents you are submitting.

Step 6: Submit the Application

Compile all the application documents and submit them to the RBI, either physically or electronically, as per the prescribed mode of submission. Pay the requisite application fees, as specified by the RBI, along with the submission of your application.

Step 7: Follow-Up and Compliance

Once your application is submitted, stay in touch with the RBI and promptly respond to any queries or requests for additional information. Cooperate fully during the evaluation process, which may involve inspections, due diligence checks, and verification of the information provided in your application.

Step 8: Await Approval and License Issuance

Upon successful evaluation and satisfaction of all regulatory requirements, the RBI will grant you the payment aggregator license. Await the approval and issuance of the license, which will authorize you to operate as a payment aggregator in India.

Step 9: Post-License Compliance

After obtaining the license, ensure ongoing compliance with the regulatory obligations specified by the RBI. Adhere to operational guidelines, capital adequacy requirements, security standards, reporting obligations, and any other guidelines or regulations issued by the RBI from time to time.

** Obtaining a payment aggregator license in India requires careful preparation, adherence to regulatory guidelines, and accurate submission of application documents. By following this step-by-step guide and ensuring compliance with the RBI's regulations, you can increase your chances of successfully obtaining a payment aggregator license. Corpzo assist with accurate legal advice to ensure the process is swift and accurate.

Navigating RBI Guidelines for Payment Aggregators

Unlocking the Potential: Navigating RBI Guidelines for Payment Aggregators - Services for Payment Gateway License by Corpzo

Welcome to Corpzo, your trusted partner in navigating the RBI guidelines for payment aggregators and obtaining a payment gateway license. As a leading service provider in the industry, we understand the intricate requirements and nuances of the regulatory landscape. In this comprehensive guide, we will assist you in understanding the RBI guidelines, highlighting key aspects, and providing insights to ensure compliance and unlock the potential for your business in the digital payment ecosystem.

1. Definition and Scope of Payment Aggregators:

At Corpzo, we ensure a clear understanding of the definition and scope of payment aggregators. Our team of experts will guide you through the RBI guidelines to comprehend the role and responsibilities of payment aggregators in facilitating seamless transactions and enabling e-commerce merchants, service providers, and other entities to accept payments from customers.

2. Eligibility Criteria and Licensing Requirements:

Navigating the eligibility criteria and licensing requirements can be a complex task. With our in-depth knowledge, we assist you in meeting the necessary prerequisites set by the RBI. We ensure that your entity is incorporated under the Companies Act, 2013, and help you fulfill the minimum net worth requirement of INR 15 crores at the time of application, which must be increased to INR 25 crores within three years from obtaining the license.

3. Customer Protection and KYC/AML Requirements:

Customer protection and adherence to KYC/AML procedures are paramount for payment aggregators. Our team will work closely with you to establish robust KYC measures that verify the identity of your customers, maintain comprehensive customer records, and conduct ongoing monitoring of transactions. By implementing these measures, we help you safeguard customer interests, mitigate financial fraud risks, and ensure compliance with RBI guidelines.

4. Settlement of Funds and Escrow Account Requirements:

Efficient and secure fund settlement mechanisms are crucial for payment aggregators. Our experts guide you through the requirements for setting up nodal accounts and escrow accounts with scheduled commercial banks. We ensure transparency and security in fund settlements, enabling you to streamline your operations and meet regulatory obligations seamlessly.

5. Security and Risk Management Frameworks:

Security measures and risk management frameworks are vital to protect customer data and maintain secure transactions. At Corpzo, we assist you in implementing robust security protocols aligned with the Payment Card Industry Data Security Standard (PCI DSS) and other industry best practices. Our experts ensure that your systems and processes are designed to detect and prevent fraud, promptly report security incidents, and comply with RBI guidelines.

6. Grievance Redressal Mechanism and Dispute Resolution:

Building customer trust is essential in the digital payment ecosystem. We help you establish a robust grievance redressal mechanism that ensures prompt resolution of customer grievances. Our experts guide you in developing effective customer support channels, escalation procedures, and efficient mechanisms for resolving complaints. By implementing these measures, we assist you in providing exceptional customer service and strengthening your reputation as a trusted payment aggregator.

7. Reporting and Compliance Obligations:

Compliance with reporting obligations is a critical aspect of operating as a payment aggregator. At Corpzo, we ensure that you stay compliant with regulatory requirements. Our team assists you in preparing and submitting periodic reports, audited annual reports, and other relevant information within the specified timelines. By maintaining transparency and accountability, we help you navigate the compliance landscape smoothly.

At Corpzo, we are committed to providing comprehensive services tailored to your specific needs. Our team of experts stays updated with the latest RBI guidelines, ensuring that you are well-informed and compliant. With our assistance, you can unlock the potential of the digital payment ecosystem and propel your business forward.

FAQ's on Payment Aggregator License

1

What is a payment aggregator?

A payment aggregator is a service provider that allows merchants to accept various payment instruments from customers to complete their payment obligations without needing to create a separate payment integration system of their own.

 
2

What is the difference between a payment aggregator and a payment gateway?


A payment aggregator permits a merchant to accept card payments and bank transfers even without opening a bank account with a bank or a credit card association. On the other hand, a payment gateway is a software service that allows e-commerce businesses to process transactions on their website or application, permitting payment acceptance through various methods like credit cards, debit cards, net-banking, e-wallets, and UPI.

3

What are the benefits of being a payment aggregator?

Payment aggregators act as a bridge between customers and merchants, making it easier to process and complete payment transactions. They provide a cost-effective and efficient approach for a large volume of smaller transactions, making the application process simple for small businesses. Additionally, setting up a payment aggregator is a quick and easy process, opening up opportunities for more talents to enter the market.

4

What are the risks associated with being a payment aggregator?

Some of the risks associated with payment aggregation include inconsistency in practice across companies, lack of regulatory influence from the Reserve Bank of India for some e-commerce marketplaces, risk of data loss and violation of privacy due to handling sensitive customer data, and the possibility of transaction chargebacks or frauds connected with sub-merchants.

5

What are the IT requirements for obtaining a Payment Aggregator License?

To obtain a Payment Aggregator License, the aggregator must adhere to data security standards like PA-DSS, PCI-DSS, and the latest encryption standards. They should conduct risk assessments, ensure staff capability in IT skills, follow PA-DSS guidelines for payment application security, implement comprehensive security risk assessment practices, and manage data control effectively.

6

What are the basic requirements for obtaining a Payment Aggregator License?

To obtain a Payment Aggregator License, the entity must provide address proof of the business, have a minimum net worth of Rs. 15 crores (which should be increased to Rs. 25 crores within three years of its operation), have at least three directors and two members, and must comply with PCI DSS Compliances.

7

What documents are required to apply for a Payment Aggregator License?

The documents required include a Certificate of Incorporation issued by the ROC or Registrar of Companies, DIN and DSC of all the proposed directors, details of the company’s bank account, PAN Card of the directors, five years of the business plan of the company, address proof of the business place, and code testing information by a software agency.

8

What is the procedure to obtain a Payment Aggregator License?
 

The entity should be incorporated under the Companies Act, 2013, obtain authorization from the Reserve Bank of India under PSS Act, meet the required capital net worth, prepare a mechanism against money laundering, and appoint a nodal officer for client complaints.

  • STAGE 1

    CONNECT WITH US

    We are just a call or message away!

    Call or WhatsApp us on +91-99991-39391 for free consultation from our team of experts. You can also email us on reach@corpzo.com.

  • STAGE 2

    PROCESS AND DOCUMENTATION

    Your consent is essential!

    We share the detailed and reasonable estimated costs, documents and prerequisites for the complete process before starting the process to ensure transparency.

  • STAGE 3

    SHARE YOUR DOCUMENTS

    We ensure timelines are met!

    Our team warrants hassle free documentation. We collect the necessary documents and share the relevant drafts to ensure a timely filing and delivery.

  • STAGE 4

    PROCESSING AND UPDATE

    Precision is our speciality!

    Upon collecting the necessary documents and information, we waste no time in preparation and filing of your application. development on your application is brought to your attention.

  • STAGE 5

    SUCCESSFUL COMPLETION

    We deliver what we commit!

    On successful completion of the case we share all the relevant documents electronically and physically along with an assurance to pay you back if something is wrong.

Request A Callback
Related Services

Expert Legal Advisory Our Customers Love

Bespoke advisory focused on mission critical legal, financial and business aspects.

server room

Trusted By Clients And Industry Experts

Uniquely repurpose strategic core competencies with progressive content. Assertively transition ethical imperatives and collaborative manufactured products.

Write About Us
Let’s chat? - We're online
Corpzo Chat Now Corpzo Chat Image