CBDC, Video-KYC and the Account Aggregator Framework: Digital Banking in 2026

CBDC, video-KYC and the account aggregator framework together define the digital banking landscape in 2026, and they sit at the heart of the IIBF Digital Banking syllabus. The Reserve Bank of India has moved the e-Rupee from pilot to scaled rollout, video-based customer identification (V-CIP) has replaced paper onboarding for most retail accounts, and the Account Aggregator (AA) ecosystem now lets customers share financial data securely with explicit consent. For candidates preparing the IIBF Digital Banking certificate, understanding how central bank digital currency, consent-led data sharing and digital lending guidelines fit together is no longer optional. This article maps the entire stack as it stands in 2026.

The e-Rupee: CBDC retail and wholesale in 2026

The e-Rupee (digital Rupee, or CBDC) is a sovereign digital currency issued directly by the Reserve Bank of India as legal tender. It is a liability of the central bank, unlike bank deposits or wallet balances, which makes it fundamentally different from UPI and prepaid instruments. By 2026 the RBI runs two distinct streams.

• CBDC-Retail (e-Rupee-R): token-based digital cash held in a wallet, usable for person-to-person and person-to-merchant payments, and designed to mirror the anonymity and offline capability of physical cash for small values.
• CBDC-Wholesale (e-Rupee-W): account-based settlement money used by banks and financial institutions for interbank transfers, the call money market and government securities settlement, reducing settlement risk.

Key examination points include the difference between a direct and an indirect (two-tier) issuance model. India uses the indirect model: the RBI issues CBDC, and banks distribute it to customers, preserving the existing banking relationship. Candidates should also know that CBDC offline functionality, programmability for targeted benefit transfers, and interoperability with UPI QR codes are the features driving adoption. Unlike a bank deposit, an e-Rupee holding earns no interest, which protects deposit franchises and monetary policy transmission. Track live policy through the RBI rates resource and the latest IIBF news updates.

Video-KYC and the V-CIP onboarding revolution

Video-based Customer Identification Process (V-CIP) is the RBI-sanctioned method of completing Know Your Customer obligations remotely through a live video interaction. Introduced through amendments to the Master Direction on KYC and now mainstream in 2026, V-CIP lets a bank official verify a customer face to face over a secure video call, capturing a live photograph, validating an officially valid document (OVD), and confirming the customer is physically present in India.

The compliance essentials a Digital Banking candidate must recall are:

• Live, consent-based interaction: the session must be a real-time audio-visual call initiated from the bank domain, not a recorded clip, with the customer giving explicit consent.
• Liveness detection and geo-tagging: the process must confirm the customer is live, capture geo-tags to verify Indian presence, and randomly sequence questions to defeat impersonation.
• OVD and PAN verification: documents are validated against the Aadhaar database (with masking) or the Income Tax PAN service, and the official records the result.
• Trained officials and audit trail: only trained bank staff may conduct V-CIP, and the activity log, including the video recording, is retained for audit.

V-CIP slashes onboarding cost and time, extends banking to remote customers, and underpins the assisted digital lending model. It is frequently tested alongside the differences between Aadhaar e-KYC, Offline Aadhaar XML and Central KYC Records Registry (CKYCR). Practice these distinctions on the IIBF mock tests and reinforce terminology with the match game.

The Account Aggregator ecosystem and consent architecture

The Account Aggregator (AA) framework is India consent-based financial data-sharing infrastructure, regulated by the RBI as a class of non-banking financial company (NBFC-AA). It lets a customer share financial information from one institution with another in a secure, digital and revocable manner, without the AA ever seeing the data in plain form. By 2026 the AA network spans banks, insurers, mutual funds, pension and tax data, making it the backbone of frictionless lending and personal finance.

The architecture rests on three defined roles:

• Financial Information Provider (FIP): the institution that holds the customer data, such as a bank or depository.
• Financial Information User (FIU): the institution that consumes the data, such as a lender assessing eligibility.
• Account Aggregator (AA): the consent manager that routes encrypted data from FIP to FIU but cannot store or read it, acting purely as a data-blind intermediary.

At its core is the consent artefact, a standardised, machine-readable digital consent specifying the purpose, the data fields, the duration and the frequency of access. Consent is granular and can be revoked at any time, giving the customer true data sovereignty. The framework uses the DEPA (Data Empowerment and Protection Architecture) principles and aligns with the Digital Personal Data Protection Act. Understanding the consent flow is essential for the exam, and you can revisit related modules through the IIBF Digital Banking blog.

Digital lending guidelines and the rise of neo-banking

The RBI Digital Lending Guidelines, now firmly embedded by 2026, govern every loan disbursed through a digital channel and are a high-yield area of the Digital Banking syllabus. They were framed to curb predatory practices by unregulated lending apps and to protect borrowers.

• Direct flow of funds: loan disbursal and repayment must flow directly between the borrower bank account and the Regulated Entity (RE), with no pass-through pooling account of a Lending Service Provider (LSP).
• Key Fact Statement (KFS): the borrower must receive a standardised KFS disclosing the all-inclusive Annual Percentage Rate (APR), recovery mechanism and cooling-off period before signing.
• Data and consent: apps may collect only need-based data with explicit consent, and customers can revoke consent and demand data deletion.
• Cooling-off period: a borrower may exit the loan by repaying principal and proportionate APR during a defined cooling-off window without penalty.

Running parallel to this is neo-banking: digital-only banking experiences delivered without physical branches. In India, neo-banks are not separately licensed; they partner with a licensed bank that holds the deposits, while the neo-bank delivers a superior digital interface, analytics and onboarding. Candidates must distinguish a neo-bank (a technology layer) from a digital bank licence. These themes connect CBDC, V-CIP and the AA framework into one regulated, consent-led digital banking stack.

Conclusion: master the 2026 digital banking stack

CBDC, video-KYC and the account aggregator framework are no longer futuristic concepts; they are the operating reality of Indian banking in 2026 and the most heavily weighted topics in the IIBF Digital Banking certificate. A candidate who can explain the two-tier e-Rupee model, the V-CIP compliance checklist, the AA consent architecture and the digital lending guidelines is well placed to clear the paper and to advise customers in the field. Consolidate your preparation with full-length IIBF practice tests, sharpen recall with the match game, and keep current via the IIBF news feed. Start your next mock now and turn this digital banking knowledge into exam marks.