Professional Documents
Culture Documents
CC/109/2019 1
- Versus –
-: ORDER /JUDGMENT:-
5. The complainant no.1 updated date of birth on the link provided and
also mentioned the number 9823067088 of the complainant no.2, which
was linked with the two bank accounts.
Complaint No. CC/109/2019 3
11. The same circular at (iv) mandates that Banks may put in place
mechanism for velocity check on the number of transactions effected per
day/per beneficiary and any suspicious operations should be subjected to
alert within the bank and to the customer. The Opposite party have
miserably failed on this count also as they failed to detect the suspicious
transaction within the bank, occurring at odd hours of the day and the
uncharacteristic velocity of the transactions. Also though e-mail id of
complainant was registered with opposite party, opposite party failed to
initiate emails for the huge volume of transactions. Failure of opposite
party to follow the RBI mandated guidelines also amounts to deficiency in
service reasonably expected by the bank for the online transactions. RBI
through KYC guidelines has mandated Opposite party to identify the
clients as per their transactions pattern and provide security according to
their classification but Opposite party also failed to provide reasonable
security to clients account and hence again liable for deficiency in service.
13. Opposite party failed to provide robust and dynamic fraud detection
and prevention mechanism as this led to happening of the fraud and
complainant losing huge amount of Rs.18,36,400/. These acts of omission
and commission of the Opposite party, which is one of the leading Banks
in India, who has all the technological innovations at its discretion, of not
responding to the enquiry by complainant regarding detailed transaction
information of the complainant's accounts and not initiating any proactive
measures on its own after receipt of report about suspected activities
happening on complainants account, not protecting confidential
information of the complainant, amounts to most severe deficiency in
service as per Banking industry guidelines and norms. Accordingly
complainant prayed as:
i. That Opposite party SBI is directed to reverse the disputed
transactions of Rs.18, 36,400 to the complainant's account.
ii. To provide monetary relief towards mental harassment,
agony, pain and loss of professional gains as he was required
to devote his time in resolving the present issue, litigation
charges etc. amounting to Rs. 1,63,600/- (Rs One Lakh Sixty
Three Thousand Six Hundred only).
iii. Grant any other relief which this Hon'ble court deems fit
and proper in the facts and circumstances of the case;
iv. The complaint is allowed with cost of Rs.20,00,000/-
(Rupees Twenty Lac only) in the interest of justice.
Complaint No. CC/109/2019 6
14. The complaint was admitted on 20/12/2019. The opposite party filed
their written version on 28/02/3020. The Opposite party admitted residence
of complainant in Gondia, also saving account in their bank, but disputed
other facts and blamed complainants for sharing their confidential OTP to
third person to whom the complainant negligently provided the
confidential OTP number. Rather it can be said that the complainant
without knowing the effect of future loss pressed the fake link and also
provided OTP these factors lead to the entire transaction. The complainant
was hopelessly negligent and acted irresponsible against which there is no
difference in providing the service by the opposite party Bank. The bank
has already given message that not to share the OTP with anyone as is
evident from the document which is placed on record for producing for
everyday transaction that is done, a message is sent to the registered mobile
number- if particular transaction not done forward this SMS to
9223008333 to block INB or call 1800111109 and with every OTP
message and alert of not to share OTP with anyone is also given in the
message despite this known fact the complainant shared password OTP.
15. The exact pleas raised in defence by the Opposite party in its
Specific Pleadings supported with affidavit in lieu of evidence pg. no. 112
Para no. 18 – 27 are as under:
(21). The Bank on its part used to alert the customer from time to
time. The complainant had shared the OTP when then and there in
the same massage an alert has been given to the complainant not to
share an OTP still the complainant shared the OTP. This is nothing
but an act of sheer negligence. Even on login the bank's internet
banking login page it is clearly mentioned thereon. “Beware of
Phishing attacks" Phishing is a fraudulent attempt, usually made
through email, phone calls, SMS etc. seeking your personal and
confidential information.
The Bank has thousands time proclaimed and passed massage to its
consumers not to share OTP or password, but despite this the
persons like complainants used to commit the same mistake which is
a blunder. Law protects them who are vigilant and not negligent.
Complaint No. CC/109/2019 9
Ld Adv. for opposite party vehemently argued his point and relied
on same circular dated July 6, 2017 point no. 7. (b) limited liability of a
customer. He also brought our attention to the admitted fact that the
account was freeze immediately after complainant’s complaint as
mentioned in Para no.10 of his written arguments. He also argued that
there was no fraudulent transaction happened thereafter, there is no
deficiency on their part and due to sharing of OTP by complainant himself
amounts to negligence by customer, for this bank is not liable for his own
mistakes. He also file certain documents circular, Terms and conditions of
internet banking issued by State Bank of India, and relied upon Judgment
Complaint No. CC/109/2019 11
17. Perused entire record and after considering the pleadings of the
parties, documentary evidence adduced on record and hearing the
arguments advanced by the Ld. Advocates. Following points arise for our
determination and we record our finding thereon for the reasons as follow:
Sr. No. Points for determination Our findings
18. Opposite party has not disputed the saving account of complainant
and fraudulent transaction happened in night on 20/11/2019 and earlier
hours of 21/11/2019. But strongly relied upon the circular dated July 6,
2017 point no. 7. A customer shall be liable for the loss occurring due to
unauthorized transactions in the following cases: (i) In cases where the loss
is due to negligence by a customer, such as where he has shared the
payment credentials, the customer will bear the entire loss until he reports
the unauthorized to the bank. Any loss occurring after the reporting of the
unauthorized transaction shall be borne by the bank. And repeatedly argued
that due to negligence of complainant opposite party is not liable.
From the pleadings and documents it appears that the fraudsters had
first of all opened bank accounts in IDFC Bank Limited in name of various
persons as revealed from the documents filed at pg. no. 120-125 and send
link to create user id of the complainants. The complainant has stated that
he updated date of birth and also mentioned the number 9823067088 of the
complainant no.2 this statement on oath has not been specifically denied
with supporting documents, though mentioned specifically but the opposite
party just denied for want of knowledge (pg. no.29 & 108) and for the
reason that no such link or message delivered by the O.P. bank at any point
of time.
the forgery in the cheques. In-action for continuously long period cannot
by itself afford a satisfactory ground for the bank to escape the liability.
22. Thus opposite party escapes from the liability only if it can establish
knowledge to the customer of the fraudulent online transaction. More over
the burden to proof- negligence is upon bank as per Point no. 12 of the said
circular. RBI in its circular dated 06/07/2017 admitted the need of issuing
direction as specified in Para.2 of the circular as “With the increased thrust
on financial inclusion and customer protection and considering the recent
surge in customer grievances relating to unauthorized transactions resulting
in debits to their accounts/ cards, the criteria for determining the customer
liability in these circumstances have been reviewed.”
23. The Opposite party fails to discharge its burden as directed by the
RBI. In this regards the Hon’ble National Commission in case of “State
Bank of India-Versus-J. C. S. Kataky (Dr)” 2017 (2) CLT 602 (NC) has
held in Para No.11, 12, 16 & 19 quoted below for ready reference:-
“11. …………It is clear from the facts on record that the Bank flatly
refused to even look into the matter, what to speak of making any
investigation into the same. Once the specific POS number had been
given in the message received from the Bank itself to the complainant,
the Bank could have very well verified the genuineness of these
transactions, after establishing contact with the person or merchant
establishment in possession of the said POS, but nothing of that sort
was done.
Complaint No. CC/109/2019 19
24. In the ruling in ‘Sri Thomas Ninan -Versus- Axis Bank & Anr.’
Appeal No.-A/14/755, decided by Hon’ble State Commission, Mumbai
decided on 07.08.2017, held in Para no. 11:-
“11. There is increase in the grievances of the customers in relation
to unauthorized banking transactions in respect of electronic online remote
payment and cashless transactions e.g. internet banking, mobile banking,
card not present (CNP) transactions, pre-paid payment instruments
resulting in debits from their Bank accounts and customers need to be
protected in unauthorized electronic banking transactions. Banks need to
assure safety to the customers making them feel safe and secure in respect
of the electronic banking transactions. Banks are duty bound to take
appropriate steps to assess the risk and provide for robust mechanism to
prevent and detect fraud and to provide for liability arising out of
Complaint No. CC/109/2019 20
case that there is a contract between them and the plaintiff to the effect that
if the plaintiff does not respond to the SMS alerts given by them regarding
the withdrawals from his accounts, they would not be liable for the loss, if
any, caused to the plaintiff.
In the circumstances, question (ii) is also answered against the
appellant”.
-(Emphasis supplied)
26. It is also observed that Banks are having network and they can
easily help the customer’s/consumers e.g If a fraudulent online transaction
happened the money is in the system till working time. Banks can easily
stop the payments in better protection of customer’s interest and even
whoever has withdrawn the amount fraudulently from bank account can be
identified easily. Since only after completing all the formalities of Aadhar
Verification, PAN Card details, ID proof, valid address proof an account is
opened. Thus the details of miscreants can be traced but bank does not help
poor consumers even the employee of bank share details of customers to
fraudsters which can be taken note for the simple reason that a person's
Complaint No. CC/109/2019 23
bank details are only with bank or the consumer then how come anyone
know that a particular person have such and such bank account in such and
such bank at such and such place etc. Thus it is burden on part of the bank
and its employees to discharge their burden first then only complainant can
be hold responsible for any alleged negligence. Hence looking from any
angle the opposite parties miserably failed to discharge their burden that
complainant was negligent. In view of the above ruling and facts of the
present complaint, the complaint must be allowed with cost and
compensation.
Therefore issue no. 1 is answered in Negative and sharing of
Birth of date and OTP by the complainant was an accident and issue
no. 2 is in affirmative. Accordingly, complaint is partly allowed.
27. It is also important to recover the public amount from the salary
of the public servant who has performed their duty capriciously and
caused harassment and mental agony to the complainants after
conducting their internal enquiry from the staff who has committed
dereliction in duty resulted the loss cost to the public authority as per
Hon’ble Supreme Court Judgment in case of Lucknow Development
Authority vs. M. K Gupta 1994 AIR 787.
FINAL ORDER
Date : 10/08/2021
Place : Gondia
Complaint No. CC/109/2019 25