TL;DR: For most regulated fintech companies and NBFCs in India, video KYC delivers the best balance of compliance strength, fraud resistance, and remote scalability. eKYC suits fully digital, low-risk, Aadhaar-enabled onboarding flows. Physical KYC remains relevant only where digital infrastructure is absent or regulatory mandates specifically require in-person verification.
eKYC (electronic KYC) is an Aadhaar-based digital verification that uses biometric or OTP authentication through the UIDAI (Unique Identification Authority of India) system.
Physical KYC requires an agent or customer to be physically present for document collection and wet-ink verification. Each method carries distinct compliance obligations, infrastructure requirements, and fraud profiles.
Introduction: why this comparison matters for Indian fintech in 2026
Banks, non-banking financial companies (NBFCs), payment aggregators, and insurance providers in India are required to comply with the RBI's Master Direction on Know Your Customer (KYC), last updated and progressively amended through 2023–2025. The choice of KYC method directly affects customer acquisition speed, compliance risk, operational cost, and auditability.
As the RBI has expanded acceptance of video KYC for a wider class of regulated entities, and as the UIDAI continues to refine Aadhaar eKYC consent frameworks, teams evaluating onboarding infrastructure in 2026 face a genuinely different decision landscape than they did three years ago. This article provides a structured, criteria-driven comparison of all three methods to help compliance heads, product managers, and founders make that decision with precision.
Read Here: RBI KYC compliance guide
Evaluation criteria
Before comparing options, the following criteria are defined and will be applied consistently:
Regulatory acceptance: Whether the method is explicitly permitted under RBI's Master Direction on KYC and applicable sector-specific guidelines for banks, NBFCs, and payment service providers.
User experience: The friction a customer encounters during onboarding, including time-to-complete, device requirements, and steps needed.
Fraud resistance: The method's resistance to identity spoofing, document forgery, and impersonation attacks.
Cost per verification: Fully-loaded operational cost including agent time, infrastructure, storage, and compliance overhead per successfully completed verification.
Scalability: The ability to handle volume growth without proportional increases in cost or staffing.
Infrastructure complexity: The technical and organisational overhead required to deploy and maintain the solution.
Auditability: The completeness and retrievability of records for regulatory inspection, grievance redressal, and audit purposes.
Video KYC
What it is
Video KYC is a live, synchronous identity verification process conducted over a secure video call between a trained agent and a customer. Defined under the RBI's guidelines (circular ref: RBI/2019-20/145, with subsequent amendments), it requires a live video session, real-time capture of the customer's face and original documents, a randomised question set, geo-tagging of the customer's location, and mandatory session recording stored for a minimum of two years.
Customers must be physically present in India at the time of verification. The session must be conducted by an officially designated officer of the regulated entity, and the entire workflow must be end-to-end encrypted.
Strengths
Video KYC combines the compliance strength of physical presence with the reach of a digital channel. Because a trained human agent verifies the session in real time, it resists many automated fraud attacks. The mandatory recording creates a defensible audit trail. It is accepted across banks, NBFCs, insurance companies, and mutual fund houses under their respective RBI and IRDAI frameworks.
Vendors such as VideoSDK provide real-time communication infrastructure (WebRTC-based SDKs and APIs) that compliance teams can use to build or integrate video KYC pipelines. According to the VideoSDK documentation, the platform supports features such as real-time video, recording, and custom UI relevant capabilities for building agent-facing and customer-facing KYC flows. Alternatives include in-house WebRTC implementations and CPaaS (Communications Platform as a Service) providers, each with different trade-offs in build time, compliance configurability, and per-minute cost.
Limitations
Video KYC requires a stable internet connection (minimum 512 kbps recommended) and a front-facing camera on the customer's device. It is agent-dependent, meaning throughput is constrained by the number of trained agents available. Session completion rates drop in areas with poor connectivity. For very high onboarding volumes, staffing costs can erode the per-verification economics compared to fully automated eKYC.
Ideal use cases
Video KYC is the appropriate choice for: opening full-KYC savings or current accounts, onboarding for lending products with high credit limits, insurance policy issuance, and mutual fund onboarding where PAN-level identity confirmation is required. It is the mandated or preferred channel for regulated entities where Aadhaar-based eKYC is not available or where the customer has not provided Aadhaar consent.
Must Read: Build vs buy video KYC infrastructure
eKYC
What it is
eKYC (electronic KYC) is a paperless, Aadhaar-based identity verification process administered through the UIDAI API. It authenticates a customer's identity against their Aadhaar record using either biometric data (fingerprint or iris) or a one-time password (OTP) sent to the Aadhaar-linked mobile number. The customer's name, date of birth, address, photograph, and other demographic data are returned electronically from the UIDAI system after successful authentication.
eKYC is the basis of the "video KYC vs traditional KYC" debate: it is faster and fully automated, but access to the UIDAI biometric API is restricted to licensed KYC User Agencies (KUAs), and OTP-based eKYC carries higher fraud exposure than biometric eKYC.
Strengths
eKYC is the fastest verification method available under Indian regulations. For customers with Aadhaar-linked mobile numbers and consent, the end-to-end process can complete in under two minutes. It requires no agent involvement, making it infinitely scalable in terms of software throughput. The data is sourced directly from UIDAI, eliminating document forgery risk at the data level. Costs per verification are low once the KUA licence and API infrastructure are in place.
Limitations
eKYC access is restricted to entities that hold a valid KUA licence from UIDAI or contract with a licensed sub-KUA. OTP-based eKYC is vulnerable to SIM swap fraud and social engineering. Biometric eKYC requires physical fingerprint or iris readers, which limits mobile-first use cases. Critically, the Supreme Court of India's 2018 ruling in Justice K.S. Puttaswamy vs Union of India restricted private entities from mandatory Aadhaar-based authentication, meaning Aadhaar eKYC for private financial entities requires explicit, voluntary customer consent a compliance step that cannot be bypassed.
RBI's guidance on eKYC also imposes transaction limits on accounts opened solely through OTP-based eKYC (e.g., aggregate credit limits for small accounts), which constrains the product range that can be offered through this channel alone.
Ideal use cases
eKYC is the right choice for: mobile wallet onboarding, small-ticket lending pre-qualification, payment instrument issuance below regulatory thresholds, and scenarios where customers have voluntarily consented to Aadhaar-based verification and hold an Aadhaar-linked mobile number. It is also used as a first-factor verification step in layered KYC processes, where video KYC or physical KYC is completed subsequently for higher-value products.
Physical KYC
What it is
Physical KYC is the original, in-person verification process in which a customer either visits a branch or outlet, or a field agent visits the customer's location, to collect original identification documents, take a photograph, and obtain a wet-ink signature. The verified documents are then stored as part of the customer's KYC record. Physical KYC was the only accepted method before the RBI introduced digital alternatives.
Strengths
Physical KYC requires no internet connectivity on the customer's part and is unambiguously accepted across all product types and all regulated entity categories. It is the fallback method for customers who cannot complete digital verification due to device limitations, connectivity constraints, or lack of Aadhaar consent. It is also the default channel for rural and semi-urban segments where digital literacy remains low.
Limitations
Physical KYC is operationally expensive. The cost per verification includes field agent salaries, travel, document handling, storage, and data entry. Turnaround times range from one to five business days in most deployment models, which directly delays customer activation. Document handling introduces risks of loss, damage, and data entry errors. Scaling physical KYC requires proportional headcount growth, making it incompatible with high-growth digital onboarding strategies.
Ideal use cases
Physical KYC remains appropriate for: rural lending programmes where customers lack smartphones or reliable internet, government scheme enrolments requiring in-person verification, customers who explicitly decline digital channels, and product lines where regulatory guidance has not yet extended to digital alternatives.
Feature comparison matrix
| Criteria | Video KYC | eKYC | Physical KYC |
|---|---|---|---|
| Regulatory acceptance (RBI) | Fully accepted for banks, NBFCs, insurers | Accepted with Aadhaar consent; transaction limits apply | Universally accepted; no digital infrastructure required |
| User experience | Moderate friction; requires device with camera and connectivity | Lowest friction; 2–3 minutes, mobile-first | Highest friction; requires travel or field agent visit |
| Fraud resistance | High; live agent, geo-tagging, recording | Medium (OTP) to High (biometric); vulnerable to SIM swap on OTP | Medium; risk of document forgery and agent collusion |
| Cost per verification | Medium (₹100–₹300 depending on agent model and vendor) | Low (₹10–₹50 once API access established) | High (₹300–₹800 including agent and logistics costs) |
| Scalability | Medium; agent-dependent; addressable via shift scheduling | Very high; fully automated once licensed | Low; linear headcount dependency |
| Infrastructure complexity | Medium; requires compliant WebRTC video stack, recording, storage | Medium–High; requires UIDAI KUA licence or sub-KUA tie-up | Low (tech); High (operations) |
| Auditability | Highest; full video recording, geo-tag, timestamped logs | High; UIDAI-sourced record, consent log | Medium; depends on document storage and field agent process |
Cost estimates are indicative and vary by vendor, volume, and operational model.
Recommendation by use case
| Use case | Best method | Reason |
|---|---|---|
| Full-KYC savings account opening | Video KYC | RBI mandates full KYC for savings accounts; video KYC meets this remotely |
| Mobile wallet (semi-KYC) | eKYC (OTP) | Transaction limits align with semi-KYC product caps; fast and scalable |
| NBFC personal loan onboarding | Video KYC | Lending products require complete identity verification; video creates defensible audit trail |
| Insurance policy issuance | Video KYC | IRDAI has aligned with RBI's video KYC framework for insurance |
| Mutual fund account (MF-KYC) | eKYC or Video KYC | Both accepted under SEBI's KYC Registration Agency framework; eKYC faster for existing Aadhaar-consenting customers |
| Rural lending (no smartphone) | Physical KYC | No viable digital alternative for customers without devices or connectivity |
| High-value lending (>₹50 lakh) | Video KYC | Risk profile warrants agent-verified, recorded session |
| Pre-qualification / lead enrichment | eKYC (OTP) | Low-stakes data capture step; full KYC completed later |
RBI compliance analysis
Regulatory framework
The Reserve Bank of India's Master Direction on Know Your Customer (updated through 2023) is the primary regulatory instrument governing KYC obligations for regulated entities. It is available on the RBI's official website. Sector-specific entities insurance companies, mutual funds, stockbrokers are also governed by IRDAI, SEBI, and AMFI guidelines respectively, which broadly align with the RBI's framework.
The RBI extended video KYC (termed "V-CIP" or Video-based Customer Identification Process) to scheduled commercial banks, small finance banks, payment banks, NBFCs, and housing finance companies in a phased rollout beginning 2020. The core V-CIP requirements are:
- Live video interaction between a trained agent and the customer
- Real-time capture of the customer's face and official identification documents
- Verification against PAN database (for PAN-based products)
- Randomised question asked during the session
- Geo-tagging to confirm the customer is physically located in India
- End-to-end encryption of the session
- Recording stored for a minimum of two years
- Customer consent obtained prior to the session
eKYC under the Aadhaar framework requires entities to be licensed KUAs or to operate through sub-KUAs. The customer's Aadhaar number must never be stored locally by the regulated entity without explicit compliance clearance.
Refer to the official RBI Master Direction on KYC or consult a qualified compliance expert before finalising your KYC architecture.
Compliance checklist
| Requirement | Video KYC | eKYC | Physical KYC |
|---|---|---|---|
| Customer consent (documented) | Mandatory obtained prior to V-CIP session | Mandatory Aadhaar consent form required | Mandatory general account opening consent |
| Agent/officer verification | Yes designated officer with identity verified | Not applicable (automated) | Yes field agent identity registered |
| Session/document recording | Yes full video recording required | UIDAI transaction log maintained | Physical document copy retained |
| Geo-tagging | Mandatory customer must be in India | Not required | Not applicable |
| Audit logs | Session metadata, timestamps, agent ID | UIDAI authentication log, consent record | Physical file, data entry log |
| Data storage minimum | 2 years (video recording) | As per UIDAI and entity policy | 5 years post-account closure (RBI norm) |
| PAN verification | Required for applicable products | Required for applicable products | Required for applicable products |
| Liveness check | Required during live session | Biometric eKYC includes liveness; OTP eKYC does not | Not applicable |
Consequences of non-compliance
Regulated entities that fail to comply with RBI KYC directions face a defined set of consequences under the Banking Regulation Act, 1949, and the Prevention of Money Laundering Act (PMLA), 2002:
Financial penalties: The RBI has imposed fines ranging from ₹50 lakh to several crore rupees on banks and NBFCs for KYC and AML (Anti-Money Laundering) violations. Recent enforcement actions (2022–2025) have included penalties specifically for inadequate record retention and deficient V-CIP implementation.
Licence restrictions: Entities found in persistent non-compliance may face restrictions on onboarding new customers, launching new products, or operating specific business lines. In extreme cases, the RBI has the authority to cancel licences.
Operational disruption: Regulatory audits that identify systemic KYC gaps can require immediate remediation, halting or slowing new account opening until deficiencies are corrected.
Customer onboarding delays: Poor KYC infrastructure regardless of which method is used creates bottlenecks that delay customer activation, increase drop-off rates, and generate downstream compliance exposure if accounts are activated on incomplete records.
Final verdict
For most regulated entities in India operating in 2026, video KYC is the default recommendation for any product requiring full KYC compliance. It provides the strongest combination of regulatory acceptance, auditability, and fraud resistance while remaining accessible to customers with standard smartphones and broadband connectivity.
eKYC is the right choice where the specific use case falls within the product and transaction limits applicable to Aadhaar-based verification, customers have consented to Aadhaar use, and the entity holds or can access a KUA licence. It is best deployed as a component of a layered onboarding flow rather than as a standalone method for high-value products.
Physical KYC should be reserved for specific segments geographically remote customers, those without digital devices, or products where regulators have not yet extended digital verification options and treated as a legacy channel being actively managed down in volume.
Entities choosing video KYC should evaluate their infrastructure options carefully: in-house WebRTC, CPaaS platforms, and prebuilt SDK vendors each carry different compliance configurability, SLA commitments, and cost structures. Infrastructure must support recording, geo-tagging, and encryption as non-negotiable baseline capabilities not optional add-ons.
Key takeaways
- Video KYC is the only method that simultaneously delivers full regulatory compliance, remote reach, and a defensible audit record for high-value financial products.
- eKYC is fastest and most scalable but is restricted by Aadhaar consent requirements, KUA licensing, and product-level transaction caps.
- Physical KYC is operationally expensive and unscalable; its use should be limited to segments and geographies where digital alternatives are genuinely unavailable.
- RBI's V-CIP framework imposes specific technical and procedural mandates geo-tagging, recording, agent verification, encryption that must be treated as hard requirements, not best-practice guidance.
- Choosing the wrong KYC method for a product type is not a minor operational issue; it is a compliance gap that can attract RBI penalties, trigger licence restrictions, and delay customer onboarding.
FAQ
What is the difference between video KYC and eKYC in India?
Video KYC (V-CIP) is a live, agent-assisted video session used to verify a customer's identity in real time, as defined under the RBI's Master Direction on KYC. eKYC is an Aadhaar-based digital process that authenticates identity against UIDAI records using either OTP or biometrics, without any agent involvement. The key practical distinctions are that video KYC requires a trained agent and produces a video recording, while eKYC is fully automated and relies on Aadhaar infrastructure.
Is video KYC mandatory under RBI guidelines for NBFCs?
Video KYC is not universally mandatory, but it is the RBI-accepted method for completing full KYC remotely for NBFCs. NBFCs that want to onboard customers digitally without physical agents must use V-CIP as defined in the Master Direction. Refer to the current RBI Master Direction on KYC or consult a compliance expert to confirm obligations specific to your entity category and product type.
Can an NBFC use eKYC for all customer onboarding?
No. eKYC through Aadhaar OTP has transaction and product-level limitations under RBI guidelines accounts opened via OTP-based eKYC are classified as limited-purpose accounts with aggregate credit constraints. Biometric eKYC offers stronger verification but requires physical authentication hardware. Full-KYC accounts and higher-value lending products require either video KYC or physical KYC.
What are the storage requirements for video KYC recordings?
The RBI's V-CIP guidelines require that video recordings from KYC sessions be stored for a minimum of two years from the date of the session. The recordings must be retrievable for regulatory inspection and must be maintained on secure, encrypted infrastructure. Entities should consult the current text of the RBI Master Direction for any subsequent amendments to this requirement.
How does Aadhaar eKYC differ from video KYC for KYC compliance in India?
Aadhaar eKYC draws identity data directly from the UIDAI database after customer biometric or OTP authentication, making it data-accurate but access-restricted and subject to Aadhaar consent law. Video KYC relies on a trained human agent verifying documents and liveness in real time, with no dependency on Aadhaar or UIDAI. From a compliance standpoint, both are accepted by the RBI, but they apply to different product categories and carry different fraud profiles and infrastructure requirements.
What happens if a video KYC session fails due to connectivity issues?
A failed or incomplete V-CIP session must not be treated as a completed KYC event. The customer must be re-scheduled for a fresh session, and no account or product must be activated on an incomplete session record. Entities should ensure their video KYC infrastructure logs session outcomes including failures with timestamps and reasons, as this forms part of the audit trail. A high rate of session failures is also an operational signal to evaluate infrastructure quality or shift scheduling.
Which KYC method is most cost-effective for digital KYC in India at scale?
At high volumes, OTP-based eKYC has the lowest per-verification cost typically ₹10–₹50 per verification once API infrastructure is in place because it requires no agents. Video KYC costs more per session due to agent time, but the auditability and compliance coverage it provides often reduces downstream remediation costs. Physical KYC has the highest per-verification cost at scale, with no meaningful cost reduction at volume because it is operationally labour-intensive. The best cost structure depends on product type, customer segment, and the regulatory channel available.
Is physical KYC still required for any financial products in India in 2026?
Physical KYC remains the applicable method for customer segments who cannot complete digital verification those without smartphones, reliable connectivity, or Aadhaar consent and for specific product types or geographies where the RBI has not extended digital alternatives. It also serves as the fallback when digital systems are unavailable. However, for mainstream digital onboarding by banks and NBFCs, physical KYC has been largely superseded by video KYC and, where applicable, eKYC.