The National Payments Corporation of India (NPCI) and the Reserve Bank of India (RBI) on Tuesday announced a slew of new digital payments initiatives at the Global Fintech Festival 2025 in Mumbai. A key highlight is the introduction of biometric and wearable glass authentication for UPI transactions, aiming to make digital payments faster and more convenient. The new feature allows users to authenticate UPI payments using their smartphone’s fingerprint or face unlock without having to enter a UPI PIN manually. Customers can opt-in and set this as their preferred authentication method for added convenience and security.
Biometric authentication for UPI payments: Everything you need to know
Initially, UPI transactions using biometric authentication will be limited to Rs. 5,000, the upper limit will be reviewed later. Using fingerprint or facial recognition on a user’s smartphone is expected to make UPI payments easier and more secure, especially if implemented safely with appropriate safeguards.
Biometric authentication for UPI payments eliminates the need to enter or remember a PIN, making payments more convenient for users, especially senior citizens and those less familiar with digital systems. Since PINs can be forgotten or compromised, biometrics provide a stronger layer of security because fingerprints and facial scans are more difficult to steal or copy. It can also help reduce transaction failures due to incorrect or forgotten PINs, ensuring a smoother payment experience.
NPCI has published guidelines on its website on how to use biometric authentication for UPI payments. We’ve created a handy guide to help you make payments without entering a PIN once biometric authentication support is rolled out in your UPI app.
Biometric authentication for UPI payments: Is it safe?
However, it is worth considering that there are some disadvantages to using fingerprint or facial authentication for UPI payments. While it offers speed and convenience, it also increases the risk of unexpected transactions. Unlike users who can still cancel or correct incorrect PIN entries, biometric authentication processes payments immediately after verification. Likewise, you can reset your UPI PIN, but your biometric information is permanent.
For PIN-less biometric UPI payments, user consent and security check are mandatory. When a UPI application completes a new device sign-in or binding, it must request new consent before allowing biometric transactions. If a user changes or resets his or her UPI PIN, the issuing bank must disable biometric authentication for the account until the user reactivates the account.
To maintain security, UPI applications must update their encryption keys at least once a year. If the user does not make any biometric transactions for 90 days, the feature will become inactive and can only be re-enabled after user confirmation.
Here’s how to use biometric authentication for UPI payments
-
Open your UPI app and start a new payment.
-
Scan the payee’s QR code or select the contact or merchant you want to pay to.
-
Enter the payment amount and select the bank account you want to use for the transaction.
-
When asked to enter your UPI PIN, select Use biometrics On-screen options.
-
Authenticate using fingerprint or face unlock by placing your finger on the sensor or looking at the camera.
-
Wait for a confirmation message that the payment has been processed automatically without entering a PIN.
