CBN Introduces N20,000 Transfer Limit for New Mobile Banking Users
The Central Bank of Nigeria (CBN) has announced significant new security measures for digital banking, including a N20,000 transaction limit for newly activated mobile banking applications during the first 24 hours of activation. This directive, contained in a circular dated March 12, 2026, aims to strengthen the security of Nigeria's instant payment system and curb rising fraud.
Enhanced Security Measures for Digital Payments
The new guidelines require all banks, financial institutions, and payment service providers to implement transaction limits on newly activated mobile financial service applications. The N20,000 limit applies to both inflows and outflows for newly opened accounts, though financial institutions may set lower thresholds based on their internal risk management frameworks.
For existing customers activating mobile banking applications on a new device, banks must place an outflow transaction limit of not more than N20,000 within the first 24 hours. This policy specifically targets risks associated with account takeover, identity theft, and unauthorized device migration, which have become more prevalent with the rapid expansion of digital financial services.
Mandatory Device Binding and Authentication
As part of the comprehensive security overhaul, the CBN has introduced mandatory device binding for mobile banking applications. Under this new rule, customers will be required to operate their banking app on only one device at a time, preventing simultaneous use across multiple devices.
The regulator explained that any attempt to migrate to a new device will automatically trigger a fresh authentication and reactivation process to verify the account holder's identity. Additionally, financial institutions must enforce stronger multi-factor authentication procedures for first-time logins to internet banking platforms on new devices.
Enterprise Fraud Monitoring Systems
The circular mandates all financial institutions to deploy enterprise fraud monitoring systems capable of tracking both incoming and outgoing transactions in real time. These systems are expected to help banks detect suspicious activity early and restrict potentially fraudulent transactions before they cause significant financial damage.
Tightened Account Opening Procedures
The CBN has also tightened rules for online account opening and reactivation processes. Accounts opened digitally must undergo liveliness checks to confirm that the individual initiating the process is physically present. All online account opening and reactivation processes must be validated in real time using the Bank Verification Number and National Identity Number databases.
Financial institutions were instructed to adopt enhanced authentication mechanisms including biometric verification, soft tokens, hard tokens, and other multi-factor authentication tools for online account reactivation.
Implementation Timeline and Customer Adjustments
The implementation of these new policies will begin on July 1, 2026. In a related development, the CBN clarified that under the new rules, both individual and corporate customers will be allowed to voluntarily adjust their transaction limits based on their needs, provided these adjustments remain within existing regulatory ceilings.
The apex bank maintained the current maximum transaction thresholds of N25 million for individual customers and N250 million for corporate accounts. This balance between security and flexibility aims to protect consumers while maintaining the efficiency of Nigeria's digital payment ecosystem.
