RBI mandates kill switch for bank AI models
RBI's draft codifies operational AI controls - kill switches, board accountability, prompt-injection safeguards - that regulators elsewhere, including APRA, may eventually adopt.
Key points
- India's Reserve Bank has released a draft framework mandating a kill switch for AI models used by banks.
- The framework requires board-level accountability, human oversight documentation, customer disclosure, and third-party AI vendor controls.
- The RBI pattern mirrors regulatory directions in other jurisdictions - comparable controls are not yet mandated in Australian financial regulation.
Implications for Australian agencies
- Monitor APRA-regulated agencies and Treasury policy teams may want to monitor whether the RBI's operational control requirements - particularly kill-switch and board accountability provisions - influence Australian financial sector AI governance guidance.
- Consider APS agencies deploying AI in high-risk or customer-facing contexts could consider whether the RBI's technical requirements - adversarial testing, prompt-injection safeguards, session persistence limits - offer a useful reference model for their own risk frameworks.
Implications are AI-generated. Starting points, not advice — see methodology for how they're framed.
View original source
Copied.
Appeared in:
Weekly digest, 22 June 2026
"RBI mandates kill switch for bank AI models"
Source: Let's Data Science – AI Governance
Published: 25 June 2026
URL: https://letsdatascience.com/news/rbi-mandates-kill-switch-for-bank-ai-models-5c05351f
India's Reserve Bank has published a draft model risk management framework requiring banks and financial entities to implement a kill switch for AI models, enabling immediate shutdown on error. The framework assigns board-level accountability, mandates documented human oversight, requires customer disclosure when AI influences decisions, and imposes controls on third-party AI providers. Technical requirements include adversarial and edge-case testing, cybersecurity safeguards for generative AI systems including prompt-injection protections, and user options to switch to human assistance. Public comments close 24 July 2026.
Implications for Australian agencies:
- [Monitor] APRA-regulated agencies and Treasury policy teams may want to monitor whether the RBI's operational control requirements - particularly kill-switch and board accountability provisions - influence Australian financial sector AI governance guidance.
- [Consider] APS agencies deploying AI in high-risk or customer-facing contexts could consider whether the RBI's technical requirements - adversarial testing, prompt-injection safeguards, session persistence limits - offer a useful reference model for their own risk frameworks.
Retrieved from SIMS, 18 July 2026.