Account Aggregator Ecosystem
The Account Aggregator (AA) ecosystem is a consent-based financial data-sharing framework in India, regulated by RBI, in which NBFC-AAs act as data intermediaries between Financial Information Providers (FIPs) and Financial Information Users (FIUs) to enable seamless, secure sharing of financial data for credit underwriting, wealth management, and other use cases.
The Account Aggregator framework was conceptualised by the Reserve Bank of India and received its regulatory backbone through the Master Direction on NBFC-Account Aggregator (Reserve Bank) Directions, 2016. However, the ecosystem became operationally live only in September 2021, when eight major banks — SBI, ICICI Bank, HDFC Bank, Axis Bank, Kotak Mahindra Bank, IDFC First Bank, IndusInd Bank, and Federal Bank — joined simultaneously as both FIPs and FIUs.
The architecture is built on three pillars. Financial Information Providers (FIPs) are entities that hold customer financial data — banks, insurance companies, mutual fund depositories, pension funds (EPFO, NPS), securities depositories (NSDL, CDSL), and tax authorities (CBDT for Form 26AS). Financial Information Users (FIUs) are entities that need this data to deliver services — lenders, wealth managers, and personal finance apps. The NBFC-AA sits in the middle, holding the customer's consent artefact and routing encrypted data from FIPs to FIUs without seeing the actual data itself.
The consent architecture is the cornerstone of the framework. A customer explicitly grants consent through the AA app (e.g., OneMoney, Finvu, CAMS AA, Digilocker AA) specifying: the purpose of data sharing (credit assessment, account aggregation, taxation), the data types to be shared, the period of access, and the frequency of data pulls. The consent can be revoked at any time. This gives consumers granular control unlike screen-scraping or net banking credential sharing (which were the earlier, insecure alternatives).
For lenders, AA-based underwriting enables cashflow-based credit assessment for millions of self-employed borrowers, micro-enterprises, and small businesses that lack formal credit histories but have healthy banking transaction patterns. A lender can access 12-24 months of bank statement data in seconds via AA consent, compared to days of manual document collection previously.
By 2024, the AA ecosystem had grown to over 100 million consents and dozens of active FIPs and FIUs. The framework was expanding to include GST data (through GSTN as FIP) and health insurance data, broadening its utility beyond pure financial data.