The Central Bank of Nigeria (CBN) has introduced new rules for the Bank Verification Number (BVN) system, effective May 1, 2026. The policy update, communicated in a circular dated March 26, mandates financial institutions to establish a temporary watchlist for BVNs associated with suspected fraud. The BVN, an 11-digit identifier tied to a customer's biometric data such as fingerprints and facial images, is used by banks to verify identities and link multiple accounts to a single person.
Under the new framework, a BVN can be placed on the temporary watchlist for no more than 24 hours. During this period, banks must contact the account holder to verify the legitimacy of the flagged transaction. If no resolution is reached within the timeframe, the institution may proceed to restrict or freeze the associated accounts. The CBN emphasized that the measure is designed to enhance security while limiting prolonged disruptions to legitimate banking activities.
The apex bank also clarified that biometric verification can be triggered during suspicious transactions to confirm customer identity in real time. Payment service providers and financial institutions are required to comply with the updated guidelines, which form part of broader efforts to reduce identity-related fraud in the banking sector. The CBN did not provide statistics on fraud incidents but stated that the changes align with evolving cybersecurity threats.
Financial institutions must implement the new protocols by the May 1, 2026, deadline.
The 24-hour limit on the BVN watchlist suggests a deliberate shift toward balancing fraud prevention with customer access, acknowledging that prolonged account freezes can harm trust in digital banking. By capping restrictions at one day and mandating contact with the customer, the CBN is signaling that security measures must not override financial inclusion—a tension that has plagued Nigeria's rapid digital banking expansion.
This move fits into a global trend where regulators are recalibrating anti-fraud mechanisms to avoid over-policing legitimate users, especially in economies with high mobile banking adoption. Countries like India and Kenya have faced backlash over automated account blocks, prompting similar time-bound review processes. Nigeria's adjustment reflects growing recognition that frictionless security is key to sustaining digital financial growth.
For Nigerian consumers and Africa's expanding fintech ecosystem, the update could reduce the risk of arbitrary account restrictions that deter digital banking usage. While the policy does not directly affect oil prices or trade, its success may influence how other African regulators design identity systems in financial services.
If banks fail to implement timely verification processes, the 24-hour rule could become a loophole for fraudsters. Monitoring compliance and customer complaints after May 2026 will be critical.
