What Will Change in Banking Apps Starting April 22
Starting April 22, new security requirements for remote financial services will come into force in Uzbekistan. They affect the operation of banking applications and will impact everyday activities, including logging into accounts, making transfers, and linking cards.
In recent years, online transactions have become a routine part of life, but at the same time, the number of fraudulent schemes has increased. The updated rules take this risk into account and strengthen protection at the stages where violations most often occur. The main goal of these changes is to reduce the level of fraud and make digital services safer.
Biometrics Instead of Traditional Codes
Now, a number of actions will require biometric verification. This applies to logging in from a new device, changing a password, and linking a card.
Previously, in many cases, an SMS code was sufficient, but this method no longer provides adequate protection. Biometrics make it possible to ensure that the operation is being performed by the actual owner, not a third party. As a result, the risk of unauthorized access is significantly reduced.
Why It Matters Who the Phone Number Is Registered To
Special attention is given to the phone number used in the banking application. The system will now check whether it is registered in the name of the cardholder and whether it matches their PINFL (Personal Identification Number of an Individual).
If the data does not match, some operations may be restricted. At the same time, the card will not be blocked and will continue to function as usual. The focus here is specifically on protecting online access, where the risk of fraud is higher.
In this situation, users should check in advance who the number is registered to. If necessary, it can be re-registered in your name through the office of a mobile operator. This requires the personal presence of both the current number owner and the person to whom it will be reassigned. The service is paid, on average about 25,000 UZS, although the final cost depends on the operator.
It is also important to consider the timeframes. In some cases, processing an application may take up to 10 calendar days, so even if submitted in advance, the procedure may be completed only after the new requirements come into effect. As an alternative, you can issue a new SIM card in your own name and use it for banking services.
Control Over App Access
The changes also affect the login process itself. When using a new device, the system will reset some data and require access to be set up again. This is done to prevent third parties from using stored information.
There will also be an option to view active sessions — which devices have logged in and when. This gives users more control and allows them to quickly detect suspicious activity.
How Fraudulent Schemes Are Restricted
The new requirements take into account common fraud scenarios. For example, certain operations may be unavailable during a phone or video call. This is because scammers often try to control a user’s actions during a conversation.
In addition, applications will respond to remote access software. If the system detects such tools, operations may be blocked. This helps protect users in situations where an attacker attempts to gain control over the device.
Changes in Transaction Confirmation
Additional requirements will apply to one-time codes. They will be valid for a limited time and usable only on the device to which they were sent.
This approach makes it impossible to intercept and use them on another device. As a result, even if fraudsters attempt to interfere, confirming a transaction becomes significantly more difficult.
Data protection for users is also being strengthened. Information about cardholders will be displayed only partially to reduce the risk of leaks. Some operations, such as managing SMS notifications, will be available only through bank branches or self-service devices.
The new requirements slightly complicate familiar processes but make them noticeably safer. Additional checks and restrictions help protect customers from fraud and reduce risks when using digital services.