When the Reserve Bank of India introduced payment aggregator licensing requirements in 2020, the goal was straightforward: bring order to the chaotic online payments ecosystem. Require proper capitalisation, impose security standards, ensure customer protection, and eliminate fly-by-night operators who were handling merchant payments without adequate oversight.

The regulations worked. The worst actors have been cleaned out. Customer funds are better protected. Security standards have improved across the industry.

But the compliance requirements have also created a barrier that smaller payment aggregators can’t overcome. The capital requirements, ongoing compliance costs, and technical infrastructure standards effectively require scale to be viable. That’s forcing consolidation and limiting competition in ways that may not have been intended.

The Requirements

Payment aggregators need a minimum net worth of ₹15 crore at authorization and must maintain ₹25 crore net worth plus 1% of aggregate outstandings after three years. For established players like Razorpay, Cashfree, or PayU, this is manageable. For smaller regional payment aggregators serving niche merchant segments, it’s prohibitive.

The ongoing compliance requirements add operational cost: dedicated compliance officers, regular audits, cybersecurity certifications, grievance redressal mechanisms, and reporting to the RBI on a regular schedule. Estimate around ₹2-3 crore annually in compliance costs for a mid-sized aggregator, more if you count the opportunity cost of engineering resources devoted to compliance rather than product development.

Technical requirements include data localisation, strict security controls, transaction monitoring systems for fraud detection, and settlement account structures that segregate merchant funds from the aggregator’s working capital. All necessary for customer protection, but each requirement adds infrastructure cost.

Who’s Been Squeezed Out

Smaller payment aggregators serving specific industries — education sector payments, small-ticket retail, regional language commerce — have been hardest hit. These operators understood their niches well and served merchants that larger aggregators often deprioritised. But they lacked the scale to absorb compliance costs efficiently.

Many have shut down or sold to larger players. The RBI’s list of authorized payment aggregators has fewer names than the market had active payment service providers five years ago. Some operators transitioned to become payment service providers (a lighter regulatory category for those who don’t hold merchant funds), but that limits their service offering.

Others have been acquired. Larger payment aggregators have picked up smaller competitors, gaining their merchant base while shutting down redundant infrastructure. This consolidation creates efficiency but reduces competition.

The Capital Requirement Problem

₹15 crore net worth translates to roughly $1.8 million USD. In global terms, that’s not an enormous barrier for a financial services license. But in the Indian payments market, where many transactions are small-value and margins are thin, it’s meaningful.

A payment aggregator processing ₹500 crore annually in transactions might earn 1-2% in merchant discount rate fees, generating ₹5-10 crore in revenue. After technology costs, salaries, customer acquisition, and general operations, maintaining ₹25 crore in net worth requires either significant funding or operating at scale for years before becoming profitable enough to meet the requirement.

Venture-backed players can raise capital to meet the threshold. Bootstrapped operators serving niche markets can’t. This creates a structural advantage for funded companies and disadvantages exactly the kind of scrappy, niche-focused operators who often serve underserved merchant segments best.

Compliance as a Competitive Moat

For large payment aggregators, compliance costs are effectively a moat. Razorpay and Cashfree can spread ₹3 crore in annual compliance costs across billions in transaction volume. A smaller competitor can’t.

This isn’t necessarily bad — scale-driven efficiency benefits merchants through lower fees and consumers through better service. But it does mean that market entry becomes harder, limiting the competitive discipline that new entrants provide.

When building payments infrastructure, whether you’re creating fraud detection systems or merchant analytics tools, understanding the regulatory context shapes what’s possible. Some technology consultancies, like Team400, have worked with payment companies to build compliance-friendly architectures that minimize regulatory burden while meeting all requirements, but even optimised compliance isn’t free.

The Security Justification

The RBI’s requirements aren’t arbitrary. Payment aggregators hold merchant funds in transit, making them targets for fraud and financial instability. The capital requirements ensure aggregators can absorb operational losses without putting merchant funds at risk. Security requirements protect customer payment data.

These goals are valid. Before regulation, there were payment aggregators with inadequate security, commingling of merchant and corporate funds, and customers left stranded when aggregators failed. The regulations prevent those outcomes.

But regulations always involve trade-offs. Tighter standards mean fewer market participants, which means less competition. The question is whether the balance is right — whether the customer protection benefits justify the reduction in competitive intensity.

Regional Payment Gaps

One consequence of aggregator consolidation is that regional payment preferences receive less attention. Large aggregators optimize for mainstream payment methods: UPI, cards, net banking. Niche payment methods — regional wallets, specific bank integrations important to certain geographies — get deprioritized.

Before consolidation, smaller aggregators sometimes filled these gaps. An aggregator focused on Northeast India would integrate with regional banks and support local payment preferences. A Kerala-focused aggregator would optimize for customer habits specific to that market.

As the market concentrates, these niche offerings matter less to aggregators optimizing nationally. Merchants in those regions have fewer payment options or need to work with multiple payment providers to serve their customers fully.

International Comparison

India’s payment aggregator requirements are comparable to payment institution licensing in Singapore or money transmitter licensing in various US states. Capital requirements, security standards, and ongoing compliance are standard globally for entities handling customer funds.

What’s unique to India is the interaction with UPI. Because UPI provides free, instant merchant payments, payment aggregators compete in a market where a government-backed solution already offers core payment functionality at zero cost. That makes the payments aggregation business harder to begin with, and compliance costs compound the challenge.

What Comes Next

The market structure is largely set now. The major payment aggregators have licenses, smaller players have exited or consolidated, and new entrants are rare. The next phase will focus on differentiation through value-added services: checkout optimization, fraud prevention, subscription billing, credit offerings to merchants.

Some functionality previously provided by smaller specialists will be offered by larger aggregators through partnerships or in-house development. Other functionality will simply disappear from the market if demand doesn’t justify development at scale.

The RBI has shown willingness to iterate on regulations based on market feedback. If merchant access to payment services becomes demonstrably worse — higher fees, worse service quality, reduced innovation — there may be adjustments to lower barriers for smaller operators or create tiers of licensing with different requirements.

For now, the Indian payment aggregation market is better regulated, more secure, and safer for customers than it was five years ago. It’s also less competitive, more concentrated, and harder to enter than before. Whether that trade-off serves India’s digital payments ecosystem in the long term will become clear over the next few years.