From 1 March 2026 microfinance organisations (MFOs) in Russia will be required to collect and verify borrower biometrics through the unified biometric system (EBS) when issuing remote microloans. Industry participants warn the change will affect millions of customers and prompt a reshaping of the sector as smaller lenders weigh the cost and operational burden of compliance.
Biometric identification for microloans
Under the new rules, remote lending without a matching biometric record in EBS will be prohibited for microfinance companies (MFKs) that can issue loans up to 1 million roubles and may place bonds. Microcredit companies (MKKs), which are limited to loans of up to 500,000 roubles per borrower and cannot issue bonds, will have until spring 2027 to collect biometric data.
Regulators and market bodies say the move aims to strengthen identity verification and reduce fraud. However, representatives of the sector say the measure is one of the most sensitive regulatory changes for micro-lending in recent years. Many MFKs lack the necessary digital infrastructure and face implementation costs running into tens of millions of roubles to deploy secure mobile apps and server systems that interface with government services.
Executives report that several players will change legal status to avoid falling under the stricter early deadline, while others plan to channel lending through subsidiaries with MKK status. “We will change our status from MFK to MKK in the near term,” said the chief executive of one lender, adding that other firms plan similar moves. The result, industry observers say, will be a temporary contraction in remote lending by firms unable or unwilling to meet the technical demands.
Market estimates suggest only 3–4 million people currently use biometric services, while the active customer base for microfinance organisations stands at roughly 15 million. Self-regulatory organisations forecast that at the initial implementation stage at least one third of customers may be unable to obtain loans remotely, pushing some to seek alternative and potentially illegal credit channels.
Practically, lenders will need to rely on mobile applications and integration with Gosuslugi services. A two-step process will be used: customers grant access to their digital profile and then confirm identity via biometric matching in EBS. Consumers will therefore need to have previously submitted a facial photo and voice sample at a bank or other authorised point.
Alongside biometric requirements, other regulatory changes will alter lending practices. From 1 January, lenders will no longer be able to use borrower self-declaration to calculate debt burden for loans under 50,000 roubles; firms must rely on confirmed income data. From 1 April the maximum effective cost of consumer credit will fall from 130% to 100% per annum. From 1 October 2026 a borrower may hold no more than two loans with an annual cost above 200% simultaneously, and a three-day cooling-off period will be introduced after repaying a loan before a new one can be taken.
Industry leaders say the combined effect of these measures will be to make remote lending safer and to curb predatory practices. At the same time, they warn the changes will be disruptive: lenders must balance considerable implementation costs with tighter consumer protections, and some vulnerable borrowers may find formal credit harder to access in the short term.
Key Takeaways:
- From 1 March 2026 microfinance organisations in Russia must verify borrowers via the unified biometric system (EBS), affecting millions.
- Many lenders plan to change status or shift lending to subsidiaries to avoid early compliance costs and deadlines.
- New rules include limits on overpayment, tighter income verification and caps on high-cost loans, altering access for vulnerable borrowers.
- Implementation demands significant IT investment and a move to mobile-app based identification through Gosuslugi and EBS.
