The Central Bank of Brazil (Bacen) has published Normative Instruction BCB No. 664, which regulates and sets deadlines for Information Technology Service Providers (PSTIs) to comply with the rules established in BCB Resolution No. 498, of September 5, 2025.
Based on this instrument, PSTIs must:
The instruction also emphasizes that failure to meet these deadlines may subject the PSTI to cautionary measures, which include, among other penalties, suspension of connection to the RSFN (National Financial System Network), suspension of specific services provided by the PSTI, restriction on contracting new clients or expanding services, etc.
Furthermore, according to BCB Resolutions No. 498/2025 and No. 495/2025, for unauthorized payment institutions and those connecting to the National Financial System Network via Information Technology Service Providers (PSTIs), the limit for TED and Pix transfers is set at R$15,000. This limitation may be removed when the participant and its respective PSTI comply with the new security control processes. Provisionally, participants who certify the adoption of information security controls may be exempted from the limitation for up to 90 days.
By Dr. Patricia Peck (CEO and Founding Partner), Dr. Graziella Rosa (Digital Consulting Manager), and Dr. Giovanna Pieralli (Lawyer Specializing in Digital Law and Banking Regulation).
BCB Resolution No. 501/2025, which amends BCB Resolution No. 142/2021, establishes strict procedures and controls for fraud prevention. The new guidelines must be adopted by […]
The National Football Day is celebrated on 07/19. A national passion, target of billions of dollars in investment and fierce historical disputes, the sport is […]
The Third Panel of the Superior Court of Justice (STJ) has ruled that banks and payment institutions must compensate customers who fall victim to social […]
Rua Henrique Schaumann, nº 270, 4º andar
Edifício Pinheiros Corporate,
São Paulo – SP | CEP: 05413-909
(11) 2189-0444