Cyber Insurance Claim Rejected After Online Fraud? How to Fight It

Reviewed on: 2026-06-12.

The answer in short: a rejected personal cyber insurance claim is usually rejected on one of three grounds, a policy exclusion, the “reasonable care” condition, or late or incomplete reporting. Find the exact clause in the rejection letter, build a dated fraud timeline, and gather your two core proofs, the complaint from cybercrime.gov.in or the 1930 helpline and your bank's written dispute reference. Use these to send a point-by-point appeal to the insurer's Grievance Redressal Officer. If that fails, escalate to IRDAI on Bima Bharosa and then to the Insurance Ombudsman, who can pass a free binding award up to Rs 50 lakh. RTI does not reach a private insurer, but it can reach the police or cyber cell to ask about action taken on your fraud complaint.

Every successful appeal starts with knowing the exact ground used against you. Open the rejection letter and underline the words it uses: an exclusion name, the phrase “reasonable care” or “duty of care”, a “voluntary disclosure of credentials” carve-out, a “known scam” or “unverified investment” exclusion, or a “delay in intimation” condition. Open your policy schedule and full wording and find the same clause. Note the language and any time limit. If the insurer gave no clear reason, write and ask for the specific clause in writing. You cannot rebut a ground you have not pinned down.

On one page, list in date-and-time order: when the fraud message or call reached you, what you did, the exact moment money left your account, when you realised it was fraud, and every report you then made, to the bank, to 1930 or cybercrime.gov.in, and to the insurer. The timeline does two jobs at once. It shows you reported quickly, and it shows you did not knowingly authorise the loss. Attach the screenshots and statements that back up each line. Keep it factual, do not exaggerate.

These two complaints are both your remedy and your evidence, and most personal cyber policies require both.

• Cybercrime portal or 1930 helpline. Report at cybercrime.gov.in or call 1930 as early as possible. Fast reporting also improves the chance of a transaction freeze and partial recovery. Keep the acknowledgement number.
• Written bank dispute. Send a written complaint to your bank disputing the transaction and keep the reference and reply. A verbal call to the helpline is not enough.

If you have an FIR, keep it too.

Write to the insurer's Grievance Redressal Officer, quoting the policy and claim number, and take each rejection ground in turn.

• If they cite reasonable care, show the steps you took: a screen lock, updated security, and that you were deceived by a convincing impersonation.
• If they cite voluntary disclosure, show you were tricked, not careless, with screenshots of the spoofed page or caller.
• If they cite delay, explain the reason and attach proof of when you discovered the fraud.

Ask for a written, reasoned decision within the time their grievance policy states.

Aisha, a schoolteacher in Lucknow, held a personal cyber fraud cover of Rs 2 lakh as an add-on to her bank account. She got a call from someone claiming to be from her electricity provider, warning her connection would be cut that night unless she “verified” a payment through an app. She installed the app they sent, and Rs 78,000 was transferred out in two debits. She called 1930 within an hour, got an acknowledgement, and wrote to her bank the same evening disputing the debits. She then filed a claim. The insurer rejected it citing “voluntary disclosure of credentials and screen-sharing”.

Aisha appealed. She attached the 1930 acknowledgement, the bank dispute reference, her call log showing the spoofed caller ID, and a screenshot of the fake app's message. Her point was simple: she was tricked by an impersonation, not careless, and she reported within an hour. The GRO upheld the rejection, so she registered on Bima Bharosa, uploading the rejection letter, her appeal, and the insurer's reply. When that did not resolve it, she filed with the Insurance Ombudsman within the one-year limit. The case rested on the timeline and the two complaints, which showed prompt reporting and a deception, not an authorised transfer.

To: The Grievance Redressal Officer, [Insurer]

Subject: Appeal against rejection of cyber insurance claim, Policy No.
[number], Claim No. [number]

My claim arising from online fraud was rejected by your letter dated [date].
I appeal and request a fresh reasoned review.

1. The fraud: on [date and time] I received [a phishing message / a call
impersonating (entity)]. An unauthorised transaction of Rs [amount] left my
account/card [last 4 digits] on [date]. I did not knowingly authorise it.

2. Prompt reporting: bank in writing on [date] (ref [number]); 1930 /
cybercrime.gov.in on [date] (ack [number]); your company on [date] (claim ref
[number]).

3. Reply to the ground: your letter relies on [exact clause]. [I took
reasonable care: (steps). / I was tricked by a spoofed (caller/website), not
careless, as the screenshots show. / There was no delay, or the delay was due
to (reason) with proof attached.]

Please reconsider and settle Rs [amount], and give a written reasoned decision
citing the exact clause if you maintain the rejection. Failing this I will
escalate to IRDAI on Bima Bharosa and the Insurance Ombudsman.

Enclosures: rejection letter, fraud timeline, cybercrime acknowledgement, bank
dispute reference, statement marking the fraud entry, screenshots.

[Name, mobile, email, date]

1. Insurer claims team: ask for the exact clause used to reject.
2. Grievance Redressal Officer: send the point-by-point appeal.
3. IRDAI Bima Bharosa: at bimabharosa.irdai.gov.in if the GRO does not satisfy you.
4. Insurance Ombudsman: free, binding award up to Rs 50 lakh, at cioins.co.in, within one year of the final rejection.
5. Consumer commission or civil court: for large or contested amounts.

A private insurer is not a public authority, so RTI cannot get its claim file. But once you have filed on the cybercrime portal or an FIR, those records sit with the police, a public authority. You can RTI the relevant police PIO to confirm your complaint or FIR was registered, to ask the current status and action taken, and to ask whether a freeze or recovery request was sent to the beneficiary bank. Frame questions around status and action taken, not investigation strategy, because the police may withhold details that could impede an ongoing investigation. An action-taken reply strengthens your insurance appeal and Ombudsman case. See how to file RTI online and first appeals if the police PIO is silent. If your bank is a private bank, you cannot RTI it; use the banking ombudsman.

• Giving up after the first rejection. It is the start of the appeal, not the end.
• Arguing in general terms instead of pinning down the exact clause.
• Skipping the cybercrime or bank complaint, which most policies require.
• Deleting the phishing SMS, the caller's number, or the spoofed email out of frustration.
• Reporting late and not explaining the reason in writing.
• Trying to RTI the private insurer, which wastes weeks.
• Accepting a verbal “no” instead of a written, clause-cited rejection.

Not automatically. Insurers lean on the reasonable-care and voluntary-disclosure clauses, but if you were deceived by a convincing impersonation rather than carelessly handing over credentials, you can rebut it. Show the spoofing and your prompt reporting. The final view depends on your policy wording and the facts.

The 1930 call and the cybercrime.gov.in portal complaint are linked, and the portal usually generates a written acknowledgement number. Keep that acknowledgement, because your policy and the Ombudsman will look for a written record, not just a call.

Many personal cyber policies exclude losses from unverified investments, trading apps, or “get rich” schemes. Read the exclusion list. If the loss was a straight unauthorised debit rather than money you chose to invest, argue it falls outside that exclusion.

Yes, you can claim the uncovered balance, subject to the sum insured and the policy terms. Tell the insurer exactly what the bank recovered, because you cannot be paid twice for the same loss. Attach the bank's recovery confirmation.

Some personal cyber policies cover identity-theft costs, such as legal expenses to clear your name and the cost of disputing fraudulent accounts. Check whether your policy has an identity-theft section and what it pays. File the cybercrime complaint and the credit-bureau dispute as evidence.

Cover depends on who is named as insured and whether family members are included. Check the policy schedule. If only you are the insured, a transaction from a relative's separate account may fall outside cover, even if the fraud was similar.

• Critical illness claim rejected for non-disclosure
• PMFBY crop insurance claim not paid
• Bank account debit freeze: cybercrime lien removal
• All practical guides
• How to file RTI online

Download the cyber insurance claim appeal checklist (PDF).