Generative Artificial Intelligence (AI) technology is rapidly proliferating globally, demonstrating the potential to shift paradigms in the banking industry. The ability to generate new content such as text, code, and images offers banks diverse opportunities including enhancing customer experience, increasing operational efficiency, and developing new services. The Korean banking industry is also actively embracing the introduction of Generative AI, with applications such as AI bankers, intelligent chatbots, and personalized product recommendations. However, behind this technological advancement lie complex legal and ethical challenges. Due to the highly regulated nature of the banking industry, the introduction of Generative AI gives rise to new risks that are difficult to fully address with the existing legal framework. These include issues related to personal information protection, potential bias and discrimination in algorithms, intellectual property rights for AI-generated content, ambiguity of liability in case of AI system errors, evolving cybersecurity threats, and compliance with existing financial regulations. This paper aims to comprehensively identify and analyze the legal and regulatory issues related to the utilization of Generative AI in the domestic banking industry. It evaluates the applicability and limitations of current domestic laws (such as the Personal Information Protection Act, Banking Act, and the AI Basic Act) and major international norms (like the EU AI Act). Furthermore, it seeks to propose policy alternatives that consider the Korean regulatory context and measures to mitigate legal risks. In particular, it intends to contribute to resolving the uncertainties and legal ambiguities arising from the gap between technological development, market-driven adoption trends, and the response speed of legal and regulatory environments. The research confirms that the introduction of Generative AI poses significant legal challenges across core regulatory areas of banking, including internal controls and risk management, financial consumer protection, and the scope of business and consignments. It also highlights issues in harmonizing with existing laws such as the Personal Information Protection Act and the Electronic Financial Transactions Act, as well as the forthcoming AI Basic Act. Notably, the “black box” nature of AI systems and the increasing autonomy of AI through task delegation and automated decision-making can create fundamental difficulties in fulfilling the duty of explanation and applying liability doctrines under the current legal framework. Therefore, this study proposes strengthening AI-related internal control and risk management obligations through amendments to the Banking Act, specifying financial consumer protection regulations, and rationalizing regulations on the scope of business and outsourcing. It also emphasizes the need for a new regulatory framework, including the legalization of the “7 Key Principles for Financial AI,” the introduction of differentiated regulations centered on high-risk financial AI, the specification of standards for explainability and fairness, and the establishment of mechanisms for AI liability allocation and dispute resolution. Furthermore, active policy support is highlighted, such as expanding financial data infrastructure, enhancing the effectiveness of regulatory sandboxes, fostering professional talent, and supporting R&D and standardization of core technologies. This research, by examining Generative AI issues from a Banking Act perspective and presenting practical alternatives, aims to contribute to academic discourse and policy formulation.