Checklist ref
2AU.00.31
Area
2AU. Redirect to Web with OTP
Wireframe ref
31
Type
CX Standard
Requirement level
MUST
Participant
Data Holder
Statement
Data holders and data recipients MUST state in consumer-facing interactions and communications that third parties do not need consumer passwords to access CDR data. The exact phrasing of this is at the discretion of the data holder and data recipient. Note: In this context, 'third parties' refers to entities on the ADR-side and does not include any third parties that the data holder may engage.
Reference
Authentication Standards, Common Authentication Standards, Authentication: Passwords
Example
Authenticate: Redirect to Web with One Time Password
Version introduced
1.35.0
Date introduced
22 September 2025
Date modified
Status
Active