Checklist ref
1CO.00.58
Area
1CO. Consent
Wireframe ref
58
Type
Common Standard
Requirement level
MUST
Participant
Data Recipient
Statement
Where Redirect to App is unable to be used for the purposes of CDR authentication: • Data recipients MAY provide decoupled consent experiences that facilitate separation of the Consumption Device from the authorisation flow. • Data holders MAY provide decoupled authorisation experiences that facilitate separation of the Consumption Device from the Authentication Device. If implemented, data holders and data recipients MUST support decoupled authentication in accordance with any relevant consumer experience authentication and security profile standards.
Reference
Authentication Schedule, Decoupled Authentication
Example
Consent: Collection and use consents
Version introduced
1.35.0
Date introduced
17 September 2025
Date modified
Status
Active