‣
Overview
The Consent Model represents the current scope of the CX Working Group.
The Consent Flow
The Consent Flow consists of 3 stages:
- Consent: where the consumer is asked to consent to a data recipient collecting and using their CDR data
- Authentication: where the consumer is asked to authenticate themselves with the data holder
- Authorisation: where the consumer is asked to authorise the disclosure of their CDR data to the data recipient
Read more about The Consent Flow
Consent Management
Consent Management refers to the artefacts and controls provided to a consumer to manage an existing consent or authorisation. This includes:
- A consumer dashboard provided by the data recipient (ADR) to manage collection and use consents
- An consumer dashboard provided by the data holder (DH) to manage authorisations
- The withdrawal of consents and authorisations
- A joint account disclosure option management service- where joint account holders can elect and amend disclosure preferences relating to their joint accounts (via DH)
Notifications
Notifications refers to the artefacts that give consumers control over their data sharing arrangements. This includes:
- CDR Receipts- required for ADRs and optional for DHs to provide to consumers in relation to consents/authorisation information
- 90 day notification- required for ADRs to alert consumers to ongoing data sharing arrangements
- The management of joint account alternative notification schedules and secondary user instruction (via DH)
Example prototype
Last updated
This page was updated @Jun 6, 2025
Quick links to CX Guidelines:
The Consumer Data Standards Program is part of Treasury. Copyright © Commonwealth of Australia 2023.
The information provided on this website is licensed for re-distribution and re-use in accordance with Creative Commons Attribution 4.0 International (CC-BY 4.0) Licence.