Logo
  • Overview
  • Consent
  • Authenticate
  • Authorise
  • Consent Management
  • Notifications
Data Standards Body | CX Guidelines

CX Guidelines

Overview

Consent

Authenticate

Authorise

Consent Management

Notifications

Keep in touch

DSB Newsletter

Website use

Accessibility Statement

Copyright

Privacy

Disclaimer

In the spirit of reconciliation, the Data Standards Body acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their Elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples.

Consumer Experience (CX) Guidelines
/
Overview
/
CX Checklist
/
CX Guidelines
/
05a. Conditions involving notification prior to first collection when holding data as a data holder

05a. Conditions involving notification prior to first collection when holding data as a data holder

Checklist ref

1CO.05a.18

Area
1CO. Consent
Wireframe ref

18

Type
CX Standard
Requirement level
MUST
Participant
Data Recipient
Statement

Data holders and data recipients MUST state in consumer-facing interactions and communications that third parties do not need consumer passwords to access CDR data. The exact phrasing of this is at the discretion of the data holder and data recipient. Note: In this context, 'third parties' refers to entities on the ADR-side and does not include any third parties that the data holder may engage.

Reference

Authentication Standards, Common Authentication Standards, Authentication: Passwords

Example

Consent: Collection and use consents

Version introduced
1.35.0
Date introduced

17 September 2025

Date modified

Status
Active