1CO.03a.02
02
(3) When asking a CDR consumer to give consent, the accredited person must give the CDR consumer the following information: (f) if the CDR data may be disclosed to, or collected by, a direct or indirect OSP (including one that is based overseas) of the accredited person: (i) a statement of that fact; and (ii) the name of the OSP; and (iii) the OSP’s accreditation number (if any); and (iv) if the OSP is based overseas—the country in which it is based; and (v) a link to a webpage where the accredited person’s CDR policy and the OSP’s CDR policy (if any) can be directly viewed; and (vi) a statement detailing why the OSP needs to access the consumer’s CDR data; and (vii) a statement that the consumer can obtain further information about why the OSP needs to access the consumer’s CDR data from the policy if desired;
CDR Rule 4.11(3)(f)
Consent: Collection and use consents
12 August 2020 or earlier
5 March 2025