This section covers how data holders may ask a consumer to authorise the disclosure of CDR data.

<aside> <img src="/icons/info-alternate_gray.svg" alt="/icons/info-alternate_gray.svg" width="40px" /> New URL December 2, 2024

The CX guidelines have been re-launched on a new domain: cx.dsb.gov.au

For more information, refer to Change log: Consumer Experience (CX) Guidelines

</aside>

<aside>

Overview

In accordance with CDR Rule 4.24, the authorisation process must not:

In addition, CDR Rule 4.22 states that a data holder’s processes for asking a CDR consumer to give or amend an authorisation must:

Authorise is the third stage of ‣.

Authorise is the third stage of ‣.

The Authorise stage typically consists of two steps:


CX Guidelines for Authorise

The below CX Guidelines cover variations for the authorisation process. Note: The Account selection and Confirmation steps are conflated in this section.

A high level example of the relationship between Account selection and Confirmation, the two main steps in Authorisation.

A high level example of the relationship between Account selection and Confirmation, the two main steps in Authorisation.

Authorisation to disclose

These guidelines provide examples for how to implement the authorisation flow for common scenarios. Read more about Authorisation to disclose.