Updated @November 9, 2023
These guidelines provide examples for how account holders may change the sharing rights for other account users.
On this page
In accordance with CDR Rule 1.13(1)(e),
(1) A data holder must provide: (e) in relation to each account in relation to which a person has account privileges―a service that can be used by the account holder to: (i) make a secondary user instruction; and (ii) revoke the instruction.
The guidelines in this section provide examples for how account holders may change the sharing rights for other account users.
Wireframes and guidelines
Remove secondary user instruction
The following wireframes show a basic example for a withdrawing secondary user instruction. The process is made up of the following steps:
- Identifying the account with a secondary user instruction
- Reviewing the consequences of withdrawal
- Confirming the withdrawal
- Receiving a confirmation of withdrawal
(5) If the CDR consumer is a secondary user for an account, the data holder must also provide the account holder with an online service that: (b) has a functionality that: (iv) is no more complicated to use than the processes for giving the authorisations or instructions;
(1) A data holder must provide: (e) in relation to each account in relation to which a person has account privileges―a service that can be used by the account holder to: (ii) withdraw the instruction. Note 4: The services of paragraphs (c), (d) and (e) may, but need not, be online.
(5) If the CDR consumer is a secondary user for an account, the data holder must also provide the account holder with an online service that: (b) has a functionality that: (ii) allows for the withdrawal of the secondary user instruction;
(5) If the CDR consumer is a secondary user for an account, the data holder must also provide the account holder with an online service that: (b) has a functionality that: (vi) as part of the withdrawal process, displays a message relating to the consequences of the withdrawal in accordance with the data standards.
As part of the secondary user instruction withdrawal process, data holders MUST advise the consumer: 1. That removing a secondary user instruction will stop all current and future data sharing for the secondary user(s) 2. To review the consequences of withdrawal with the secondary user(s) before removing the secondary user instruction Note: The exact phrasing of this message is at the discretion of the data holder.
Consumers may have various account permissions to manage, such as joint account disclosure option management, nominated person services, and secondary user instructions. To facilitate consumer control and consent management, data holders should provide these services in intuitive and centralised locations in relation to their consumer dashboard.
If scrolling is required to view the total number of accounts, data holders should allow consumers to search and filter their accounts in a way that is aligned to the outcomes consumers are seeking. Example: A consumer may want to filter account types or data sharing preferences.
Data holders may provide optional functionality that allows a consumer to see which authorisations are associated with the account.
Data holders should introduce positive friction to the withdrawal flow to mitigate user error and unintended consequences. Data holders may choose to do this via a 2-step authorisation withdrawal process.
Data holders should notify the impacted secondary user(s) when their secondary user instruction is withdrawn. If a data holder does implement this functionality, the account owner withdrawing the instruction should be alerted to the fact that the secondary user(s) will be notified when the instruction is withdrawn.
Data holders should provide instructions on how to review and manage account permissions as part of the withdrawal process
Data holders should provide a message to consumers that withdrawal was successful. This message should be clearly visible on the dashboard and shown as soon as withdrawal has taken place.
Data holders should provide support pathways at appropriate points throughout the consent model. These may include before and after key decision points, such as confirming or withdrawing a sharing arrangement or permission.
Data holders can refer to accounts using recognised nicknames, icons, account numbers, and account type. They can also include information on other elements the account may refer to such as any related plans, services, properties, numbers, and products.
Note: Some interactions and screens have been omitted for simplicity.
Download open source asset
Open sources design assets have been created in Figma for the purposes of assisting implementation. This Figma file contain annotated wireframes and working prototypes for removing secondary user instruction.
Open sources design assets are provided in the form of version-controlled Figma files. These assets contain the annotated wireframe and working prototype published on this page, and have been reviewed for accessibility compliance. Assets are partially conformant to Web Content Accessibility Guidelines (WCAG) 2.1 level AA. These assets do not tend to accessible code and instead focus on visual presentation and readability.
The assets use the GOLD Design System; component rationale, accessibility support, and code documentation is available in the GOLD Design System website.
For more details, see
These CX Guidelines were informed by consultations and research conducted in 2019 and 2021, including the following:
- DSB 2021, Decision Proposal 160 - CX Standards | Non-individuals | Partnerships | Secondary users (see concept 2 Removing secondary user instruction)
- CX research
- Greater than X 2019, Phase 2, Stream 2 report
- Nielsen Norman Group 2019, 10 Usability Heuristics for User Interface Design (Flexibility and efficiency of use)
- Nielsen Norman Group 2019, 10 Usability Heuristics for User Interface Design (Error prevention)
- Nielsen Norman Group 2019, 10 Usability Heuristics for User Interface Design (Visibility of system status)
Quick links to CX Guidelines: