Updated @May 1, 2024
These guidelines provide examples for how to implement amending consent scenarios.
On this page
Overview
In accordance with CDR Rule 4.12B(3), the accredited person may invite a CDR consumer to amend a current consent if:
(a) the amendment would better enable the accredited person to provide the goods or services referred to in paragraph 4.3(1)(a); or (b) the amendment would: (i) be consequential to an agreement between the accredited person and the CDR consumer to modify those goods or services; and (ii) enable the accredited person to provide the modified goods or services.
Data recipients should also provide the cdr_arrangement_id of the consent to the data holder as part of the amendment process. This will provide consumers with a streamlined authorisation experience as required in the amending authorisation standards. For more information, see Amending Authorisation Standards.
When amending a collection consent to adjust the duration or change the data sets collected, the consumer will need to authenticate and authorise with the data holder. Amendments to disclosure or use consents don't require the consumer to be redirected to the data holder.
Data recipients may also allow consumers to amend the attributes of a consent via their consumer dashboard. The guidelines in this section provide examples of how to implement amending consents where the data recipient invites the consumer to amend a current consent.
Wireframes and guidelines
Amending collection and use consent
The following wireframes show a basic example of amending duration and datasets in a collection and use consent.
Amending business consumer disclosure consent
The following wireframes show a basic example of amending duration in a business consumer disclosure consent.
Download open source asset
Open sources design assets are created in Figma for the purposes of assisting implementation. This Figma file contains annotated wireframes and working prototypes for Amending consent, including:
- Amending collection and use consent
- Amending business consumer disclosure consent
| Item | File | Date released | Version introduced |
|---|---|---|---|
May 1, 2024 | 1.30.0 |
For past versions, refer to Change log.
References
These CX Guidelines were informed by consultations and research conducted in 2019 to 2022, including the following:
- Consultations
- ACCC 2020, Draft v2 Rules consultation (see concept 7.2 Amending consents)
- DSB 2021, Noting Paper 157 - CX Standards Arising from v2 Rules
- DSB 2023, Decision Proposal 276 - July 2023 Rules | Standards Impacts
- DSB 2023, Decision Proposal 333 - Business Consumer Provisions
- CX research
- Tobias 2019, Phase 1 CX report
- GippsTech 2019, Phase 2, Stream 1 report
- Greater than X 2019, Phase 2, Stream 2 report
- Tobias 2019, Phase 2, Stream 3 report
- DSB 2020, Phase 3, Round 3 report
- DSB 2020, Phase 3, Round 4 and 5 report
- DSB 2020, Phase 3 Round 8 summary (PDF)
- DSB 2021, Disclosure Consent Research Report (Q4 2021, R1-2)
- Other
- OAIC 2022, Consent (Data minimisation principle)
Quick links to CX Guidelines:
→ cx@consumerdatastandards.gov.au → cx.cds.gov.au | cds.gov.au
