Updated @March 6, 2024
This section provide examples for how to implement Trusted Adviser disclosure consents.
On this page
Overview
Trusted adviser disclosure consents allow consumers to consent to an accredited data recipient, or CDR representative who holds their CDR data as service data, disclosing their CDR data outside the CDR system with certain professionals. These are professions that are considered to be appropriately regulated to receive CDR data, particularly due to consumer protection mechanisms that form part of their regulatory framework. This model facilitates access to relevant data for those working within these professions while ensuring that disclosure of data can only occur with a consumer’s consent.
In accordance with CDR Rule 1.10C, the accredited data recipient or CDR representative:
- can invite a CDR consumer to nominate one or more trusted advisers.
- has taken reasonable steps to confirm that the trusted adviser is a member of one of the classes outlined in CDR Rule 1.10C(2).
- must not make a trusted advisor disclosure consent a condition for supply of the goods or services requested by the CDR consumer, except where the only good or service that is requested by the CDR consumer is for CDR data to be collected from a data holder and provided to a trusted adviser.
For further guidance, see OAIC's Trusted advisers in the Consumer Data Right system.
Wireframes and guidelines
Detached flow - default example
The following wireframes show a basic example of a Trusted Adviser disclosure consent requested by an accredited data recipient. In this example,
- the consumer has selected their preferred trusted adviser during pre-consent;
- the collection/use consent has already been separately established, allowing a disclosure consent to be requested in a separate consent flow.
Equivalent rules for CDR representatives can be found in the CDR rules Division 4.3A.
Consolidated flow
The following wireframes show a basic example of a Trusted Adviser disclosure consent requested by an accredited data recipient. In this example,
- the consumer has selected their preferred trusted adviser during pre-consent;
- the data recipient is then requesting a collection consent, a use consent, and a disclosure consent in a single consent flow.
Equivalent rules for CDR representatives can be found in the CDR rules Division 4.3A.
Download open source asset
Open sources design assets are created in Figma for the purposes of assisting implementation. This Figma file contains annotated wireframes and working prototypes for Trusted Adviser disclosure consent, including:
- Detached flow - default example
- Consolidated flow
| Item | File | Date released | Version introduced |
|---|---|---|---|
March 6, 2024 | 1.29.1 |
For past versions, refer to Change log.
References
These CX Guidelines were informed by consultations and research conducted in 2019 to 2022, including the following:
- Consultations
- ACCC 2020, Draft v2 Rules consultation (see concept 5.1 TA disclosure)
- Treasury 2021, Draft v3 Rules consultation
- DSB 2021, Noting Paper 207 - Draft v3 Rules Analysis | Anticipated Data Standards
- DSB 2021, Decision Proposal 222 - CX Standards | Insights and Trusted Adviser Disclosure Consents
- CX research
- Tobias 2019, Phase 2, Stream 3 report
- DSB 2020, Phase 3, Round 3 report
- DSB 2020, Phase 3 Round 8 summary (PDF)
- DSB 2021, Disclosure Consent Research Report (Q4 2021, R1-2)
- Other
- Australian Government Style Manual 2021, Literacy and access
- OAIC 2021, Trusted advisers in the Consumer Data Right system
- OAIC 2022, Privacy Safeguard 12
Quick links to CX Guidelines:
→ cx@consumerdatastandards.gov.au → cx.cds.gov.au | cds.gov.au
