Consumer Data Right
What is a secondary user in CDR?
With so many different acronyms and terms, the rapidly evolving world of the Consumer Data Right (CDR) can be challenging to navigate. In this blog post, we aim to demystify what being a ‘secondary user’ in CDR means, and how a business can typically set a secondary user.
What is a ‘secondary user’ in CDR?
The CDR in Australia is designed to empower consumers by granting them greater control over their data. In this context, a 'secondary user' refers to an entity or individual that is authorised by the primary user (the ‘account holder’) to access and utilise their data. This authorisation opens up avenues for businesses to deliver more personalised and tailored services, fostering a dynamic and competitive marketplace.
How to Set Up a Secondary User
Key Pointers for Setting a Secondary User:
To become a 'secondary user' of a CDR account, an individual must meet the following criteria:
- Be at least 18 years of age.
- Have account privileges, enabling them to make transactions on the account of the account holder.
- Be the subject of a 'secondary user instruction' from the account holder, who must also be at least 18 years of age. This instruction is a directive to the data holder to treat the individual as a secondary user.
Secondary Users' Role:
- An individual CDR consumer, as an account holder, can nominate another person to be a secondary user.
- Secondary users have the authority to authorise data sharing from the individual CDR consumer's account on their behalf.
- Accounts held by individuals (or multiple individuals, e.g., joint accounts) can be configured to allow a third party (secondary user) to share consumer data from the relevant account with accredited data recipients.
Appointing and Removing Secondary Users:
- An eligible individual CDR consumer who is an account holder can appoint or remove a secondary user.
What Data Can a Secondary User Share?
A secondary user of an account may consent to the disclosure of the same types of data as an account holder. This includes, but is not limited to:
- Account data
- Transaction data
- Billing data
- Usage data
- Product-specific data
However, it's essential to note that a secondary user can only share their own customer data from the account. They are not permitted to share customer data, including personal information, of another person, such as the account holder or another secondary user.
About Fiskil
Fiskil offers two key solutions: a secure SaaS Data Holder and robust Data APIs. Trusted by top Energy Retailers and Banks, our Data Holder solution ensures safe and compliant data sharing. Our Data APIs extend this capability, covering over 97% of Australia's Banking and Energy sectors, enabling secure customer data access. Our commitment to innovation empowers enterprises and startups alike with tools for strategic growth and effective data management. Get in touch.
