The Consent Management customer journeys are described in the following pages:
2.Combined Dashboard Bank AISP
3.Combined Dashboard Bank ASPSP
Dashboards and Revocation
Dashboards should be easy to find, with clear signposting and simple to use. No barriers or obstructions should be put in place of customers seeking to revoke consent or access. Dashboards can be very simple, but in two cases we recommend adding additional functionality. There are:
Linked Consent and Access Dashboards:
a provider who is both an ASPSP and a TPP will need to carefully design dashboards that help customers manage their access (i.e. data being accessed by other TPPs) and their consents (i.e. data which they are accessing as a TPP). Research suggests consumers would prefer the two dashboards to be linked but separate. This could be achieved, for example, by presenting on a single screen with the ability to toggle between them.
Combined Consent and Onward Sharing Dashboards:
a provider who is onward sharing data to other providers should find ways to make these arrangements transparent to consumers and give control over this onward sharing. This is usually covered in the Privacy Notice. Dashboards should provide a simplistic view of account information being shared, as well as, onward shared in a clear and transparent manner. For example, the dashboard could be a visual representation of key elements contained in the Privacy Notice, making it easy for the customer to understand.