Become an accredited data recipient

How to become accredited

The Australian Competition and Consumer Commission (ACCC) manages the accreditation process. 

Get started

The step-by-step process

  1. Review documentation
  2. Check the requirements

    Carefully read the legal obligations and IT requirements you’ll need to meet as an accredited data recipient. The IT requirements include the information security controls. 

  3. Applicant applies for an account to access Consumer Data Right Participant Portal

    In this step, an account is created for the applicant’s organisation, which will need to verify their identity. This must done by an office holder of the organisation.


  4. Applicant receives activation code

    The ACCC sends an activation code to the applicant.

  5. Applicant logs in and applies

    The primary business contact logs into the portal and starts an application. 

    - Non-ADI applicants must complete the standard application form.

    - Authorised deposit-taking institutions (ADIs) can complete a streamlined application form.

    - Applications can be saved and continued later.

  6. Applicant submits application

    After an application is submitted it can be viewed but not changed. The applicant can, however, ask for changes or submit additional information.

  7. ACCC checks application is complete

    If an application is incomplete, it will be returned.

  8. ACCC assesses application

    This is based on the accreditation criteria below.

  9. ACCC makes decision

    The ACCC may accredit the applicant, accredit the applicant with conditions or refuse to accredit the applicant.

  10. Applicant receives outcome

    The ACCC informs the applicant of the outcome.

  11. Applicant must pass on-boarding requirements

    Accredited data recipients need to pass Consumer Data Right Register on-boarding requirements, including a level of conformance testing, before they can be added to the Consumer Data Right Register. Accreditation then takes effect. When accreditation is granted, applicants receive an accreditation number.

    Get started

Accreditation criteria

To become accredited, applicants must demonstrate that they:

  • are a fit and proper person/organisation to manage Consumer Data Right data
  • have taken steps to adequately protect data from misuse, interference, loss, unauthorised access, modification or disclosure
  • have internal dispute resolution processes meeting the requirements of the Consumer Data Right Rules (for banking, this means their processes must comply with provisions of the Australian Securities and Investments Commission’s Regulatory Guide 165 Licensing: Internal and external dispute resolution)
  • belong to a relevant external dispute resolution scheme
  • have adequate insurance to compensate Consumer Data Right consumers for any loss that might occur from a breach of the accredited data recipient’s obligations
  • have an Australian address for service.

Streamlined accreditation 

In banking, applicants who are ADIs (and are not a restricted ADI under the Australian Prudential Regulation Authority’s framework) meet the criteria for streamlined accreditation.  

Sample application forms

Applications for accreditation must be made through the online application form in the Consumer Data Right Participant Portal. However, to prepare you can download a sample application form with all the questions from the online form. The streamlined version of the form is available only for applicants who are ADIs.

For more information see:

You may also like to look at the Consumer Data Right Participant Portal user guide

Would you like to find out more about participating in Consumer Data Right?

Related links

Authorised by the Australian Government, Canberra.