What are a data holder's obligations and their impacts with respect to vulnerable customers?
There are a number of provisions in the rules relating to data holders and their vulnerable or potentially vulnerable consumers.
For example, data holders are able to refuse to ask for an authorisation, or to disclose required consumer data, where they consider this to be necessary to prevent physical or financial harm or abuse (Rule 4.7).
Data holders are also not required to update consumer dashboards for joint accounts where the data holder considers it necessary, in order to prevent physical or financial harm or abuse (Sch 3, Clause 4.14).
This is not an exhaustive list, but the above examples may assist you in finding other relevant provisions in the rules.