Archived 2023.09.04. Content moved to CDS Guide, Guidance on revocation or withdrawal of consent
In the CDR Rules (for example Part 4, Division 4.4 (Rule 4.25)) it outlines where authorisation is withdrawn a DH must be able to provide notifications to ADRs in accordance with the data standards
How do the Consumer Data Standards provide for these notifications to occur when there are no PUSH allowances within the APIs?
The mechanism for communication consent withdrawal to an ADR when revocation occurs on a DH dashboard is to call the CDR Arrangement Revocation End Point hosted by the ADR. This is documented in the standards in the CDS Security Profile, Security Endpoints.