Here is the honest situation. Australia's Consumer Data Right lets consumers share their banking, energy and other data with accredited recipients, and it is a demanding regime. It requires accreditation with the ACCC, adherence to the thirteen CDR privacy safeguards, a strict consent model with a consumer dashboard, conformance to the CDR data standards for APIs and consent flows, the Schedule 2 information security controls with an assurance attestation, and eligible data breach reporting. Building that program and evidencing it to the ACCC and OAIC is a major effort, and an entity whose Schedule 2 attestation or consent dashboard falls short is exactly where accredited entities fall short.
This Kit removes that build. It is every CDR obligation written as an adopt-ready control you personalize in a weekend, with the evidence the ACCC and OAIC examine.
What you get, the moment you buy
Grounded in the Consumer Data Right regime, the CDR Rules and the CDR data standards, with accreditation, the thirteen privacy safeguards, the consent model and dashboard, the data standards and the Schedule 2 information security controls and attestation called out. Editable Word and Excel files.
What one control looks like
This is scope, accreditation and the CDR roles, where participation begins. All 37 are built to this depth.
Why this is not another template pack
- The evidence is the point. An obligation you cannot evidence risks your accreditation. This tells you what the ACCC and OAIC examine and where entities fall short, for every control.
- Safeguards, consent and Schedule 2 built in. The thirteen privacy safeguards, the consent dashboard and the Schedule 2 security controls are written into the controls, the substance the CDR requires.
- Built on a mapped compliance corpus, not one person's opinion, from a graph of thousands of controls across standards.
- It compounds. The CDR privacy safeguards align with the Australian Privacy Principles and ISO 27001, so this work feeds your wider privacy and security program.
Who buys this
Data holders and accredited data recipients in the CDR, and the privacy, security and compliance leads who own it, plus entities pursuing accreditation. Whether it is a first accreditation or an annual attestation, you save weeks and walk in with the safeguards, consent and Schedule 2 structured.
Common questions
Is it really editable? Yes. Word and Excel files you own and adapt. No portal, no subscription.
Is this legal advice? No. It is an implementation toolkit grounded in the CDR Rules and standards. For a specific matter consult counsel; this gets your controls and evidence in order fast.
Does it cover the privacy safeguards? Yes. All thirteen CDR privacy safeguards are built as controls, because they are the core consumer protections.
Does it cover Schedule 2 security? Yes. The Schedule 2 information security controls and the assurance attestation are their own control group.
What if it is not for me? A 30-day money-back guarantee.
Instant digital download · 30-day money-back guarantee · The Art of Service Pty Ltd, GPO Box 2673, Brisbane QLD 4001 · support@theartofservice.com