This audit would assess the effectiveness of the design and implementation of the Consumer Data Right (CDR).

The CDR is a secure online system that enables consumers to get value from data that is collected about them through the provision of specific goods and services by consenting to that data being shared with trusted accredited third parties. CDR is an economy-wide reform that will be rolled out sector by sector. The CDR has already been rolled out to banking and energy, with non-bank lending to follow as the third sector. The Treasury, Australian Competition and Consumer Commission (ACCC), and Office of the Australian Information Commissioner (OAIC) are the key agencies leading the CDR initiative. The Treasury leads policy development and determines which sectors should be included in the CDR, while the ACCC focuses on accreditation and compliance of data recipients, and the OAIC handles privacy and data breach notifications. The Data Standards Body develops the technical standards for how data is shared under the CDR, working closely with the Treasury, ACCC, and OAIC.