The lender makes a data consent request, which is routed to the AA.
The user receives a notification through the AA that the lender wants to access 3 months' bank statements.
The user can decide to approve or reject the consent request.
If they approve the request, the data is fetched from the FIP—in this case, the bank—and shared with the lender.
The consent request carries details about the type of data, how long the FIU needs it for, and how they plan to use it. The user can take into consideration all of these factors before deciding to approve or reject the request. The user can also decide to withdraw consent for a previously-approved request. This way, the user remains the custodian of their own data.
Are you already integrating? Check out the AA Integration Guide here.