Part 3
Protections
Authorisation
40Accredited requestor must comply with prescribed duties in respect of authorisation
If an accredited requestor (A) seeks to obtain, or may accept, an authorisation from a customer (or a secondary user on their behalf),—
- A must take the prescribed steps (if any) to enable the customer or secondary user (as the case may be) to be reasonably informed about the matter to which the authorisation relates; and
- A must use only prescribed methods (if any) to obtain the authorisation (for example, a tool that requires the customer to perform an affirmative action in order to give the authorisation); and
- A must not obtain, or accept, an authorisation from a customer (or secondary user) in the prescribed circumstances; and
- A must comply with any other requirements in connection with obtaining, or accepting, the authorisation.
In this section, prescribed means prescribed by the regulations or the standards.