Submission to ACCC CDR Rules Framework

CPRC continues to highlight the benefit and need for the implementation of economy-wide reforms in Australia alongside the introduction of the CDR. Such changes are needed to manage and minimise the potential harm of data leakage outside of the CDR where there is lower or in some instances no protection for consumer privacy and CDR data. For the CDR regime to garner consumer trust and uptake, consumers need to be provided with the confidence that their data will be adequately protected.

In addition to this, where possible, the Rules Framework should strive to achieve Privacy by Design and facilitate processes to improve consumer understanding and control over their data. This includes concepts such as data deletion by default where the data has become redundant or accreditation has been revoked, and a centralised dashboard for consumers to manage their data and consent.