Tool 91 · Open Banking & APIs · Cat-5

Consent & Permission
Dashboard Builder

Design, preview, and validate customer-facing Open Banking consent dashboards across UK OBIE, EU PSD3/PSR, and US CFPB 1033. Generate compliance checklists and export to SVG, Markdown, or JSON. Browser-only — all synthetic data, zero PII.

UK OBIE · EU PSD3 · US CFPB 1033 4 Tabs · Live Preview · Export ePrivacy / PSD3 consent management; non-compliance fines up to 4% global turnover. v1.0
Third-Party Provider (TPP)
Standard
Account Scopes
Access Duration
Linked Accounts (Synthetic)
Scope & reliance — 🔒 All inputs are processed locally in your browser. No data is transmitted. Do not enter real personal data — use synthetic or anonymised inputs only. Embedded rates, thresholds, and regulatory citations are static reference values that may age — verify against current primary sources and your own data before relying on any output for commercial, legal, or compliance decisions. Deterministic logic · no inference · zero PII · CC BY 4.0.
Live Dashboard Preview UK OBIE

Manage Your Connected Apps

Acme Bank · Secure Portal
Compliance Score
Configure a standard in Tab 1 to generate the checklist.

Standards Comparison

Side-by-side reference for the three major Open Banking consent and permission dashboard frameworks.

Dimension UK OBIE EU PSD3/PSR US CFPB 1033
RegulationFCA / CMA Order 2017European Commission / EBACFPB (12 CFR Part 1033)
Live StatusLive since 2018Finalising 2026–2027Phased 2026–2030
Dashboard MandateCBPII dashboard mandated; CMA9 coveredYes — Article 68 PSR; all ASPSPsYes — §1033.31(c); phased by asset size
Consent Max Duration (AIS)90 days90 daysNo fixed limit (FDX recommended: 1 year)
SCA Re-auth Interval90-day rule (UK SCA-RTS)90-day rule (EBA RTS Art. 10a)Not mandated federally
Scope StandardOBIE PermissionCodes v3.1PSD3 Annex II data categoriesFDX data clusters v5.2
Revocation WindowImmediateImmediate + irrevocableEffective within 24 hours
TPP RegistryFCA RegisterNational NCA EBA directoriesCFPB DataHub (planned)
Consent ArtifactOBReadConsent1 JSON objectPSD3 authorisation objectFDX ConsentGrant object
Last Access Timestamp RequiredNot mandated in v3.1Yes — Article 68(2)(c) PSRRecommended (FDX)
Audit Trail RequirementImplied by FCA rulesExplicit — full consent historyRetained 7 years per BSA
Cross-border TPP SupportEEA passporting ended (Brexit)Full EEA passporting under PSD3No passporting; state-by-state
Scope for Screen-Scraping BanEffective (dedicated interfaces required)EffectivePost-Oct 2026 (large FIs)
First Covered InstitutionsCMA9 banks (live)All authorised ASPSPsAssets > $500B → Apr 2026
Data Holder LiabilityPSR 2017 liability frameworkPSD3 Articles 72–74CFPB enforcement + UDAAP

Export

Export the current configuration as SVG diagram, Markdown compliance memo, or JSON for developer handoff.

📐
SVG Diagram
Inline SVG of the dashboard preview — ready for board decks, architecture documents, or Confluence pages.
📋
Markdown Memo
Formatted compliance memo with checklist, score, standard reference, and recommended actions for unchecked items.
{ }
JSON Config
Structured configuration object for developer handoff — TPP identity, scopes, duration, accounts, standard metadata.
JSON Preview
Configure a consent in Tab 1 to generate the JSON output.
Markdown Preview
Configure a consent in Tab 1 to generate the Markdown output.