Functional Requirements: HaaS (Non-bank Lending) #
Last Updated: January 29, 2024
Definitions and Interpretations
The following definitions apply:
- Biza Guides
- refers to the technical documentation hosted at https://guides.biza.io
- Data Standards
- refers to the Data Standards website hosted at https://consumerdatastandardsaustralia.github.io/standards
- Customer Data Source
- refers to the customer integration point, typically the Data Adapter as specified within Biza Guides
Identity Services #
Provide the following functional requirements related to identity services:
| Functional Requirement | Category | Requirement |
|---|---|---|
| I1 | Identity | Comply with the CDR Standards Information Security Profile |
| I2 | Identity | Comply with the Financial-grade API specification |
| I3 | Identity | Incorporate an arrangement establishment interface (“consent flow”) |
| I4 | Identity | Store and maintain the arrangement |
| I5 | Identity | Incorporate consent revocation interfaces as specified within the Data Standards |
| I6 | Identity | Manage and maintain OAuth2 Tokens in accordance with the Data Standards |
| I7 | Identity | Make available the Dynamic Client Registration interface, as prescribed by the CDR Standards, for Data Recipients to establish a registration |
| I8 | Identity | Manage and maintain CDR Metadata including the synchronisation of Data Recipient statuses from the CDR Register |
| I9 | Identity | Delivery of Admin API functionality, as per the Data Standards, currently Metadata Update and Get Metrics |
| I10 | Identity | Deliver and maintain usage statistics for the purpose of reporting metrics via the prescribed interfaces |
Management API #
If requested by the Client, provide a Management API, accessible in accordance with Biza Guides delivering the following functional requirements:
| Functional Requirement | Category | Requirement |
|---|---|---|
| M1 | Management API | Provide API providing support for Arrangement View |
| M2 | Management API | Provide API providing support for Arrangement Cancel |
| M3 | Management API | Provide API to allow for Disclosure Option Management functionality |
| M4 | Management API | Other functionality as introduced into the CDR Obligations from time to time |
Consent Management Dashboard #
If requested by the Client, provide a Consent Management Dashboard that is:
| Functional Requirement | Category | Requirement |
|---|---|---|
| D1 | Consent Dashboard | Aligned with the prescribed CX Guidelines |
| D2 | Consent Dashboard | Branded in accordance with the Theming guidelines of Biza Guides |
| D3 | Consent Dashboard | Incorporates functionality required by the Data Standards |
| D4 | Consent Dashboard | Authenticated using the first two screens of the consent flow or Magic Link authentication |
Administration Interfaces #
Administration interface capability which provides:
| Functional Requirement | Category | Requirement |
|---|---|---|
| Z1 | Administration Interfaces | A web based interface for the management of Banking Products |
| Z2 | Administration Interfaces | A web based interface for overall system monitoring and management |
| Z3 | Administration Interfaces | Single sign-on support for Client personnel access in alignment with the technical specifications outlined on Biza Guides |
Unauthenticated API #
Provide the following API interfaces, as documented by the Data Standards
| Functional Requirement | Category | Requirement |
|---|---|---|
| U1 | CDR API | Get Status API |
| U2 | CDR API | Get Outages API |
| P1 | ||
| P2 | ||
| P3 | Product API | Pass through Product Reference Data API support |
Authenticated API #
Provide the following API interfaces, as documented by the Data Standards, restricted to the Consumer Arrangement authorisation, using data provided by the Customer Data Source.
| Functional Requirement | Category | Requirement |
|---|---|---|
| C1 | CDR API | Get Customer API |
| C2 | CDR API | Get Customer Detail API |
| B1 | CDR API | Get Accounts |
| B2 | CDR API | Get Bulk Balances |
| B3 | CDR API | Get Balances for Specific Accounts |
| B4 | CDR API | Get Account Balance |
| B5 | CDR API | Get Account Detail |
| B6 | CDR API | Get Transactions for Account |
| B7 | CDR API | Get Transaction Detail |
| B8 | CDR API | Get Direct Debits for Account |
| B9 | CDR API | Get Bulk Direct Debits |
| B10 | CDR API | Get Direct Debits for Specific Accounts |
| B11 | CDR API | Get Scheduled Payments for Accounts |
| B12 | CDR API | Get Scheduled Payments Bulk |
| B13 | CDR API | Get Scheduled Payments for Specific Accounts |
| B14 | CDR API | Get Payees |
| B15 | CDR API | Get Payee Detail |