Non-Functional Requirements Consultative Group – Code of conduct

Author: James Bligh

Publish date: 21 March 2024

---

Context

This code of conduct is intended to govern the behaviour and engagement of members of the NFR Consultative Group (the Consultative Group) that has been established under the powers of the Data Standards Chair as an advisory committee for the Consumer Data Right (CDR).

Abiding by this code of conduct is an expected, but voluntary, undertaking of appointed members of the Consultative Group, as well as other attendees representing government bodies.

While this code of conduct is not legally binding, it does represent a common understanding of appropriate behaviour. Breaches may be considered by the Chair when decisions regarding existing or future appointments are made.

Behaviour

Members agree to:

• Attend, either physically or virtually, the scheduled meetings to the best of their ability.
• Be prepared to contribute at meetings having discussed the items on the agenda with members of their own organisation such that they are able to give meaningful and relevant feedback.
• Refrain from delegating their appointed role without prior discussion with the convenor of the Consultative Group.

Meeting Attendance

Members agree to:

• Engage in meetings with professionalism and with respect for other attendees.
• Faithfully represent the interests of other CDR participants that do not have representation in the Consultative Group, within the bounds of their obligations to the organisation they represent.
• Act in accordance with the best interests of the CDR with the intent of improving the operation, security, and performance of the CDR ecosystem.
• Engage in meetings in accordance with their obligations to their organisations and the regulatory requirements of their organisations. For instance, this will include refraining from engaging in behaviour that could be classified as anti-competitive or that breaches privacy obligations.

Confidentiality

Members agree to:

• Keep the discussion of the Consultative Group confidential, noting that the minutes of meetings of the Consultative Group are made public. This will, for instance, include keeping the attribution of the contribution of specific members confidential.
• Share the confidential discussions of the Consultative Group within their own organisation on a need-to-know basis. It is expected that members will collaborate with colleagues inside their own organisations to provide feedback that is endorsed by their organisation, but it is expected that members will show judgement in how this collaboration is managed.

Management of Data

Members agree to:

• Keep all data confidential that is shared by, or with, them in the course of their involvement with the Consultative Group, including not sharing or distributing the data outside of their organisation.
• Actively seek to ensure that the Consultative Group can be trusted by other CDR participants to receive any data that will be useful in assessing non-functional requirements. It is expected that this will include limiting the degree to which this data is disseminated within their own organisation. An analogue of the CDR principle of data minimisation should be applied when sharing data with their colleagues.

Version control

---