Introduction

Data sharing authorization feature enables a secure, efficient, and user-centric document sharing process between the Data Owner and the Data Requester, leveraging UAE Pass as the primary tool for user (Requestee) authorization. It ensures the confidentiality and protection of the Requestee's information through robust authentication and encrypted data transmission.

The process is designed to minimize manual interventions and reduce response time, while granting users complete control over data authorization decisions.

The feature supports following types of data sharing flows:

1. SP to SP Data Sharing: In this data sharing flow, a Data Processor Service Provider (Requestor) requests data from a Data Owner Service Provider on behalf of the user. Example: Entity A (Data Processor) requests a salary certificate from Entity B (Data Owner) on behalf of an employee.

2. SP to Person (or Peer-to-Peer) Data Sharing: In this data sharing flow, a person (Requestor) directly requests a Data Owner Service Provider to share data related to another individual (Requestee). Example: A property owner (Requestor) requests a score for a tenant (Requestee) from Entity A (Data Owner).

Business objective

The objective of this feature is to streamline and standardize the data sharing process in a secure and user-consented manner. It aims to:

• Empower users with control over their personal data authorization decisions.

• Enhance efficiency by reducing manual processing and turnaround time.

• Ensure regulatory compliance and maintain high standards of data privacy.

• Strengthen stakeholder trust through secure, transparent interactions.

• Expand UAE Pass capabilities as a trusted national platform for digital data sharing.