> For the complete documentation index, see [llms.txt](https://docs.uaepass.ae/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.uaepass.ae/feature-guides/data-sharing-authorization/scope-and-limitations.md).

# Scope & Limitations

&#x20;Data sharing authorization feature covers the following components:

#### <mark style="color:green;">Consent Management</mark>

* Capture and record user authorization for each data-sharing request.
* Support fine-grained consent based on requestor type and data.

#### <mark style="color:green;">Data Sharing Flows</mark>

* Implement both SP to SP and Peer-to-Peer (SP to Person) data sharing flows.
* Validate and enforce the roles of Data Owner, Requestor, and Requestee.

#### <mark style="color:green;">Authentication & Security</mark>

* Leverage UAE Pass authentication for identity verification.
* Use encryption and HMAC for secure data transmission.

#### <mark style="color:green;">User Experience</mark>&#x20;

* Provide users with visibility into requests and the ability to approve/decline.
* Display past sharing history and status of each request.

#### <mark style="color:green;">Integration</mark>&#x20;

Integrate with external Service Providers (SPs) through secure APIs and channels.

#### <mark style="color:green;">Transaction history</mark>&#x20;

* Maintain transaction history of all Data sharing transactions by a user.

## Limitations

* As part of the UAE Pass Data Sharing Authorization feature, only Data in the form of Documents are supported. Data in the form of attributes or plain text is out of scope.
* In the case of SP-to-SP integration, UAE Pass is only responsible for integrating with each Data owner once. Integration with each Data Processer SP is the responsibility of the Data Owner SP
* Data authorization notification and approval functionality is only supported through the UAE Pass mobile App. The feature is not available in the UAE PASS portal.
* UAE Pass uses the mobile push notification mechanism to notify the user about any data sharing authorization request from the Data owner.&#x20;
* Data Authorization feature is only available for UAE Pass users who have a SOP3 profile. It is not available for SOP1 and SOP2 profiles.
* Consent provided by the user using this feature is only limited to the Data Authorization request, SPs cannot use it for any other purpose.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.uaepass.ae/feature-guides/data-sharing-authorization/scope-and-limitations.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.