Consent management to treat personal data or user’s authorization to execute payments from Third Part websites can be done without the need to provide personal data to the above mentioned website.
A Third Part is a corporate (e.g. e-commerce platforms) on whose web site the user wants to make a payment or with whom he wants to share data. An example for this process when a user is placing an order on an e-commerce platform and wants to pay directly from his bank account.
If the user has to give his consent to share his data with a Third Part, after being redirected to the website of his bank and logging in, he can choose which pieces of information he wishes to share and, after confirming his decision, these will be shared directly with the Third Part itself. Similarly, if he has to make a payment from a Third Part website, as in the previous example, after being redirected to his own bank's website and logging in, he will find a summary page containing the payment information and he can confirm the disposition.
The identification of the consent granted by the user takes place thanks to common APIs provided by IAM that generate unique codes for each consent created and that have the ownership to manage the information related to that specific consent. These APIs can also be reached by the Tthird Pparties who will retrieve directly from there the information that the user has agreed to share.