We believe in a world where every individual has access and control over their data. We believe agency over data could empower Indians with opportunities to improve their own lives.
DigiSahamati Foundation (Sahamati) is a self-organised Collective of the Account Aggregator ecosystem set up as a not-for-profit private limited company under Section 8 of the new Companies Act.
We don’t fall into the typical categories of an industry lobby or a nonprofit certification body. Instead, we seek to be a vehicle for India to shift to a new data governance paradigm that empowers individuals and small businesses.
We seek to convene the right people from different backgrounds (law, technology, businesses, banks, etc) to set and achieve audacious goals for India’s Data Empowerment and Protection Architecture and the Account Aggregator network.
This involves co-creating strategic goals (e.g., enable Consent architecture to be implemented at 10 major banks, make sure all FIPs are certified as robust, or design a way for the data shared for a typical purpose to be standard per a template) and executing these through specialised working groups.
Account Aggregator’s Charter
- Account Aggregators (AAs) are data access fiduciaries licensed by the RBI. Their only charter is to serve the interests of the Data Principals
- AAs are data blind and cannot undertake any other business. They can charge for their services from Data Principals and/or other data fiduciaries
- When forced to trade-off, AAs will prioritize the interest of the Data Principal ahead of those of other fiduciaries e.g. Financial Information Provider (FIP) / Financial Information User (FIU)
- Publish a code of conduct for our members.
- Establish audit guidelines for our members.
- Establish inter-operability standards for our members.
- Establish data standards for the reporting of data to the regulator
- Design standards, certification and codes of conduct for the ecosystem
- Develop and run the Central Registry to ensure interoperability
- Operate a framework for smooth grievance redressal of all customer complaints
- Ensure that the members adopt regulatory tools for self-reporting of data, and granular, automated, data-based audit mechanisms.
- Define governance framework, Monitor compliance of the members to these guidelines/standards.
- Educate customers and Evangelization of the entire ecosystem
- Publish Research and Whitepapers
Why do we need Sahamati?
- Control point to ensure ecosystem participants are approved by respective regulators
- Certification authority to ensure all participants meet common minimum compliance on privacy, security, and API standards
- Coordinating agency to ensure interoperability and prevent anti-competitive behaviour by participants
- Establish ecosystem tenets that prioritize the Data Principal’s interest over other ecosystem participants
- An agile, participative, self-regulating organization that ensures early buy-in and drives scale
- One source of information for the AA ecosystem where things are changing dynamically
- A common voice to policymakers and regulators