"From a customer standpoint, the consent managers (account aggregators) has to maintain a record of all consents taken from the customer. This record is available to the customer directly, and they can request revokation or suspension of any prior consent at any point in time. For instance, if you give an institution permission to access your bank account data for 6 months, you can come back and revoke the consent later, if you chose to not engage with that financial institution," said Amit Das, CEO and co-founder of Think360.ai, a full stack data science company.