Open Banking · RegTech T165 + T166 + T167 CFPB §1033 AP2 v1.0 Zero PII

CFPB §1033 Financial Data Rights Mapper

The CFPB's Personal Financial Data Rights rule (12 CFR Part 1033) mandates that covered financial institutions give consumers and authorised third parties machine-readable access to their financial data. Map your institution's obligations, scope the seven data categories you must expose, navigate the four-wave compliance calendar from April 2026 through April 2030, and generate an AP2 mandate for your open-banking programme.

Rule Published
Oct 2024
CFPB Final Rule
First Deadline
Apr 2026
Tier 1 institutions
Covered Entities
~4,000+
Banks, CUs, fintechs, TPPPs
Data Categories
7
Mandated access types
Standard
FDX API
Screen-scraping sunset
🔒 All inputs are processed locally in your browser. No data is transmitted. Do not enter real personal data — use synthetic or anonymised inputs only.
Quick Scenarios
Step 1 — Institution Classification
Based on total domestic assets or CFPB-defined covered entity classification.
Step 2 — Covered Products & Accounts
Step 3 — Data Access Role
Step 4 — Technical Readiness
Readiness Snapshot
§1033 Compliance Calendar
Data Category Obligations
Data Category Description Scope for You Format Required
Consumer Authorization Workflow Requirements