Skip to main content
GET
/
access-records
/
{ak}
Verify Access Record
curl --request GET \
  --url https://api.central.consent/v1/access-records/{ak}
import requests

url = "https://api.central.consent/v1/access-records/{ak}"

response = requests.get(url)

print(response.text)
const options = {method: 'GET'};

fetch('https://api.central.consent/v1/access-records/{ak}', options)
.then(res => res.json())
.then(res => console.log(res))
.catch(err => console.error(err));
<?php

$curl = curl_init();

curl_setopt_array($curl, [
CURLOPT_URL => "https://api.central.consent/v1/access-records/{ak}",
CURLOPT_RETURNTRANSFER => true,
CURLOPT_ENCODING => "",
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
CURLOPT_CUSTOMREQUEST => "GET",
]);

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
echo "cURL Error #:" . $err;
} else {
echo $response;
}
package main

import (
"fmt"
"net/http"
"io"
)

func main() {

url := "https://api.central.consent/v1/access-records/{ak}"

req, _ := http.NewRequest("GET", url, nil)

res, _ := http.DefaultClient.Do(req)

defer res.Body.Close()
body, _ := io.ReadAll(res.Body)

fmt.Println(string(body))

}
HttpResponse<String> response = Unirest.get("https://api.central.consent/v1/access-records/{ak}")
.asString();
require 'uri'
require 'net/http'

url = URI("https://api.central.consent/v1/access-records/{ak}")

http = Net::HTTP.new(url.host, url.port)
http.use_ssl = true

request = Net::HTTP::Get.new(url)

response = http.request(request)
puts response.read_body
{
  "response": {
    "resource": "/v1/access-records/ak_691df0c788ca043403b7fa90",
    "timestamp": "2026-03-11T12:00:00Z",
    "transaction-id": "tid_691df0c788ca043403b7fa90"
  },
  "access-record": {
    "record-metadata": {
      "schema-version": "1.0",
      "controller-arrangement": {
        "controllers": [
          {
            "name": "Bright Energy Ltd",
            "contact-url": "https://bright-energy.com/contact",
            "address": {
              "addressLine1": "221B Baker Street",
              "townCity": "London",
              "postcode": "NW1 6XE",
              "addressLine2": "Marylebone",
              "county": "Greater London"
            },
            "privacy-rights-url": "https://bright-energy.com/your-rights",
            "lia-reference": "LIA-2024-003",
            "statutory-reference": "Energy Act 2023, s.147",
            "storage-conditions": {
              "location": "GB",
              "retention-period": "P2Y"
            }
          }
        ],
        "art26-reference": "JCA-2024-BrightGrid-001"
      },
      "record-identifier": "ak_691df0c788ca043403b7fa90",
      "created-at": "2024-01-15T09:30:00Z",
      "identity-record-ref": "ir_a3c5e7f9b1d3a3c5e7f9b1d3"
    },
    "notice": {
      "shared-notice": {
        "terms-url": "https://bright-energy.com/privacy-v3.html",
        "notice-version": "v3.2",
        "notice-language": "en"
      },
      "notices": [
        {
          "controller-name": "Grid Analytics Ltd",
          "terms-url": "https://gridanalytics.com/privacy-v2.html",
          "notice-version": "v2.0",
          "notice-language": "en"
        }
      ]
    },
    "processing": {
      "legal-basis": "uk-consent",
      "purpose": "Energy efficiency analysis and tariff recommendations",
      "data-types": [],
      "jurisdiction": "GB",
      "data-source": "National Grid ESO / MPAS",
      "recipients": [
        {
          "name": "Analytics Co Ltd",
          "role": "Sub-processor",
          "privacy-url": "https://analyticsco.com/privacy"
        }
      ]
    },
    "access-event": {
      "registered-at": "2023-11-07T05:31:56Z",
      "expiry": "2027-11-10T17:07:01.580Z",
      "controller-reference": "REF-00123",
      "consent": {
        "method": "Explicit web checkbox"
      },
      "revoked-at": "2025-06-01T14:22:00Z"
    },
    "reidentification-token": "<string>"
  }
}
{
"response": {
"resource": "/v1/access-records/ak_691df0c788ca043403b7fa90",
"timestamp": "2026-03-11T12:00:00Z",
"transaction-id": "tid_691df0c788ca043403b7fa90"
},
"errors": [
{
"error-code": "VAL001",
"message": "Field 'mpxn' does not match the required pattern."
}
]
}
{
"response": {
"resource": "/v1/access-records/ak_691df0c788ca043403b7fa90",
"timestamp": "2026-03-11T12:00:00Z",
"transaction-id": "tid_691df0c788ca043403b7fa90"
},
"errors": [
{
"error-code": "VAL001",
"message": "Field 'mpxn' does not match the required pattern."
}
]
}

Path Parameters

ak
string
required

The access key issued at registration. Unique opaque identifier for an access record, issued by the register on creation. Treat as a secret — possession enables access verification.

Pattern: ^ak_[0-9a-f]{24}$
Example:

"ak_691df0c788ca043403b7fa90"

Response

Access record found and returned.

The full access record returned for verification. notice and access-event.consent will be null for non-consent records.

response
object
required
access-record
object
required

A data access record covering all lawful bases. The same schema is used regardless of processing.legal-basis. The notice field and access-event.consent sub-object are null for non-consent records and populated for consent records.

Last modified on March 25, 2026