Submit a Discovered Access Record
Submits a sparse, system-generated access record derived from DCC historic meter transaction logs. Used when the DCC detects that an organisation has been making data requests against a meter point but has not yet registered as a Data User in the DAR.
Discovered records are distinct from full access records in two important ways:
-
Read-only for authorisation — a
DISCOVEREDrecord cannot be used by a Data Provider to authorise data release.GET /access-records/{ak}will return the record but withaccess-event.stateset toDISCOVERED; Data Providers must treat this as a denial. -
Consumer transparency —
DISCOVEREDrecords appear inGET /meter-points/{mpxn}/access-recordsresponses so customers can see all parties known to have accessed their data, regardless of whether those parties have formalised their registration.
When the organisation subsequently onboards as a Data User and submits a
full access record via POST /access-records for the same MPxN and
organisation, the register links the two records. The DISCOVERED record
is retained for audit; the new full record becomes ACTIVE.
Authentication: Restricted to DCC system credentials. Standard Data User bearer tokens are rejected on this endpoint.
Sparse schema: Only the fields defined in DiscoveredAccessRecord
are accepted. The full AccessRecord schema is not used here — notice,
access-event.consent, and controller-level compliance fields are not
applicable and must not be supplied.
Authorizations
JWT from GET /auth/token. Pass as Authorization: Bearer <token>. Expires after 7200s.
Body
A sparse access record derived from DCC historic meter transaction logs. Submitted by the DCC when it detects an organisation making data requests against a meter point that has no corresponding DAR registration.
This schema is intentionally minimal — it captures only what the DCC can
observe from transaction logs without requiring the organisation's
participation. The organisation-name is the DCC's own record of the
requesting party; it is not validated against any external directory.
DISCOVERED records are visible to customers in the access record list and serve as a prompt for the organisation to formalise their registration. They cannot be used to authorise data release.
Meter Point Administration Number (MPAN) or Meter Point Reference Number (MPRN).
^(?:[0-9A-HJ-NPR-Z]{2}[0-9]{8,10}|[0-9]{10})$"1234567890123"
The name of the organisation as known to the DCC from its transaction records. Not validated against the Data User directory.
255"Acme Energy Services Ltd"
The DCC's internal identifier for this organisation. Used to link the DISCOVERED record to a full access record when the organisation subsequently registers as a Data User.
255"org_abc123def456"
The earliest date on which the DCC observed a data request from this organisation against this MPxN.
"2024-06-01"
The data types the DCC observed being requested. Uses the same enum as processing.data-types on a full access record.
1HH-CONSUMPTION, HH-EXPORT, MTH-CONSUMPTION, MTH-EXPORT, ANNUAL-CONSUMPTION, ANNUAL-EXPORT, TARIFF-IMPORT, TARIFF-EXPORT The DCC's internal reference for the transaction log batch or audit record from which this discovered access was derived. Retained for traceability.
255"DCC-TX-LOG-2026-03-001"
The most recent date on which the DCC observed a data request from this organisation against this MPxN.
"2026-02-28"
Response
Existing discovered access record updated (same mpxn and organisation-reference already present).
Unique opaque identifier for an access record, issued by the register on creation. Treat as a secret — possession enables access verification.
^ak_[0-9a-f]{24}$"ak_691df0c788ca043403b7fa90"
Will always be DISCOVERED for records created by this endpoint.
ACTIVE, EXPIRED, REVOKED, DISCOVERED