ConsentX.org  ·  Tech 4 Humanity Pty Ltd  ·  ABN 70 666 271 272 Research & Policy · 2026
The Case for Consent

You consent
thousands
of times
a year.

Most of it is invisible, untracked, and unenforceable. The consequences — financial, medical, legal — are real. ConsentX makes the invisible visible.

Digital consent and data privacy
1,462
Consent events the average Australian generates annually
94%
Of digital consent events are never reviewed again
$8.2B
GDPR + APP fines globally in 2024
0
Jurisdictions with posthumous digital consent law
73
Avg active consents a person cannot locate or revoke
How Often It Happens

Consent events by category

Across a lifetime, consent touches every domain of life. Most people have no record of what they've agreed to — or who they agreed with.

Category Avg per year (adult) Volume Data sensitivity Revocable?
App & Platform Terms
OS updates, new apps, cookies, ToS changes
312
Medium Rarely
Financial & Banking
Credit applications, open banking, insurance, super
84
High Sometimes
Health & Medical
GP, specialists, My Health Record, pathology, pharmacy
61
High Rarely
Marketing & Communications
Email lists, SMS, push notifications, loyalty programs
228
Low Usually
Government & Regulatory
myGov, ATO, Centrelink, elections, licensing
34
High No
Employment
Contracts, background checks, WHS, payroll, surveillance
47
High Rarely
Education & Sport
School enrolment, excursions, club memberships, photo consent
89
Medium Sometimes
Location & Biometric
GPS tracking, face ID, fingerprint, fitness wearables
156
High Sometimes
Relationships & Social
Shared accounts, family plans, photo sharing, cohabitation
192
Medium Informally
Estate & Legacy (lifetime)
Wills, PoA, advance care, digital account legacy
8
High No
When Consent Fails

The real consequences

Consent failure is not a paperwork problem. It is a financial, medical, legal and reputational emergency — often invisible until it is too late.

💸
Financial Loss
Unconscionable contracts, auto-renewals, data-sharing that enables targeted scams. Australians lost $3.1B to scams in 2023 — many initiated by data shared via unchecked consent.
$3.1B AU scam losses 2023
🏥
Medical Harm
Uninformed consent to medical procedures, mistreatment of mental health records, sharing of genomic data without downstream restriction. Capacity misassessment in aged care removes autonomy permanently.
1 in 3 AU aged care residents have capacity concerns unrecorded
⚖️
Legal Liability
OAIC enforcement actions, Privacy Act penalties up to $50M per breach, APP compliance gaps across SMEs, and employees unknowingly signing away IP rights in employment agreements.
$50M max AU Privacy Act penalty
🔒
Identity & Data Theft
Consent events create a data trail. Each touchpoint is a potential breach vector. Australians experienced 409 eligible data breaches reported to OAIC in H1 2024 — healthcare sector leads.
409 eligible breaches H1 2024
👶
Child Exploitation
Children's data harvested through parent proxies without visibility. COPPA and AU Children's Online Privacy Codes are routinely circumvented. Shadow profiles built on minors before age of digital awareness.
72% of 8-12yr olds have social media accounts their parents didn't knowingly consent to
👻
Digital Legacy Void
When someone dies, their digital accounts — emails, photos, financial data, social profiles — are left in legal limbo. No jurisdiction has enacted posthumous digital consent law. Families cannot access or delete.
0 jurisdictions with posthumous digital consent law

Where consent breaks down most

Healthcare and Financial sectors generate the highest-sensitivity consent events yet have the lowest transparency and revocation infrastructure. Education and Sport have the highest volume of unmonitored child-proxy events.

High sensitivity
Medium sensitivity
Low sensitivity
Sector Exposure

Where you're most at risk

Every sector has a consent problem. The difference is whether it's been acknowledged.

🏦
Banking & Finance
Open banking consent fatigue, credit assessment data sharing, superannuation rollovers, insurance policy changes, loan covenant variations. Most Australians cannot name the third parties their bank shares data with.
84 consent events/year · Westpac, CBA, ANZ, NAB
🏫
Schools & Education
Annual enrolment consents, excursion permission forms, photo and video release, learning management platforms (Canvas, Schoolbox), NAPLAN opt-in, EdTech data sharing — mostly paper-based, untracked.
89 events/year per child · $0 digital infrastructure
🏥
Healthcare
My Health Record opt-out model, pathology sharing, specialist referrals, pharmaceutical consent, aged care capacity assessment, mental health record access — the highest-sensitivity, lowest-visibility sector.
61 events/year · #1 breach sector in AU 2024
Sport & Recreation
Club registration, Working with Children checks, medical treatment authorisation, photo/video release, biosecurity protocols, insurance disclosures — processed via paper, email and unverified PDF every season.
8.8M Australians in organised sport · ~4 consent events each annually
🏛️
Government
myGov data linking, ATO tax agent authorisation, Centrelink nominee arrangements, electoral roll, licensing databases, child safety reporting — consent given once, stored indefinitely, rarely reviewed.
34 events/year · Non-revocable in most cases
💻
Technology & Platforms
Cookie consent walls, app permissions, platform ToS updates, AI training data opt-out, biometric templates, cross-platform identity stitching. The highest frequency, lowest comprehension sector.
312 events/year · Avg 11 seconds spent reading each ToS

Start capturing
your consent trail

ConsentX captures every consent event, records it to your personal wallet, and gives you visibility — and control — over your data for the first time.

See the Capture App See Real Examples