Protean SurakshAA

Secure Registration

User registers with basic identity details (phone/email). Authentication and secure session management keeps user access protected throughout the lifecycle.

Financial Account Linking

Users link their financial accounts (bank accounts, mutual funds, pensions) via bank-level authentication (OTP/secure login). A unique AA handle is created — a digital identity representing the user's consent profile.

The Trust Layer — FIP → AA → FIU

Protean SurakshAA acts as a secure broker: Financial Information Providers (FIPs) hold source data; Financial Information Users (FIUs) request access for services like loans; the AA orchestrates transfer only after explicit user consent — never reading or storing the data.

Consent Flow

FIU sends a data request → AA notifies the user → user approves or rejects → upon approval, AA fetches encrypted data from FIP → encrypted data is securely transmitted to FIU. At no point does the AA store or read this data — it simply acts as a pipe.

End-to-End Encryption & RBI Compliance

Data is encrypted both in transit and at the endpoints — only authorised recipients can decrypt it. The entire ecosystem operates under RBI's regulatory framework with strict compliance to financial data norms.

Consent Ledger & No Persistent Storage

Every consent decision (grant/revoke) is logged in a secure, auditable ledger. Unlike traditional finance apps, SurakshAA never stores user financial data centrally — it fetches and passes encrypted data only upon consent.

Component Overview

User's Financial Accounts (FIP) → Protean SurakshAA (AA, secure broker) → Service Provider (FIU). User links accounts, FIU requests data, user gives consent, AA fetches encrypted data from FIP and forwards to FIU. At every step, the user is in control.