The Government has restated its commitment to delivering pensions dashboards in a written statement.
Roles and responsibilities
Guidance for pension providers, schemes and integrated service providers (ISPs).
This describes the roles and responsibilities involved in the connection portal.
These roles only apply to organisations connecting directly to the pensions dashboards ecosystem (the ecosystem). This includes:
- pension providers connecting directly
- pension schemes connecting directly
- integrated service providers (ISPs) or third-party administrators connecting on behalf of pension providers and schemes
They do not apply to pension providers and schemes connecting through a third-party administrator or ISP.
Primary business contact (PBC)
The PBC is the main contact for the pension provider, scheme or integrated service provider that is directly connecting to the ecosystem. The primary business contact is the first user to be created and their details must be supplied during the preregistration process. They are responsible for registering their organisation, user account maintenance, scheme maintenance and endpoints. The primary business contact can hold all the following additional roles in the connection portal:
- test manager
- security lead
- service manager
You can have a maximum of 2 PBCs. The role of scheme admin is part of the primary business contact role, so there is no reason to hold both.
PBC responsibilities include:
- registering an organisation and create account for a primary business contact
- creating additional users
- registering first pension provider or scheme and providing technical details
- addition of providers or schemes
- transfer of providers or schemes
- requesting additional endpoints
- password, multifactor authentication and account recovery
- changing user account details, roles and level of access
- suspending and unsuspending user accounts
- adding holdernames to providers or schemes
- status change requests for providers or schemes
- ability to amend or delete data related to providers or schemes, endpoints and connecting organisations
Back to top
Primary technical contact (PTC)
The PTC is responsible for deploying of cryptographic materials (certificates and keys) to enable connection to the ecosystem. Their details must be supplied during the preregistration process. The PTC can hold all the following additional roles in the connection portal:
- test manager
- security lead
- service manager
One PTC is required, but organisations can have a maximum of 2. The PTC’s role in the connection portal is limited to requesting, deploying and revoking cryptographic material.
Primary technical contact responsibilities include:
- download test cryptographic materials
- download live cryptographic materials
- manage issue and renewal of certificates, and key expiration
- manage certificate revocation requests
Back to top
Test manager
The test manager is responsible for all processes that involve testing during connection.
The test manager can hold the following additional roles in the connection portal:
- security lead
- service manager
- and one of the following roles:
- primary technical contact
- primary business contact
- scheme admin
You can have a maximum of 2 test managers.
Test manager responsibilities include:
- prerequisite requirements
- integration testing
Back to top
Service manager
The service manager is responsible for ensuring that their organisation passes service acceptance during connection.
The service manager can hold the following additional roles in the connection portal:
- test manager
- security lead
- and one of the following roles:
- primary technical contact
- primary business contact
- scheme admin
You can have a maximum of 2 service managers.
Service manager responsibilities include:
- managing service acceptance
- operational acceptance testing and transition into live
Back to top
Scheme admin
The scheme admin is responsible for adding and maintaining schemes and pension providers.
The scheme admin can hold all the following additional roles in the connection portal:
- security lead
- service manager
- test manager
This role is optional. There is a default limit of 4 role holders. You can ask for more holders: this will be approved on a case by case basis.
Scheme admin responsibilities include:
- addition of providers and schemes (manually and in bulk)
- transfer of providers and schemes (manually and in bulk)
- adding holdernames to a provider or scheme
- ability to amend or delete data related to providers or schemes
Back to top
Security lead
The security lead is the main security representative of the organisation.
The security lead can hold the following additional roles in the connection portal:
- test manager
- service manager
- and one of the following roles:
- primary technical contact
- primary business contact
- scheme admin
You can have a maximum of 2 security leads.
Security lead responsibilities include:
- IT Health Check or penetration tests
- annual IT Health Check or penetrations tests attestation
Back to top
Transferring roles
The PBC can create users and assign or remove their roles. This can be tracked by PDP.
Back to top
Support
If you are experiencing issues with the connection portal or have questions about the provided guidance, our support hub is here to help. You can visit PDP’s support hub to get assistance, raise new queries, or report incidents.