TrueLayer removes the encrypted
access_token from our records, invalidating the grant on that token. In other words, a TPP will not have access to that end user’s data anymore.
Things to note
- We do not contact the bank when deleting encrypted credentials
- End users have total control of their bank consent. If they wish to remove the consent given to TrueLayer or a specific application, they can do so on their Online Banking or banking app.
Check our documentation on the
/delete endpoint here.