Introduction

MiTrust's sharing flow follows the standard OAuth2 Authorization code flow strictly.
MiTrust does not store any personal data after a sharing transaction: data is either immediately deleted (as soon as the data is retrieved, or as the user cancels the flow), or after a 10 minutes delay (in case the Service Provider doesn’t retrieve the data after a successful sharing).