RACI Role — Consulted

The Consulted role provides input to CDP decisions without owning implementation. In enterprise CDP evaluations, Consulted roles typically include:

• IT Security / CISO. Reviews data residency requirements, encryption-at-rest and in-transit standards, SOC 2 Type II / ISO 27001 certification posture, and vendor access controls. A recommendation that reaches the security Consulted gate without pre-addressing these concerns will stall.
• Legal and Privacy. Reviews GDPR Art. 17 right-to-erasure cascade deletion obligations, CCPA opt-out-of-sharing suppression list requirements, HIPAA BAA availability (where applicable), and data processing agreements. See constraint.gdpr-right-to-erasure and constraint.ccpa-data-subject-rights-2026.
• Finance. Reviews total cost of ownership: CDW query costs at projected segment refresh volumes, reverse-ETL destination costs, vendor license tiers, and 3-year cost model. See tradeoff.cost-predictability.
• Data Science / ML Team. Reviews ML model portability (can scoring models stay in the CDW vs. needing re-deployment to the CDP vendor?), API surface for IYOM-style model invocation, and whether the proposed architecture supports the team's feature engineering workflow.

What this role needs from the recommendation agent. Function-specific concern mapping: rather than a single recommendation, the agent should produce a tradeoff table showing what each Consulted function gains and gives up under each architectural path. The failure mode in Consulted-heavy evaluations is a technically correct recommendation that fails a security or legal review gate because those concerns were not pre-addressed.