Need to make clear that if payers issue unsolicited authorizations, there is no guarantee that the order that triggered the authorization will ever get signed or become 'real'.  As a result, the issuing of such an authorization SHALL NOT result in any limitation on provision of subsequent services.  There should be no expectation that a provider will 'cancel' the authorization if the order is cancelled (because the authorization was never actually 'requested').

Also, we need to have a specific card type for "unsolicited authorizations" so that a "what if" app (and possibly other use-cases) can prevent such authorizations from coming back.