Data processing systems for generating and populating a data inventory for processing data access requests
First Claim
1. A computer-implemented data processing method for identifying one or more pieces of personal data associated with a data subject within a data system in order to fulfill a data subject access request, the method comprising:
- receiving, by one or more processors, from a data subject, a data subject access request;
processing, by the one or more processors, the data subject access request by identifying the one or more pieces of personal data associated with the data subject, wherein identifying the one or more pieces of personal data associated with the data subject comprises scanning one or more data inventories stored within the data system for the one or more pieces of personal data, and wherein scanning the one or more data inventories stored within the data system for the one or more pieces of personal data comprises;
accessing, via one or more computer networks, the one or more data inventories,generating a catalog of one or more pieces of personal information associated with the data subject based at least in part on the data subject access request,storing the catalog in computer memory,scanning the one or more data inventories based at least in part on the generated catalog to identify one or more attributes of data associated with the data subject by searching one or more data fields in the one or more data inventories for the one or more pieces of personal information,analyzing and correlating the one or more attributes and metadata for the scanned one or more data inventories,using one or more machine learning techniques to categorize one or more data elements from the generated catalog,analyzing a flow of the data elements among the one or more data inventories,categorizing the one or more data elements based on a confidence score,receiving input from one or more users confirming or denying a categorization of the one or more data elements, andin response to receiving the input, modifying the confidence score;
in response to identifying the one or more pieces of personal data, taking one or more actions selected from the group consisting of;
deleting the one or more pieces of personal data from the data system,modifying at least one of the one or more pieces of personal data and storing the modified at least one of the one or more pieces of personal data in the data system, andgenerating a report comprising the one or more pieces of personal data and providing the report to the data subject.
2 Assignments
0 Petitions
Accused Products
Abstract
In particular embodiments, a data processing data inventory generation system is configured to: (1) generate a data model (e.g., a data inventory) for one or more data assets utilized by a particular organization; (2) generate a respective data inventory for each of the one or more data assets; and (3) map one or more relationships between one or more aspects of the data inventory, the one or more data assets, etc. within the data model. In particular embodiments, a data asset (e.g., data system, software application, etc.) may include any entity that collects, processes, contains, and/or transfers personal data (e.g., a software application, database, website, server, etc.). A data asset may include any software or device (e.g., server or servers) utilized by a particular entity for such data collection, processing, transfer, storage, etc. The system may then utilize the generated model to fulfill a data subject access request.
-
Citations
18 Claims
-
1. A computer-implemented data processing method for identifying one or more pieces of personal data associated with a data subject within a data system in order to fulfill a data subject access request, the method comprising:
-
receiving, by one or more processors, from a data subject, a data subject access request; processing, by the one or more processors, the data subject access request by identifying the one or more pieces of personal data associated with the data subject, wherein identifying the one or more pieces of personal data associated with the data subject comprises scanning one or more data inventories stored within the data system for the one or more pieces of personal data, and wherein scanning the one or more data inventories stored within the data system for the one or more pieces of personal data comprises; accessing, via one or more computer networks, the one or more data inventories, generating a catalog of one or more pieces of personal information associated with the data subject based at least in part on the data subject access request, storing the catalog in computer memory, scanning the one or more data inventories based at least in part on the generated catalog to identify one or more attributes of data associated with the data subject by searching one or more data fields in the one or more data inventories for the one or more pieces of personal information, analyzing and correlating the one or more attributes and metadata for the scanned one or more data inventories, using one or more machine learning techniques to categorize one or more data elements from the generated catalog, analyzing a flow of the data elements among the one or more data inventories, categorizing the one or more data elements based on a confidence score, receiving input from one or more users confirming or denying a categorization of the one or more data elements, and in response to receiving the input, modifying the confidence score; in response to identifying the one or more pieces of personal data, taking one or more actions selected from the group consisting of; deleting the one or more pieces of personal data from the data system, modifying at least one of the one or more pieces of personal data and storing the modified at least one of the one or more pieces of personal data in the data system, and generating a report comprising the one or more pieces of personal data and providing the report to the data subject. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-implemented data processing method for responding to a data subject access request, the method comprising:
-
receiving, by one or more processors, a data subject access request from a requestor comprising one or more request parameters; processing the request by identifying, by the one or more processors, one or more pieces of personal data associated with the requestor, the one or more pieces of personal data being stored in one or more data repositories associated with a particular organization, wherein identifying the one or more pieces of personal data associated with the requestor comprises; scanning one or more databases to generate a catalog of one or more individuals and one or more pieces of personal information associated with the one or more individuals, scanning one or more data repositories based at least in part on the generated catalog to identify one or more attributes of data associated with the one or more individuals, analyzing and correlating the one or more attributes and metadata for the scanned one or more data repositories, using one or more machine learning techniques to categorize one or more data elements from the generated catalog, analyzing a flow of the data elements among the one or more data repositories, classifying the one or more data elements based on a confidence score, receiving input from one or more users confirming or denying a categorization of the one or more data elements, and identifying the one or more pieces of personal data based at least in part on the confirmed categorization; and taking, by the one or more processors, one or more actions based at least in part on the data subject access request, the one or more actions including one or more actions related to the one or more pieces of personal data. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
Specification