Tracking privacy budget with distributed ledger
First Claim
1. A computerized method, comprising:
- sending, via a network and using one or more hardware processors of a computing device associated with a first data owner, a request to register a data offer from the first data owner to participate in a distributed ledger stored in distributed computer memory, the request to register the data offer including information associated with the data offer and a privacy budget for the data offer, and wherein the information associated with the data offer and the privacy budget are stored in the distributed ledger and the data offer is accessible by third parties to the first data owner;
receiving, via the network, a first request from a first third party computer associated with a first third party, to access specified data associated with the data offer from the first data owner;
analyzing, using the one or more hardware processors, the privacy budget for the data offer to determine whether the privacy budget comprises a balance necessary to allow access to the specified data;
based on determining that the privacy budget comprises the balance necessary to allow access to the specified data, accessing the data offer, using the one or more hardware processors to produce result data comprising the specified data;
anonymizing, using the one or more hardware processors, the result data;
updating, using the one or more hardware processors, a distributed ledger entry in the distributed ledger to update a balance for the privacy budget;
providing, via the network, the anonymized result data to the first third party computer;
receiving a second request from a second third party computer associated with a second third party, to access second specified data associated with the data offer from the first data owner;
analyzing the privacy budget for the data offer to determine that the privacy budget does not comprise a balance necessary to allow access to the second specified data; and
causing the data offer to be marked as invalid or expired in the distributed ledger.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided for sending a request to register a data offer from a data owner to participate in a distributed ledger, the request including information associated with the data offer and a privacy budget for the data offer, and wherein the information associated with the data offer and the privacy budget is stored in the distributed ledger and the data offer is accessible by third parties to the data owner. The systems and method further providing for receiving a request, associated with a third party computer, to access data associated with the data offer, processing a data request associated with the request to access data, based on determining that there is sufficient privacy budget to allow access to the data associated with the request to access data, to produce result data, anonymizing the result data, and updating the distributed ledger.
-
Citations
20 Claims
-
1. A computerized method, comprising:
-
sending, via a network and using one or more hardware processors of a computing device associated with a first data owner, a request to register a data offer from the first data owner to participate in a distributed ledger stored in distributed computer memory, the request to register the data offer including information associated with the data offer and a privacy budget for the data offer, and wherein the information associated with the data offer and the privacy budget are stored in the distributed ledger and the data offer is accessible by third parties to the first data owner; receiving, via the network, a first request from a first third party computer associated with a first third party, to access specified data associated with the data offer from the first data owner; analyzing, using the one or more hardware processors, the privacy budget for the data offer to determine whether the privacy budget comprises a balance necessary to allow access to the specified data; based on determining that the privacy budget comprises the balance necessary to allow access to the specified data, accessing the data offer, using the one or more hardware processors to produce result data comprising the specified data; anonymizing, using the one or more hardware processors, the result data; updating, using the one or more hardware processors, a distributed ledger entry in the distributed ledger to update a balance for the privacy budget; providing, via the network, the anonymized result data to the first third party computer; receiving a second request from a second third party computer associated with a second third party, to access second specified data associated with the data offer from the first data owner; analyzing the privacy budget for the data offer to determine that the privacy budget does not comprise a balance necessary to allow access to the second specified data; and causing the data offer to be marked as invalid or expired in the distributed ledger. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A server computer associated with a first data owner comprising:
-
at least one processor; and a computer-readable medium coupled with the at least one processor, the computer-readable medium comprising instructions stored thereon that are executable by the at least one processor to cause the server computer to perform operations comprising; sending a request to register a data offer from the first data owner to participate in a distributed ledger stored in distributed computer memory, the request to register the data offer including information associated with the data offer and a privacy budget for the data offer, and wherein the information associated with the data offer and the privacy budget are stored in the distributed ledger and the data offer is accessible by third parties to the first data owner; receiving a first request from a first third party computer associated with a first third party, to access specified data associated with the data offer from the first data owner; analyzing the privacy budget for the data offer to determine whether the privacy budget comprises a balance necessary to allow access to the specified data; based on determining that the privacy budget comprises the balance necessary to allow access to the specified data, accessing the data offer to produce result data comprising the specified data; anonymizing the result data; updating a distributed ledger entry in the distributed ledger to update a balance for the privacy budget; providing the anonymized result data to the first third party computer; receiving a second request from a second third party computer associated with a second third party, to access second specified data associated with the data offer from the first data owner; analyzing the privacy budget for the data offer to determine that the privacy budget does not comprise a balance necessary to allow access to the second specified data; and causing the data offer to be marked as invalid or expired in the distributed ledger. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer-readable medium comprising instructions stored thereon that are executable by at least one processor to cause a computing device associated with a first data owner to perform operations comprising:
-
sending a request to register a data offer from the first data owner to participate in a distributed ledger stored in distributed computer memory, the request to register the data offer including information associated with the data offer and a privacy budget for the data offer, and wherein the information associated with the data offer and the privacy budget are stored in the distributed ledger and the data offer is accessible by third parties to the first data owner; receiving a first request from a first third party computer associated with a first third party, to access specified data associated with the data offer from the first data owner; analyzing the privacy budget for the data offer to determine whether the privacy budget comprises a balance necessary to allow access to the specified data; based on determining that the privacy budget comprises the balance necessary to allow access to the specified data, accessing the data offer to produce result data comprising the specified data; anonymizing the result data; updating a distributed ledger entry in the distributed ledger to update a balance for the privacy budget; providing the anonymized result data to the first third party computer; receiving a second request from a second third party computer associated with a second third party, to access second specified data associated with the data offer from the first data owner; analyzing the privacy budget for the data offer to determine that the privacy budget does not comprise a balance necessary to allow access to the second specified data; and causing the data offer to be marked as invalid or expired in the distributed ledger.
-
Specification