User privacy framework

US 10,498,766 B1
Filed: 07/05/2016
Issued: 12/03/2019
Est. Priority Date: 05/01/2009
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method comprising:

providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users;

receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant;

receiving, at the server, a request from a first application of the second user to access the information;

determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition;

in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively;

generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and

selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer program product has a computer-readable storage medium having computer program instructions embodied therein for performing a method for implementing a privacy policy for a user. The method may include the user developing rules that determine whether another user (requester) can access information related to the user. The rules may be stored in a database coupled to a server and evaluated when a request is received from the requester to access the information. If a rule is satisfied by the requester, the server can return the information to the requester. The information can be returned at a level of granularity specified by the user in the satisfied rule. A privacy level can be set by the user to allow access to requesters based on the rules or to deny access to any requesters.

26 Citations

View as Search Results

11 Claims

1. A computer-implemented method comprising:
- providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users;
  
  receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant;
  
  receiving, at the server, a request from a first application of the second user to access the information;
  
  determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition;
  
  in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively;
  
  generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and
  
  selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, wherein the first condition further specifies a time of a request during which the application of the second user is authorized to request the information.
  - 3. The method of claim 1, wherein the first condition further specifies an identity of the second user.
  - 4. The method of claim 1, wherein the first condition further specifies restrictions on usage of the information of the first user that are to be applied to the second application upon receiving selective access.

5. A system comprising:
- one or more computers and one or more storage devices storing instructions that are operable, when executed by the one or more computers, to cause the one or more computers to perform operations comprising;
  
  providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users;
  
  receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant;
  
  receiving, at the server, a request from a first application of the second user to access the information;
  
  determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition;
  
  in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively;
  
  generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and
  
  selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity.
- View Dependent Claims (6, 7, 8)
- - 6. The system of claim 5, wherein the first condition further specifies a time of a request during which the application of the second user is authorized to request the information.
  - 7. The system of claim 5, wherein the first condition further specifies an identity of the second user.
  - 8. The system of claim 5, wherein the first condition further specifies restrictions on usage of the information of the first user that are to be applied to the second application upon receiving selective access.

9. A computer program product, encoded on one or more non-transitory computer storage media, comprising instructions that when executed by one or more computers cause the one or more computers to perform operations comprising:
- providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users;
  
  receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant;
  
  receiving, at the server, a request from a first application of the second user to access the information;
  
  determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition;
  
  in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively;
  
  generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and
  
  selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity.
- View Dependent Claims (10, 11)
- - 10. The product of claim 9, wherein the first condition further specifies a time of a request during which the application of the second user is authorized to request the information.
  - 11. The product of claim 9, wherein the first condition further specifies an identity of the second user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Google LLC (Alphabet Inc.)
Inventors
Yu, Yan, Chu, Michael, Tam, Chung-Man, Lee, Steven, Jain, Ravi, Tsao, Tu Tu, Lambert, Christopher
Primary Examiner(s)
Pham, Luu T
Assistant Examiner(s)
Le, Canh

Application Number

US15/202,425
Time in Patent Office

1,246 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/102   Entity profiles

H04L 63/20   for managing network securi...

H04L 67/00   Network arrangements or pro...

H04L 67/01   Protocols

H04W 4/21   for social networking appli...

User privacy framework

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

26 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

User privacy framework

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

26 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links