User privacy framework
First Claim
1. A computer-implemented method comprising:
- providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users;
receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant;
receiving, at the server, a request from a first application of the second user to access the information;
determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition;
in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively;
generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and
selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer program product has a computer-readable storage medium having computer program instructions embodied therein for performing a method for implementing a privacy policy for a user. The method may include the user developing rules that determine whether another user (requester) can access information related to the user. The rules may be stored in a database coupled to a server and evaluated when a request is received from the requester to access the information. If a rule is satisfied by the requester, the server can return the information to the requester. The information can be returned at a level of granularity specified by the user in the satisfied rule. A privacy level can be set by the user to allow access to requesters based on the rules or to deny access to any requesters.
26 Citations
11 Claims
-
1. A computer-implemented method comprising:
-
providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users; receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant; receiving, at the server, a request from a first application of the second user to access the information; determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition; in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively; generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity. - View Dependent Claims (2, 3, 4)
-
-
5. A system comprising:
-
one or more computers and one or more storage devices storing instructions that are operable, when executed by the one or more computers, to cause the one or more computers to perform operations comprising; providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users; receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant; receiving, at the server, a request from a first application of the second user to access the information; determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition; in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively; generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity. - View Dependent Claims (6, 7, 8)
-
-
9. A computer program product, encoded on one or more non-transitory computer storage media, comprising instructions that when executed by one or more computers cause the one or more computers to perform operations comprising:
-
providing, by a server, a graphical user interface for receiving a policy from a first user, the policy for selectively allowing access by a second user to information of the first user, wherein the graphical user interface displays a suggested policy that is automatically generated based on other policies that were previously received from other users; receiving, at the server, the policy comprising a first condition specifying a predefined location of the second user and an application of the second user that is authorized to request the information, and a first level of resolution specifying a first level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a first time period, and a different, second level of resolution specifying a second level of granularity with which to share the information of the first user with the second user when the first condition is satisfied during a second time period, wherein the first level of granularity is time-variant; receiving, at the server, a request from a first application of the second user to access the information; determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) a current location of the second user matches the predefined location of the second user that is specified by the first condition; in response to determining that (i) the first application of the second user from which the request to access the information was received matches the application of the second user that specified by the first condition as authorized to request the information, and (ii) the current location of the second user matches the predefined location of the second user that is specified by the first condition, selecting one of the first level of granularity or the second level of granularity with which to share the information of the first user with the second user based on whether a time during which the request was received is associated with the first time period or the second time period, respectively; generating data corresponding to the current location of the first user in accordance with the selected level of granularity; and selectively allowing the second application to access the data corresponding to the current location of the user as specified by the selected level of granularity. - View Dependent Claims (10, 11)
-
Specification