Consumer and brand owner data management tools and consumer privacy tools

US 10,540,515 B2
Filed: 06/02/2016
Issued: 01/21/2020
Est. Priority Date: 11/09/2012
Status: Active Grant

First Claim

Patent Images

1. A personal data controller computer system, configured to execute a task using end user personal data upon a request from a relying party computing device that has no access to said end user personal data, the personal data controller computer system comprising:

memory for storing instructions; and

processor electronics configured to execute the instructions in order to;

request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device;

in response to receiving confirmation that the task authorization and performance ability for the task associated with the access token are valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution;

in response to receiving a personal data task request and an associated personal data token based at least on a reply to the personal data token response transmitted by the relying party computing device, determine if the task authorization associated to the end user personal data token response is still valid and if the task associated to the end user personal data token response is still able to be performed,wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least on a portion of the personal data token response transmitted by each of the personal data controller computer systems; and

in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute, the task authorized by the end user personal data token response using the end user personal data.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

System and computer readable media embodiments of enhanced and flexible login and profile management tools as well as brand owner communication tools are provided which provide more flexibility in regards to information sharing that benefit both users and brand owners and ease the integration of user information into brand owner databases. System and computer readable media embodiments are also provided for an end user to control both how and who uses her personal data. Specifically, these embodiments permit her to authorize which pieces of personal data may be used by particular actors to perform particular tasks. In addition, these embodiments allow the tasks to be performed while simultaneously limiting the number of actor(s)/servers/devices in possession of her personal data.

127 Citations

17 Claims

1. A personal data controller computer system, configured to execute a task using end user personal data upon a request from a relying party computing device that has no access to said end user personal data, the personal data controller computer system comprising:
- memory for storing instructions; and
  
  processor electronics configured to execute the instructions in order to;
  
  request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device;
  
  in response to receiving confirmation that the task authorization and performance ability for the task associated with the access token are valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution;
  
  in response to receiving a personal data task request and an associated personal data token based at least on a reply to the personal data token response transmitted by the relying party computing device, determine if the task authorization associated to the end user personal data token response is still valid and if the task associated to the end user personal data token response is still able to be performed,wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least on a portion of the personal data token response transmitted by each of the personal data controller computer systems; and
  
  in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute, the task authorized by the end user personal data token response using the end user personal data.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The personal data controller computer system of claim 1, wherein the end user personal data comprises one or more email data, an end user physical address, an end user electronic address or an end user phone number.
  - 3. The personal data controller computer system of claim 1, wherein the personal data token response is associated to instructions to transmit the personal data task request back to the personal data controller computer system in order for the personal data controller computer system to execute the task.
  - 4. The personal data controller computer system of claim 1, wherein the execution of the task is contingent upon a condition associated to the task being validated as true at the time of execution.
  - 5. The personal data controller computer system of claim 1, wherein the execution of the task is only authorized if execution is requested in a time period authorized by the end user.
  - 6. The personal data controller computer system of claim 1, wherein the personal data token response comprises a personal data token, wherein the personal data token is created in response to the validation that the end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device is still valid.

7. A personal data controller computer system, configured to execute a task using end user personal data upon request of a relying party computing device that has no access to end user personal data, the personal data controller computer system comprising:
- memory for storing instructions; and
  
  processor electronics configured to execute the instructions in order to;
  
  request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device;
  
  in response to receiving confirmation that the task performance ability for the task associated with the access token is valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution;
  
  in response to receiving a personal data task request and an associated personal data token based at least in part on a reply to the end user personal data token response transmitted by the relying party computing device, determine if a task authorization associated to the end user personal data token response is still valid, wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer systemrequested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least a portion of the personal data token response transmitted by each of the personal data controller computer systems; and
  
  in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute the task authorized by the end user personal data token response using the end user personal data.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The personal data controller computer system of claim 7, wherein the end user personal data comprises one or more of email data, an end user physical address, an end user electronic address or an end user phone number.
  - 9. The personal data controller computer system of claim 7, wherein the personal data token response is associated with instructions to transmit the personal data task request back to the personal data controller computer system in order for the personal data controller computer system to execute the task.
  - 10. The personal data controller computer system of claim 7, wherein the execution of the task is contingent upon a condition associated to the task being validated as true at the time of execution.
  - 11. The personal data controller computer system of claim 7, wherein the execution of the task is only authorized if execution is requested in a time period authorized by the end user.
  - 12. The personal data controller computer system of claim 7, wherein the personal data token response comprises a personal data token, wherein the personal data token was created in response to the validation that the end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device is still valid.

13. A non-transitory computer readable medium having instructions stored thereon that are executable by processor electronics to execute a task using end user personal data upon request from a relying party computing device that has no access to the end user personal data where the instructions are executed in order to:
- request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device;
  
  in response to receiving confirmation that the task performance ability for the task associated with the access token is valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution;
  
  in response to receiving a personal data task request and an associated personal data token based at least in part on a reply to the end user personal data token response transmitted by the relying party computing device, determine if a task authorization associated to the end user personal data token response is still valid, wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least a portion of the personal data token response transmitted by each of the personal data controller computer systems; and
  
  in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute the task authorized by the end user personal data token response using the end user personal data.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The non-transitory computer readable medium of claim 13, wherein the end user personal data comprises one or more of email data, an end user physical address, an end user electronic address or an end user phone number.
  - 15. The non-transitory computer readable medium of claim 13, wherein the execution of the task is contingent upon a condition associated to the task being validated as true at the time of execution.
  - 16. The non-transitory computer readable medium of claim 13, wherein the execution of the task is only authorized if execution is requested in a time period authorized by the end user.
  - 17. The non-transitory computer readable medium of claim 13, wherein the personal data token response comprises a personal data token, wherein the personal data token was created in response to the validation that the end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device is still valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Rally AG LLC (Teledisc Corporation)
Original Assignee
AutoGraph Incorporated
Inventors
Roundtree, Brian
Primary Examiner(s)
Henning, Matthew T

Application Number

US15/171,997
Publication Number

US 20160283740A1
Time in Patent Office

1,328 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/6245   Protecting personal data, e...

G06Q 10/10   Office automation; Time man...

G06Q 30/00   Commerce

H04L 51/214   using selective forwarding

H04L 51/48   Message addressing, e.g. ad...

H04L 63/08   for authentication of entit...

H04L 63/104   Grouping of entities

H04L 67/306   User profiles

H04L 67/53   using third party service p...

Consumer and brand owner data management tools and consumer privacy tools

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

127 Citations

17 Claims

Specification

Use Cases

Quick Links

Others

Consumer and brand owner data management tools and consumer privacy tools

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

127 Citations

17 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others