Consumer and brand owner data management tools and consumer privacy tools
First Claim
1. A personal data controller computer system, configured to execute a task using end user personal data upon a request from a relying party computing device that has no access to said end user personal data, the personal data controller computer system comprising:
- memory for storing instructions; and
processor electronics configured to execute the instructions in order to;
request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device;
in response to receiving confirmation that the task authorization and performance ability for the task associated with the access token are valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution;
in response to receiving a personal data task request and an associated personal data token based at least on a reply to the personal data token response transmitted by the relying party computing device, determine if the task authorization associated to the end user personal data token response is still valid and if the task associated to the end user personal data token response is still able to be performed,wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least on a portion of the personal data token response transmitted by each of the personal data controller computer systems; and
in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute, the task authorized by the end user personal data token response using the end user personal data.
2 Assignments
0 Petitions
Accused Products
Abstract
System and computer readable media embodiments of enhanced and flexible login and profile management tools as well as brand owner communication tools are provided which provide more flexibility in regards to information sharing that benefit both users and brand owners and ease the integration of user information into brand owner databases. System and computer readable media embodiments are also provided for an end user to control both how and who uses her personal data. Specifically, these embodiments permit her to authorize which pieces of personal data may be used by particular actors to perform particular tasks. In addition, these embodiments allow the tasks to be performed while simultaneously limiting the number of actor(s)/servers/devices in possession of her personal data.
127 Citations
17 Claims
-
1. A personal data controller computer system, configured to execute a task using end user personal data upon a request from a relying party computing device that has no access to said end user personal data, the personal data controller computer system comprising:
-
memory for storing instructions; and processor electronics configured to execute the instructions in order to; request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device; in response to receiving confirmation that the task authorization and performance ability for the task associated with the access token are valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution; in response to receiving a personal data task request and an associated personal data token based at least on a reply to the personal data token response transmitted by the relying party computing device, determine if the task authorization associated to the end user personal data token response is still valid and if the task associated to the end user personal data token response is still able to be performed, wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least on a portion of the personal data token response transmitted by each of the personal data controller computer systems; and in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute, the task authorized by the end user personal data token response using the end user personal data. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A personal data controller computer system, configured to execute a task using end user personal data upon request of a relying party computing device that has no access to end user personal data, the personal data controller computer system comprising:
-
memory for storing instructions; and processor electronics configured to execute the instructions in order to; request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device; in response to receiving confirmation that the task performance ability for the task associated with the access token is valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution; in response to receiving a personal data task request and an associated personal data token based at least in part on a reply to the end user personal data token response transmitted by the relying party computing device, determine if a task authorization associated to the end user personal data token response is still valid, wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least a portion of the personal data token response transmitted by each of the personal data controller computer systems; and in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute the task authorized by the end user personal data token response using the end user personal data. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A non-transitory computer readable medium having instructions stored thereon that are executable by processor electronics to execute a task using end user personal data upon request from a relying party computing device that has no access to the end user personal data where the instructions are executed in order to:
-
request validation of a task authorization and a task performance ability for the task associated with an access token, wherein the access token was created in response to an end user'"'"'s authorization to execute the task using end user personal data upon task execution being requested by the relying party computing device; in response to receiving confirmation that the task performance ability for the task associated with the access token is valid, transmit a personal data token response, said personal data token response authorizing the execution of the task associated to the access token in response to the relying party computing device requesting task execution; in response to receiving a personal data task request and an associated personal data token based at least in part on a reply to the end user personal data token response transmitted by the relying party computing device, determine if a task authorization associated to the end user personal data token response is still valid, wherein transmission of the personal data task request and the associated personal data token was in response to at least an end user or the relying party computing device selecting to transmit the personal data task request to the personal data controller computer system, wherein said selection was from at least the personal data controller computer system and at least another different personal data controller computer system in which each personal data controller computer system requested validation of the task authorization and the task performance ability for the task associated with the access token, wherein selection of the personal data controller computer system was based on at least a portion of the personal data token response transmitted by each of the personal data controller computer systems; and in response to confirmation that the authorization associated to the end user personal data token response is still valid and that the task associated to the end user personal data token response is still able to be performed, execute the task authorized by the end user personal data token response using the end user personal data. - View Dependent Claims (14, 15, 16, 17)
-
Specification