Systems and methods for automatic and customizable data minimization of electronic data stores

US 10,657,273 B2
Filed: 03/05/2018
Issued: 05/19/2020
Est. Priority Date: 12/29/2015
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

a data store configured to store computer-executable instructions; and

a hardware processor in communication with the data store, wherein the computer-executable instructions, when executed, configure the hardware processor to;

receive, from a presentation server, a first request to access an item of protected information;

determine, based at least in part on at least one of the first request or an information type of the item of protected information, that the item of protected information is to be minimized;

obtain the item of protected information;

identify, based at least in part on the information type of the item of protected information, a transformation function from a plurality of transformation functions, wherein individual transformation functions are identified from the plurality of transformation functions on a per-request or per-item basis;

cause the transformation function to be applied to the item of protected information to produce an item of minimized information that preserves one or more characteristics of the item of protected information, wherein the item of minimized information reduces a determinable association between the item of minimized information and an identity associated with the item of protected information;

cause the presentation server to display a user interface to render the item of minimized information that preserves one or more characteristics of the item of protected information instead of the item of protected information;

receive, from the presentation server, a second request to access the item of protected information;

determine, based at least in part on a physical location associated with the second request or a security of a connection associated with the second request, that access to the item of protected information is to be allowed; and

cause the presentation server to display an updated user interface to replace the item of minimized information with the item of protected information.

View all claims

8 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A dynamic data minimization server implements minimization protocols to entity-specific information based on access rights (e.g., privacy rights) of a requesting entity. The minimization may be applied on the fly (e.g., as the entity-specific information is requested) and the level, type, protocol, etc., of encryption (or other minimization process) may be selected based on a particular type of a data item. The dynamic data minimization server may determine and apply transformation functions, such as encryption, to items of protected information, transforming those items of protected information into items of minimized information. If a requesting entity has appropriate rights, the dynamic data minimization server may selectively apply a reverse transformation function, such as decryption, to recover the original information. The systems and methods include generation and presentation of user interfaces for presenting minimized information and processing requests to de-minimize information, and may be used to provide minimization services to pre-existing data stores.

133 Citations

19 Claims

1. A system comprising:
- a data store configured to store computer-executable instructions; and
  
  a hardware processor in communication with the data store, wherein the computer-executable instructions, when executed, configure the hardware processor to;
  
  receive, from a presentation server, a first request to access an item of protected information;
  
  determine, based at least in part on at least one of the first request or an information type of the item of protected information, that the item of protected information is to be minimized;
  
  obtain the item of protected information;
  
  identify, based at least in part on the information type of the item of protected information, a transformation function from a plurality of transformation functions, wherein individual transformation functions are identified from the plurality of transformation functions on a per-request or per-item basis;
  
  cause the transformation function to be applied to the item of protected information to produce an item of minimized information that preserves one or more characteristics of the item of protected information, wherein the item of minimized information reduces a determinable association between the item of minimized information and an identity associated with the item of protected information;
  
  cause the presentation server to display a user interface to render the item of minimized information that preserves one or more characteristics of the item of protected information instead of the item of protected information;
  
  receive, from the presentation server, a second request to access the item of protected information;
  
  determine, based at least in part on a physical location associated with the second request or a security of a connection associated with the second request, that access to the item of protected information is to be allowed; and
  
  cause the presentation server to display an updated user interface to replace the item of minimized information with the item of protected information.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The system of claim 1, wherein the transformation function comprises one or more of a generalizing function, a depersonalizing function, an anonymizing function, a character masking function, an encryption function, a hashing function, a bucketing function, a randomizing function, or a precision decreasing function.
  - 3. The system of claim 1, wherein the information type of the item of protected information comprises a name type, an address type, a telephone number type, an identification number type, a location type, a salary type, an income type, a password type, a date type, a health record type, or a test score type.
  - 4. The system of claim 1, wherein the hardware processor is further configured to generate user interface data useable to render the item of minimized information.
  - 5. The system of claim 1, wherein the hardware processor is further configured to determine the one or more characteristics of the item of protected information that are preserved by the item of minimized information.
  - 6. The system of claim 5, wherein the one or more characteristics are determined based at least in part on the first request.

7. A computer-implemented method comprising:
- determining, by a first computing device, that an item of protected information is to be minimized;
  
  identifying, by the first computing device, a transformation function from a plurality of transformation functions based at least in part on an information type of the item of protected information, wherein individual transformation functions are identified from the plurality of transformation functions on a per-request or per-item basis;
  
  applying, by the first computing device, the transformation function to the item of protected information to produce an item of minimized information that preserves one or more characteristics of the item of protected information, and wherein the item of minimized information reduces a determinable association between the item of minimized information and an identity associated with the item of protected information;
  
  transmitting, by the first computing device, the item of minimized information to a second computing device, wherein transmitting the item of minimized information causes the second computing device to display a user interface that includes the item of minimized information that preserves one or more characteristics of the item of protected information and excludes the item of protected information;
  
  receiving, by the first computing device, a request from the second computing device to de-minimize the item of minimized information;
  
  determining, based at least in part on a physical location associated with the request, that access to the item of protected information is to be allowed; and
  
  transmitting, by the first computing device, the item of protected information to the second computing device, wherein transmitting the item of protected information causes the second computing device to display an updated user interface that includes the item of protected information.
- View Dependent Claims (8, 9, 10, 11, 12, 13)
- - 8. The computer-implemented method of claim 7, wherein determining that the item of protected information is to be minimized is based at least in part on the item of protected information.
  - 9. The computer-implemented method of claim 7, wherein determining that the item of protected information is to be minimized is based at least in part on a previous request for the item of protected information.
  - 10. The computer-implemented method of claim 9, wherein the previous request for the item of protected information identifies a requesting entity, and wherein determining that the item of protected information is to be minimized is based at least in part on the requesting entity.
  - 11. The computer-implemented method of claim 7, wherein the user interface further includes at least a user interface control that, when selected, generates the request to de-minimize the item of minimized information.
  - 12. The computer-implemented method of claim 11 further comprising:
    - determining, by the first computing device, a reverse transformation function associated with the transformation function; and
      
      applying, by the first computing device, the reverse transformation function to the item of minimized information to produce the item of protected information.
  - 13. The computer-implemented method of claim 7, wherein the one or more characteristics of the item of protected information that are preserved by the item of minimized information include one or more of a portion of the item of protected information, a geographic region corresponding to the item of protected information, or a numerical range corresponding to the item of protected information.

14. A non-transitory computer-readable storage medium including computer-executable instructions that, when executed by a processor, configure the processor to:
- determine that an item of protected information is to be minimized;
  
  identify, based at least in part on an information type of the item of protected information, a transformation function from a plurality of transformation functions, wherein individual transformation functions are identified from the plurality of transformation functions on a per-request or per-item basis;
  
  apply the transformation function to the item of protected information to produce an item of minimized information that preserves one or more characteristics of the item of protected information, and wherein the item of minimized information reduces a determinable associated between the item of minimized information and an identity associated with the item of protected information;
  
  cause a presentation server to display a user interface that includes the item of minimized information that preserves one or more characteristics of the item of protected information and excludes the item of protected information;
  
  receive, from the presentation server, a request to access the item of protected information;
  
  determine, based at least in part on a security of a connection associated with the request, that access to the item of protected information is to be allowed; and
  
  cause the presentation server to display an updated user interface that includes the item of protected information.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The non-transitory computer-readable storage medium of claim 14, wherein the processor is further configured to generate at least a portion of the user interface that includes the item of minimized information that preserves one or more characteristics of the item of protected information and excludes the item of protected information.
  - 16. The non-transitory computer-readable storage medium of claim 14, wherein the processor is configured to determine that the item of protected information is to be minimized in response to a previous request to access the item of protected information.
  - 17. The non-transitory computer-readable storage medium of claim 16, wherein the processor is configured to determine that the item of protected information is to be minimized based at least in part on an access level associated with the previous request to access the item of protected information.
  - 18. The non-transitory computer-readable storage medium of claim 14, wherein the processor is further configured to identify the transformation function based at least in part on a degree of privacy associated with the item of protected information.
  - 19. The non-transitory computer-readable storage medium of claim 14, wherein the transformation function dissociates the item of protected information from a second item of information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Palantir Technologies Incorporated
Original Assignee
Palantir Technologies Incorporated
Inventors
Erickson, Kyle, Miyake, Nicholas, Alessi, Dominique
Primary Examiner(s)
Schmidt, Kari L

Application Number

US15/912,490
Publication Number

US 20180196954A1
Time in Patent Office

806 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/604   Tools and structures for ma...

G06F 21/62   Protecting access to data v...

G06F 21/6209   to a single file or object,...

G06F 21/6218   to a system of files or obj...

G06F 21/6227   where protection concerns t...

G06F 3/0481   based on specific propertie...

H04L 63/0428   wherein the data content is...

Systems and methods for automatic and customizable data minimization of electronic data stores

First Claim

8 Assignments

0 Petitions

Accused Products

Abstract

133 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for automatic and customizable data minimization of electronic data stores

First Claim

8 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

133 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links