Secure system and method for enforcement of privacy policy and protection of confidentiality
First Claim
1. A method for securely guaranteeing a privacy policy between two enterprises, comprising:
- creating a message at a first enterprise, wherein the message includes a request for data concerning a third party and a privacy policy of the first enterprise;
signing and certifying the message that the first enterprise has a tamper-proof system with a privacy rules engine and that the privacy policy of the first enterprise will be enforced by the privacy rules engine of the first enterprise;
sending the message to a second enterprise; and
running a privacy rules engine at the second enterprise to compare the privacy policy of the first enterprise with a set of privacy rules for the third party.
4 Assignments
0 Petitions
Accused Products
Abstract
The invention includes various systems, architectures, frameworks and methodologies that can securely enforce a privacy policy. A method is include for securely guaranteeing a privacy policy between two enterprises, comprising: creating a message at a first enterprise, wherein the message includes a request for data concerning a third party and a privacy policy of the first enterprise; signing and certifying the message that the first enterprise has a tamper-proof system with a privacy rules engine and that the privacy policy of the first entity will be enforced by the privacy rules engine of the first enterprise; sending the message to a second enterprise; and running a privacy rules engine at the second enterprise to compare the privacy policy of the first enterprise with a set of privacy rules for the third party.
-
Citations
22 Claims
-
1. A method for securely guaranteeing a privacy policy between two enterprises, comprising:
-
creating a message at a first enterprise, wherein the message includes a request for data concerning a third party and a privacy policy of the first enterprise;
signing and certifying the message that the first enterprise has a tamper-proof system with a privacy rules engine and that the privacy policy of the first enterprise will be enforced by the privacy rules engine of the first enterprise;
sending the message to a second enterprise; and
running a privacy rules engine at the second enterprise to compare the privacy policy of the first enterprise with a set of privacy rules for the third party. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An automotive telematics system having a privacy protection framework, comprising:
-
at least one sensor for collecting sensor data from at least one vehicle; and
a data protection manager for managing the sensor data, wherein the data protection manager includes;
a system for receiving data requests for sensor data from at least one application; and
a privacy engine that ensures that each application requesting data has a privacy policy that complies with a privacy policy of the privacy engine. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method for securely guaranteeing a privacy policy for credit card transactions, comprising:
-
building a plurality of data processing devices that can recognize each other using cryptography;
programming a privacy policy into each of the data processing devices;
certifying that each of the data processing devices are equipped with privacy policy enforcement means;
distributing the data processing devices to a merchant and a financial institution;
issuing a credit card to an end user from the financial institution, wherein the end user is assigned a privacy policy in the data processing device of the financial institution;
making a credit card purchase from the merchant by the end-user; and
requesting data from the financial institution'"'"'s data processing device by the merchant'"'"'s data processing device, wherein the type of data that can be provided to the merchant'"'"'s data processing device regarding the end user is governed by the assigned privacy policy of the end user. - View Dependent Claims (21, 22)
-
Specification