Data Protection Compliant Deletion of Personally Identifiable Information

US 20140059355A1
Filed: 08/24/2012
Published: 02/27/2014
Est. Priority Date: 08/24/2012
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method, comprising:

encrypting, by operation of a computer, personally-identifiable information (PII) data using a first cryptographic key, wherein the PII data is associated with non-encrypted associated data;

encrypting the encrypted first cryptographic key with a second cryptographic key;

determining that the occurrence of a PII data disassociation event associated with the second cryptographic key has occurred; and

rendering the PII data inaccessible by disassociating the second cryptographic key from the encrypted first cryptographic key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The disclosure generally describes computer-implemented methods, software, and systems for modeling and deploying decision services. One computer-implemented method includes encrypting, by operation of a computer, personally-identifiable information (PII) data using a first cryptographic key, wherein the PII data is associated with non-encrypted associated data, encrypting the encrypted first cryptographic key with a second cryptographic key, determining that the occurrence of a PII data disassociation event associated with the second cryptographic key has occurred, and rendering the PII data inaccessible by disassociating the second cryptographic key from the encrypted first cryptographic key.

Citations

22 Claims

1. A computer-implemented method, comprising:
- encrypting, by operation of a computer, personally-identifiable information (PII) data using a first cryptographic key, wherein the PII data is associated with non-encrypted associated data;
  
  encrypting the encrypted first cryptographic key with a second cryptographic key;
  
  determining that the occurrence of a PII data disassociation event associated with the second cryptographic key has occurred; and
  
  rendering the PII data inaccessible by disassociating the second cryptographic key from the encrypted first cryptographic key.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The computer-implemented method of claim 1, further comprising analyzing the second cryptographic key using at least one of a condition associated with the second cryptographic key or a decision rule.
  - 3. The computer-implemented method of claim 1, wherein the PII data disassociation event includes at least one of exceeding a chronological retention period deadline, a security alert, or a PII data destruction request.
  - 4. The computer-implemented method of claim 1, wherein the disassociation of the second cryptographic key from the first cryptographic key is performed by at least one of permanently erasing the second cryptographic key, expiring the second cryptographic key, or encrypting the second cryptographic key with a third cryptographic key.
  - 5. The computer-implemented method of claim 4, wherein the second cryptographic key expires based on a chronological value.
  - 6. The computer-implemented method of claim 4, wherein the second cryptographic key expires based on a data value.
  - 7. The computer-implemented method of claim 1, wherein the disassociation of the second cryptographic key from the encrypted first cryptographic key preserves a referential integrity between the encrypted PII data and the non-encrypted associated data.

8. A computer-program product, comprising computer-readable instructions embodied on tangible, non-transitory, computer-readable media, the instructions operable when executed to perform operations to:
- encrypt personally-identifiable information (PII) data using a first cryptographic key, wherein the PII data is associated with non-encrypted associated data;
  
  encrypt the encrypted first cryptographic key with a second cryptographic key;
  
  determine that the occurrence of a PII data disassociation event associated with the second cryptographic key has occurred; and
  
  render the PII data inaccessible by disassociating the second cryptographic key from the encrypted first cryptographic key.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The computer-program product of claim 8, further comprising analyzing the second cryptographic key using at least one of a condition associated with the second cryptographic key or a decision rule.
  - 10. The computer-program product of claim 8, wherein the PII data disassociation event includes at least one of exceeding a chronological retention period deadline, a security alert, or a PII data destruction request.
  - 11. The computer-program product of claim 8, wherein the disassociation of the second cryptographic key from the first cryptographic key is performed by at least one of permanently erasing the second cryptographic key, expiring the second cryptographic key, or encrypting the second cryptographic key with a third cryptographic key.
  - 12. The computer-program product of claim 11, wherein the second cryptographic key expires based on a chronological value.
  - 13. The computer-program product of claim 11, wherein the second cryptographic key expires based on a data value.
  - 14. The computer-program product of claim 8, wherein the disassociation of the second cryptographic key from the encrypted first cryptographic key preserves a referential integrity between the encrypted PII data and the non-encrypted associated data.

15. A system, comprising:
- memory operable to store at least personally-identifiable information (PII) data; and
  
  at least one hardware processor interoperably coupled to the memory and operable to;
  
  encrypt the PII data using a first cryptographic key, wherein the PII data is associated with non-encrypted associated data;
  
  encrypt the encrypted first cryptographic key with a second cryptographic key;
  
  determine that the occurrence of a PII data disassociation event associated with the second cryptographic key has occurred; and
  
  render the PII data inaccessible by disassociating the second cryptographic key from the encrypted first cryptographic key.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The system of claim 15, further comprising analyzing the second cryptographic key using at least one of a condition associated with the second cryptographic key or a decision rule.
  - 17. The system of claim 15, wherein the PII data disassociation event includes at least one of exceeding a chronological retention period deadline, a security alert, or a PII data destruction request.
  - 18. The system of claim 15, wherein the disassociation of the second cryptographic key from the first cryptographic key is performed by at least one of permanently erasing the second cryptographic key, expiring the second cryptographic key, or encrypting the second cryptographic key with a third cryptographic key.
  - 19. The system of claim 18, wherein the second cryptographic key expires based on a chronological value.
  - 20. The system of claim 18, wherein the second cryptographic key expires based on a data value.
  - 21. The system of claim 15, wherein the disassociation of the second cryptographic key from the encrypted first cryptographic key preserves a referential integrity between the encrypted PII data and the non-encrypted associated data.

22. A computer-implemented method, comprising:
- encrypting, by operation of a computer, personally-identifiable information (PII) data using a first cryptographic key, wherein the PII data is associated with non-encrypted associated data;
  
  encrypting the encrypted first cryptographic key with a second cryptographic key;
  
  analyzing the second cryptographic key using at least one of a condition associated with the second cryptographic key or a decision rule;
  
  determining that the occurrence of a PII data disassociation event associated with the second cryptographic key has occurred, wherein the PII data disassociation event includes at least one of exceeding a chronological retention period deadline, a security alert, or a PII data destruction request; and
  
  rendering the PII data inaccessible by disassociating the second cryptographic key from the encrypted first cryptographic key, wherein the disassociation of the second cryptographic key from the first cryptographic key is performed by at least one of permanently erasing the second cryptographic key, expiring the second cryptographic key, or encrypting the second cryptographic key with a third cryptographic key, and wherein the disassociation of the second cryptographic key from the encrypted first cryptographic key preserves a referential integrity between the encrypted PII data and the non-encrypted associated data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SAP SE
Original Assignee
SAP AG (SAP SE)
Inventors
Schuette, Mark T., Schneider, Juergen, Khoury, Paul El

Granted Patent

US 9,317,715 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/189
CPC Class Codes

G06F 21/6218   to a system of files or obj...

G06F 21/6254   by anonymising data, e.g. d...

G06F 2221/2143   Clearing memory, e.g. to pr...

Data Protection Compliant Deletion of Personally Identifiable Information

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Data Protection Compliant Deletion of Personally Identifiable Information

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links