Enforcing data protection legislation in Web data services

US 7,207,067 B2
Filed: 11/12/2002
Issued: 04/17/2007
Est. Priority Date: 11/12/2002
Status: Expired due to Term

First Claim

Patent Images

1. A method for enforcing multiple countries'"'"' or/and entities'"'"' data protection rules in a Web service, said Web service maintaining a dynamic list of countries or/and entities that have been recognized for adequate data protection and maintaining a set of identification parameters for each registered data recipients, said method comprising the steps of:

formalizing data protection rules for each country or entity into specifications, each of said specifications being treated as a configuration file;

enforcing a first set of data protection rules while collecting personal data from users;

wherein said step of enforcing a first set of data protection rules further comprises the steps of;

creating a document object model (DOM) tree from a given XML form template;

identifying a total list of nodes in said DOM tree that contain a tag for data collection;

identifying a list of policy statements in a formal specification of a data protection rule;

constructing a sub-list of said total list of nodes that should be removed from said DOM tree according to said list of policy statements;

removing all DOM trees with root node included in said sub-list; and

exporting the remaining DOM tree into text format;

enforcing a second set of data protection rules while transferring personal data; and

enforcing a third set of data protection rules while processing personal data collected from users.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method are provided for enabling Web services to enforce multiple countries'"'"' data protection laws and regulations during data collection, data processing storage and data transfer. The system maintains a dynamic list of countries or entities that have been recognized for their adequate data protection. A data collection form is provided that takes into consideration data protection laws of the sovereign in which the form is being filled out. The system prohibits the transfer of personal data in contravention of a local sovereign'"'"'s data protection laws.

Citations

25 Claims

1. A method for enforcing multiple countries'"'"' or/and entities'"'"' data protection rules in a Web service, said Web service maintaining a dynamic list of countries or/and entities that have been recognized for adequate data protection and maintaining a set of identification parameters for each registered data recipients, said method comprising the steps of:
- formalizing data protection rules for each country or entity into specifications, each of said specifications being treated as a configuration file;
  
  enforcing a first set of data protection rules while collecting personal data from users;
  
  wherein said step of enforcing a first set of data protection rules further comprises the steps of;
  
  creating a document object model (DOM) tree from a given XML form template;
  
  identifying a total list of nodes in said DOM tree that contain a tag for data collection;
  
  identifying a list of policy statements in a formal specification of a data protection rule;
  
  constructing a sub-list of said total list of nodes that should be removed from said DOM tree according to said list of policy statements;
  
  removing all DOM trees with root node included in said sub-list; and
  
  exporting the remaining DOM tree into text format;
  
  enforcing a second set of data protection rules while transferring personal data; and
  
  enforcing a third set of data protection rules while processing personal data collected from users.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein each of said specifications comprises four sections:
    - pattern definition and legal attribute;
      
      a first access control list (ACL) for data collection policies;
      
      a second access control list (ACL) for data transfer policies; and
      
      a third access control list (ACL) for data processing policies.
  - 3. The method of claim 1, further comprising the steps of:
    - initializing a set of DOM nodes whose sub-trees should be removed;
      
      checking whether there is any node in said total list;
      
      if no, returning said set of DOM nodes as the node sub-list for removal;
      
      if yes, designating the current DOM node as the first node in said total list;
      
      designating a data pattern referred by said tag for data collection associated with said current DOM node;
      
      computing the corresponding legal attribute values of said data pattern;
      
      checking whether said list of policy statements allow to collect the user'"'"'s data with said legal attribute values;
      
      if yes, removing said current DOM node from said total list; and
      
      if no, adding said current DOM node into said set of DOM nodes whose sub-trees should be removed.
  - 4. The method of claim 1, wherein said step of enforcing a second set of data protection rules further comprises the steps of:
    - identifying a set of data entries included in a data recipient'"'"'s request;
      
      applying a configuration criteria to compute a corresponding set of data patterns for said set of data entries;
      
      computing the legal values of said set of data patterns;
      
      applying an access control list (ACL) for data transfer to determine whether said request should be accepted or denied; and
      
      recording said request and result status in a log database.
  - 5. The method of claim 1, wherein said step of enforcing a third set of data protection rules further comprises the steps of:
    - identifying a set of data entries included in a data recipient'"'"'s request;
      
      applying a configuration criteria to compute a corresponding set of data patterns for said set of data entries;
      
      computing the legal values of said set of data patterns; and
      
      applying an access control list (ACL) for data processing to determine whether said request should be accepted or denied.

6. In a Web service which maintains a dynamic list of countries or/and entities that have been recognized for adequate data protection, wherein data protection rules for each country or entity are formally specified, and wherein data recipients have registered with said Web service a set of identification parameters, a method for enforcing multiple countries'"'"' or/and entities'"'"' data protection rules while collecting personal data, comprising the steps of:
- enforcing a first set of data protection rules while processing personal data collected from users; and
  
  enforcing a second set of data protection rules while transferring personal data;
  
  wherein said step of collecting comprises a third set of data protection rules comprising the steps of;
  
  creating a document object model (DOM) tree from a given XML form template;
  
  identifying a total list of nodes in said DOM tree that contain a tag for data collection;
  
  identifying a list of policy statements in a formal specification of a data protection rule;
  
  constructing a sub-list of said total list of nodes that should be removed from said DOM tree according to said list of policy statements;
  
  removing all DOM trees with root node included in said sub-list; and
  
  exporting the remaining DOM tree into text format.
- View Dependent Claims (7, 8)
- - 7. The method of claim 6, wherein the constructing step further comprises the steps of:
    - initializing a set of DOM nodes whose sub-trees should be removed;
      
      checking whether there is any node in said total list;
      
      if no, returning said set of DOM nodes as the node sub-list for removal;
      
      if yes, designating the current DOM node as the first node in said total list;
      
      designating a data pattern referred by said tag for data collection associated with said current DOM node;
      
      computing the corresponding legal attribute values of said data pattern;
      
      checking whether said list of policy statements allow to collect the user'"'"'s data with said legal attribute values;
      
      if yes, removing said current DOM node from said total list; and
      
      if no, adding said current DOM node into said set of DOM nodes whose sub-trees should be removed.
  - 8. The method of claim 6, further comprising the step of:
    - deciding which country or entity'"'"'s rules to be applied based on any of;
      
      request URL; and
      
      data owner'"'"'s citizenship.

9. In a Web service which maintains a dynamic list of countries or/and entities that have been recognized for adequate data protection, wherein data protection miss for each country or entity are formally specified, and wherein all data recipients have registered with said Web service a set of identification parameters, a method for enforcing multiple countries'"'"' or/and entities'"'"' data protection rules while transferring personal data, comprising the steps of:
- enforcing a first set of data protection rules while collecting personal data from users;
  
  wherein said step of transferring comprises a second set of data protection rules comprising the steps of;
  
  identifying a set of data entries included in a data recipient'"'"'s request;
  
  applying a configuration criterion to compute a corresponding set of data patterns for said set of data entries;
  
  computing the legal values of said set of data patterns;
  
  applying an access control list (ACL) for data transfer to determine whether said request should be accepted or denied; and
  
  recording said request and result status in a log database; and
  
  enforcing a third set of data protection rules while processing personal data collected from users.
- View Dependent Claims (10, 11)
- - 10. The method of claim 9, wherein each request made by a data recipient comprises a requester identification and a purpose identification.
  - 11. The method of claim 9, further comprising the step of:
    - deciding which country'"'"'s or entity'"'"'s rules to be applied based on any of;
      
      request URL; and
      
      data owner'"'"'s citizenship.

12. In a Web service which maintains a dynamic list of countries or/and entities that have been recognized for adequate data protection, wherein data protection rules for each country or entity are formally specified, and wherein all data recipients have registered with said Web service a set of identification parameters, a method for enforcing multiple country'"'"'s or/and entities'"'"' data protection rules while processing personal data, comprising the steps of:
- enforcing a first set of data protection rules while collecting personal data from users; and
  
  enforcing a second set of data protection rules while transferring personal data;
  
  wherein said step of processing comprises a third set of data protection rules comprising the steps of;
  
  identifying a set of data entries included in a data recipient'"'"'s request;
  
  applying a configuration criterion to compute a corresponding set of data patterns for said set of data entries;
  
  computing the legal values of said set of data patterns; and
  
  applying an access control list (AOL) for data processing to determine whether said request should be accepted or denied.
- View Dependent Claims (13)
- - 13. The method of claim 12 further comprising the step of:
    - deciding which country or entity'"'"'s rules to be applied based on any of;
      
      request URL; and
      
      data owner'"'"'s citizenship.

14. In a Web service which maintains a dynamic list of countries or/and entities that have been recognized for adequate data protection, wherein data recipients have registered with said Web service a set of identification parameters, an apparatus for enforcing multiple countries'"'"' or/and entities'"'"' data protection rules comprising:
- means for formalizing data protection rules for each country or entity into specifications, each of said specifications being treated as a configuration file;
  
  means for enforcing a first set of data protection rules while collecting personal data from users;
  
  means for enforcing a second set of data protection rules while transferring personal data; and
  
  means for enforcing a third set of data protection rules while processing personal data collected from users.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The apparatus of claim 14, wherein each of said specifications comprises four sections:
    - pattern definition and legal attribute;
      
      a first access control list (ACL) for data collection policies;
      
      a second access control list (ACL) for data transfer policies; and
      
      a third access control list (ACL) for data processing policies.
  - 16. The apparatus of claim 14, wherein said means for enforcing a first set of data protection rules performs the operations of:
    - creating a document object model (DOM) tree from a given XML form template;
      
      identifying a total list of nodes in said DOM tree that contain a tag for data collection;
      
      identifying a list of policy statements in a formal specification of a data protection rule;
      
      constructing a sub-list of said total list of nodes that should be removed from said DOM tree according to said list of policy statements;
      
      removing all DOM trees with root node included in said sub-list; and
      
      exporting the remaining DOM tree into text format.
  - 17. The apparatus of claim 16, wherein said means for enforcing a first set of data protection rules further performs operations of:
    - initializing a set of DOM nodes whose sub-trees should be removed;
      
      checking whether there is any node in said total list;
      
      if no, returning said set of DOM nodes as the node sub-list for removal;
      
      if yes, designating the current DOM node as the first node in said total list;
      
      designating a data pattern referred by said tag for data collection associated with said current DOM node;
      
      computing the corresponding legal attribute values of said data pattern;
      
      checking whether said list of policy statements allow to collect the user'"'"'s data with said legal attribute values;
      
      if yes, removing said current DOM node from said total list; and
      
      if no, adding said current DOM node into said set of DOM nodes whose sub-trees should be removed.
  - 18. The apparatus of claim 14, wherein said means for enforcing a second set of data protection rules performs the operations of:
    - identifying a set of data entries included in a data recipient'"'"'s request;
      
      applying a configuration criteria to compute a corresponding set of data patterns for said set of data entries;
      
      computing the legal values of said set of data patterns;
      
      applying an access control list (ACL) for data transfer to determine whether said request should be accepted or denied; and
      
      recording said request and result status in a log database.
  - 19. The apparatus of claim 14, wherein said means for enforcing a third set of data protection rules performs the operations of:
    - identifying a set of data entries included in a data recipient'"'"'s request;
      
      applying a configuration criteria to compute a corresponding set of data patterns for said set of data entries;
      
      computing the legal values of said set of data patterns; and
      
      applying an access control list (ACL) for data processing to determine whether said request should be accepted or denied.

20. An apparatus for providing Web service that supports enforcement of data protection rules of multiple countries or/and entities, comprising:
- means for registering each data requester'"'"'s identification information;
  
  means for maintaining a dynamic list of countries and entities that have been recognized for adequate data protection;
  
  a set of formalized specifications of data protection rules, each of said specification being treated as a configuration file;
  
  means for enforcing a first set of data protection rules on collecting personal data;
  
  means for enforcing a second set of data protection rules on data transfer;
  
  means for enforcing a third set of data protection rules on data processing; and
  
  means for deciding which country or entity'"'"'s data protection rule to be applied.
- View Dependent Claims (21, 22, 23, 24, 25)
- - 21. The apparatus of claim 20, wherein said each data requester'"'"'s identification information comprises any of:
    - country code;
      
      organization identification;
      
      business classification;
      
      purpose identifications; and
      
      contact information of said requesters data controller.
  - 22. The apparatus of claim 20, wherein each of said specifications comprises four sections:
    - pattern definition and legal attribute;
      
      a first access control list (ACL) for data collection policies;
      
      a second access control list (ACL) for data transfer policies; and
      
      a third access control list (ACL) for data processing policies.
  - 23. The apparatus of claim 20, wherein said means for enforcing data protection rules on collecting personal data comprises:
    - data collection forms created from form templates and said specifications; and
      
      form template language.
  - 24. The apparatus of claim 20, wherein said means for enforcing data protection rules on data transfer executes a request by performing the steps of:
    - identifying a set of data entries included in said request;
      
      applying a configuration criteria to compute a corresponding set of data patterns for said set of data entries;
      
      computing the legal values of said set of data patterns;
      
      applying an access control list (ACL) for data transfer to determine whether said request should be accepted or denied; and
      
      recording said request and result status in a log database.
  - 25. The apparatus of claim 20, wherein said means for enforcing data protection rules on data processing executes a request by performing the steps of:
    - identifying a set of data entries included in said request;
      
      applying a configuration criteria to compute a corresponding set of data patterns for said set of data entries;
      
      computing the legal values of said set of data patterns; and
      
      applying an access control list (ACL) for data processing to determine whether said request should be accepted or denied.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Original Assignee
AOL LLC (Apollo Global Management, Inc.)
Inventors
Feng, An, Minjarez, Frank
Primary Examiner(s)
Sheikh; Ayaz
Assistant Examiner(s)
CHEN, SHIN HON

Application Number

US10/294,009
Publication Number

US 20040093518A1
Time in Patent Office

1,617 Days
Field of Search

713/193, 713/200, 713/201, 705/405, 707 1- 3, 707/6, 707/9, 707/204, 715/513, 715/507, 726/26
US Class Current

726/26
CPC Class Codes

H04L 63/104   Grouping of entities

Y10S 707/99931   Database or file accessing

Y10S 707/99932   Access augmentation or opti...

Y10S 707/99933   Query processing, i.e. sear...

Y10S 707/99936   Pattern matching access

Y10S 707/99939   Privileged access

Enforcing data protection legislation in Web data services

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Enforcing data protection legislation in Web data services

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links