Secure information vault, exchange and processing system and method
First Claim
1. A secure information repository system, comprising:
- a trusted third party having data storage for securely storing encrypted information, associated with an account holder;
a deposit system for securely depositing encrypted information into the data storage by the account holder;
a system structured and arranged to allow the account holder to designate information provided by the account holder to the trusted third party as private, shareable, and commercial, wherein;
the private information is information accessible to the account holder but not to a second party;
the sharable information is information accessible to the account holder and the second party as provided by contract; and
the commercial information is information accessible to the account holder and the second party when the second party pays a fee for the commercial information;
a system of the trusted third party for allowing the account holder to provide permission to the second party to read an agreed upon set of personal information;
an information access system for accessing the encrypted information stored in the data storage;
an information withdrawal system for removing the encrypted information stored in the data storage; and
a tracking system for logging at least any one of a deposit to the data storage, a withdrawal from the data storage, a deletion to the data storage, an account creation, an account deletion, and an access to the data storage,wherein the account holder is an owner of personal data and the system allows the owner of personal data to control and manage access and dissemination of the personal data such that the trusted third party prevents the second party from seeing designated personal information and makes available to the second party designated information of the account holder.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method for providing an information vault so that individual owners of personal data may control and manage the access and dissemination of the personal data and provides for the owner of the personal data to receive compensation for the use of the personal data, thus, in effect, the personal data becomes a valuable commodity analogous to money. A business model is provided that allows competitive, unbiased trusted third parties whose business is protecting the information analogous to how a commercial bank protects money. Centralized protected storage of personal data is provided, thereby minimizing the number of copies that may be in existence. Second party access to the centralized storage of personal data may be made on-demand, as required for commerce, with a provision for assessing fees for accesses.
146 Citations
39 Claims
-
1. A secure information repository system, comprising:
-
a trusted third party having data storage for securely storing encrypted information, associated with an account holder; a deposit system for securely depositing encrypted information into the data storage by the account holder; a system structured and arranged to allow the account holder to designate information provided by the account holder to the trusted third party as private, shareable, and commercial, wherein; the private information is information accessible to the account holder but not to a second party; the sharable information is information accessible to the account holder and the second party as provided by contract; and the commercial information is information accessible to the account holder and the second party when the second party pays a fee for the commercial information; a system of the trusted third party for allowing the account holder to provide permission to the second party to read an agreed upon set of personal information; an information access system for accessing the encrypted information stored in the data storage; an information withdrawal system for removing the encrypted information stored in the data storage; and a tracking system for logging at least any one of a deposit to the data storage, a withdrawal from the data storage, a deletion to the data storage, an account creation, an account deletion, and an access to the data storage, wherein the account holder is an owner of personal data and the system allows the owner of personal data to control and manage access and dissemination of the personal data such that the trusted third party prevents the second party from seeing designated personal information and makes available to the second party designated information of the account holder. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for providing a protected information repository, comprising:
-
a trusted third party having an information vault having data storage comprising; a system structured and arranged to allow an account holder to designate information provided by the account holder to the trusted third party as private, shareable, and commercial, wherein; the private information is information accessible to the account holder but not to a second party; the sharable information is information accessible to the account holder and the second party as provided by contract; and the commercial information is information accessible to the account holder and the second party when the second party pays a fee for the commercial information; a system configured to securely create an account for the account holder in the information vault; a system configured to securely delete information in the information vault; a system configured to allow the account holder to provide permission to the second party to read an agreed upon set of personal information; a system configured to access information in the information vault; and a system configured to charge for transactional activity involving the information, wherein the system for providing a protected information repository allows the account holder to control and manage access and dissemination of the personal information such that the trusted third party prevents the second party from seeing designated personal information and makes available to the second party designated information of the account holder. - View Dependent Claims (16, 17, 18)
-
-
19. A method of providing an information repository, comprising:
-
accessing an information vault of a trusted third party to perform a transaction involving a secured item of information stored in the information vault; providing a system structured and arranged to allow an account holder to designate information provided by the account holder to the trusted third party as private, shareable, and commercial, wherein; the private information is information accessible to the account holder but not to a second party; the sharable information is information accessible to the account holder and the second party as provided by contract; and the commercial information is information accessible to the account holder and the second party when the second party pays a fee for the commercial information; authenticating an identity of the second party; executing the transaction on computer infrastructure when the identity of the second party is authenticated; and logging the transaction, wherein the method allows the account holder, who is an owner of personal data, to control and manage access and dissemination of the personal information such that the trusted third party prevents the second party from seeing designated personal information and makes available to the second party designated information of the owner of personal information. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. A method of charging for personal information comprising:
-
depositing personal data by an owner into an information vault of computer infrastructure of a trusted third party; providing a system structured and arranged to allow the owner to open an account and become an account holder, wherein the account holder can designate information provided by the account holder to the trusted third party as private, shareable, and commercial, wherein; the private information is information accessible to the account holder but not to a second party; the sharable information is information accessible to the account holder and the second party as provided by contract; and the commercial information is information accessible to the account holder and the second party when the second party pays a fee for the commercial information; establishing a contract with the second party and the owner to enable access to the personal data by the at least one entity; allowing via the trusted third party the owner of personal data to provide permission to the second party to read an agreed upon set of personal data; accessing the personal data by the second party according to terms of the contract; preventing the second party from seeing designated personal data and making available to the second party designated data of the owner of personal data; charging a fee to the second party for accessing the designated personal data of the owner of the personal data; and remitting at least a portion of the fee to the owner of the personal data. - View Dependent Claims (34, 35, 36, 37, 38)
-
-
39. A computer program product comprising a computer usable medium having readable program code embodied in the medium, the computer program product includes at least one component to:
-
allow an owner of personal data to control and manage, via the internet, access and dissemination of the personal data wherein the owner of personal data provides permission to an entity to read an agreed upon set of personal data; preventing the entity from seeing designated personal data and making available to the entity a secured item of personal data stored in the information vault; access an information vault of a trusted third party to perform a transaction involving the secured item of personal data stored in the information vault; authenticate an identity of the entity performing the accessing; execute the transaction when the identity of the entity is authenticated; and log the transaction, wherein the computer program product is implemented with a system structured and arranged to allow the owner to open an account and become an account holder, wherein the account holder can designate information provided by the account holder to the trusted third party as private, shareable, and commercial, wherein; the private information is information accessible to the account holder but not to the entity; the sharable information is information accessible to the account holder and the entity as provided by contract; and the commercial information is information accessible to the account holder and the entity when the entity pays a fee for the commercial information.
-
Specification