Customer support account with restricted patient data access
First Claim
1. A method for accessing a user'"'"'s account by customer support without viewing the user'"'"'s private data, the method comprising:
- receiving, in an application module communicating with a web service, a request for authentication by a support person using a linked user-support login name that includes a concatenation of the support person'"'"'s login name, the user'"'"'s login name and a prefix;
authenticating the user, by the application, using the user'"'"'s login name extracted from the linked user-support login name;
authenticating the support person, by the application, using the support person'"'"'s login name extracted from the linked user-support login name;
retrieving, by the application, a current user session as viewed by the user on an electronic screen of a processing device of the user, the retrieval being performed in response to the authentication of the user and the support person;
dynamically redacting private data of the user from the user session to create a redacted user session, where the prefix acts as a trigger for activating a redaction module for redacting the user'"'"'s current session; and
delivering the redacted user session for display in an electronic screen of a processing device of the support person.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for accessing a user'"'"'s account by customer support without viewing the user'"'"'s private data includes receiving, in an application module communicating with a web service, a request for authentication by a support person using a linked user-support login name. The method includes authenticating the user, authenticating the support person and retrieving a current session of the user as viewed by the user on an electronic screen of a processing device of the user. The method further includes dynamically redacting private data of the user from the user session to create a redacted user session, and delivering the redacted user session for display in an electronic screen of a processing device of the support person.
19 Citations
20 Claims
-
1. A method for accessing a user'"'"'s account by customer support without viewing the user'"'"'s private data, the method comprising:
-
receiving, in an application module communicating with a web service, a request for authentication by a support person using a linked user-support login name that includes a concatenation of the support person'"'"'s login name, the user'"'"'s login name and a prefix; authenticating the user, by the application, using the user'"'"'s login name extracted from the linked user-support login name; authenticating the support person, by the application, using the support person'"'"'s login name extracted from the linked user-support login name; retrieving, by the application, a current user session as viewed by the user on an electronic screen of a processing device of the user, the retrieval being performed in response to the authentication of the user and the support person; dynamically redacting private data of the user from the user session to create a redacted user session, where the prefix acts as a trigger for activating a redaction module for redacting the user'"'"'s current session; and delivering the redacted user session for display in an electronic screen of a processing device of the support person. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 16)
-
-
13. A method for accessing a user'"'"'s account by customer support without viewing the user'"'"'s private data, the method comprising:
-
receiving, in a health management module communicating with a web service, a request for authentication by a support person, wherein the request includes a user-support login string that concatenates a notification prefix with a user'"'"'s login name with a support person'"'"'s login name, along with the support person'"'"'s password for the health management module; parsing, by the health management module, the user-support login string; authenticating, by the health management module, the user using the user'"'"'s login name extracted from the user-support login string, wherein in response to the user-support login string having the notification prefix, the method further comprises; authenticating, by the health management module, the support person using the support person'"'"'s login name extracted from the user-support login string; retrieving a current session of the user as viewed by the user in an electronic screen of a processing device of the user; identifying in an electronic file of the current session of the user fields pre-tagged as private; dynamically redacting values of the pre-tagged fields to create a redacted electronic file for a redacted user session; sending the redacted electronic file to a support module of the web service; and displaying the redacted user session in an electronic screen of a processing device of the authenticated support person based on the redacted electronic file. - View Dependent Claims (14, 15)
-
-
17. A system for accessing a user'"'"'s account by customer support without viewing the user'"'"'s private data, the system comprising:
-
a web service; a health management module communicating with the web service and accessible by a user having an account and authentication credentials with the web service; a support module communicating with the web service and accessible by a support person having a support account and authentication credentials with the web service; an authentication service communicating with the web service and programmed to; (a) authenticate the user with the user'"'"'s authentication credentials; (b) authenticate the support person with the support person'"'"'s authentication credentials; and (c) authenticate the support person with linked user-support credentials for a limited access of the user'"'"'s account, wherein the linked user-support credentials include a concatenation of the user'"'"'s credentials, the support person'"'"'s credentials and a prefix; and a redaction module communicating with the authentication service and programmed, in response to the prefix, to dynamically redact private data from a user'"'"'s session with the web service and send the redacted user session to the support module for access by the support person, when the support person and the user are authenticated with the linked user-support credentials, wherein the prefix serves as a trigger for activating the redaction module. - View Dependent Claims (18, 19, 20)
-
Specification