Please download the dossier by clicking on the dossier button x
×

Dynamic de-identification and anonymity

  • US 9,087,216 B2
  • Filed: 10/31/2014
  • Issued: 07/21/2015
  • Est. Priority Date: 11/01/2013
  • Status: Active Grant
First Claim
Patent Images

1. A device, comprising:

  • a communication interface for sending data;

    one or more memory elements having, stored therein, computer program code; and

    one or more processing units operatively coupled to the one or more memory elements and configured to execute instructions in the computer program code that cause the one or more processing units to;

    request a first dynamically-changing, temporally unique identifier and a second dynamically-changing, temporally unique identifier from a first privacy server;

    associate the first dynamically-changing, temporally unique identifier with a first data subject and a first one or more data attributes of the first data subject;

    associate the second dynamically-changing, temporally unique identifier with the first data subject and a second one or more data attributes of the first data subject;

    generate first time period data, wherein the first time period data comprises information defining a first time period during which the first dynamically-changing, temporally unique identifier is used to identify the first data subject and retrieve the associated first one or more data attributes;

    generate second time period data, wherein the second time period data comprises information defining a second time period during which the second dynamically-changing, temporally unique identifier is used to identify the first data subject and retrieve the associated second one or more data attributes;

    wherein the first time period is different from the second time period;

    wherein the first dynamically-changing, temporally unique identifier is different from the second dynamically-changing, temporally unique identifier;

    wherein the first dynamically-changing, temporally unique identifier is not used to identify the first data subject and retrieve the associated first one or more data attributes during the second time period, andwherein the second dynamically-changing, temporally unique identifier is not used to identify the first data subject and retrieve the associated second one or more data attributes during the first time period, thereby providing anonymity of the first data subject;

    store, in at least one of the one or more memory elements, the first and second dynamically-changing, temporally unique identifiers, the first and second one or more data attributes, and the first and second time period data;

    send, in response to a determination that a first condition has been met, the first dynamically-changing, temporally unique identifier, the first time period data, and the first one or more data attributes to the first privacy server; and

    send, in response to a determination that a second condition has been met, the second dynamically-changing, temporally unique identifier, the second time period data, and the second one or more data attributes to the first privacy server.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×