Privacy preserving method for summarizing user data
First Claim
Patent Images
1. A method of preparing data corresponding to a plurality of users for anonymous analysis comprising:
- receiving the data into a memory of a server;
for each user of the plurality of users, converting the received data into a plurality of key/value pairs, forming a set of user-key/value pairs;
generating a new data structure in the memory of the server for each key/value pair for which no data structure is associated;
for each user of the plurality of users, inserting a UserID associated with the user into the data structure associated with each of the key/value pairs in the set of user-key/value pairs;
storing the data structure associated with each of the key/value pairs as a prepared data set;
deleting the received data; and
providing access to the prepared data set for anonymous analysis.
9 Assignments
0 Petitions
Accused Products
Abstract
A method includes, in a server residing in a network of interconnected computers, receiving user data, dissecting the received user data into a plurality of key/value pairs, iterating through the plurality of key/value pairs, generating a new data structure in the memory of the server for each key/value pair that do not exist, inserting a UserID into a set associated for a specific key/value pair, storing the key/value sets, and destroying the received user data.
209 Citations
56 Claims
-
1. A method of preparing data corresponding to a plurality of users for anonymous analysis comprising:
-
receiving the data into a memory of a server; for each user of the plurality of users, converting the received data into a plurality of key/value pairs, forming a set of user-key/value pairs; generating a new data structure in the memory of the server for each key/value pair for which no data structure is associated; for each user of the plurality of users, inserting a UserID associated with the user into the data structure associated with each of the key/value pairs in the set of user-key/value pairs; storing the data structure associated with each of the key/value pairs as a prepared data set; deleting the received data; and providing access to the prepared data set for anonymous analysis. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 49, 50, 51, 52, 53, 54, 55, 56)
-
-
17. A method of preventing access by an analytics process to sensitive data corresponding to a plurality of users comprising:
-
receiving the data into a memory of a server; for each user of the plurality of users, converting the received data into a plurality of key/value pairs, forming a set of user-key/value pairs; generating a new data structure in the memory of the server for each key/value pair for which no data structure is associated; for each user of the plurality of users, inserting a UserID associated with the user into the data structure associated with each of the key/value pairs in the set of user-key/value pairs; storing the data structure associated with each of the key/value pairs as a prepared data set; and deleting the received sensitive data, thereby preventing access by the analytics process to the received sensitive data. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. A method of evaluating the effectiveness of an advertisement without reference to identifying information in data corresponding to a plurality of users comprising:
-
receiving data comprising information responsive to the advertisement into a memory of a server; for each user of the plurality of users, converting the received data into a plurality of key/value pairs, forming a set of user-key/value pairs; generating a new data structure in the memory of the server for each key/value pair for which no data structure is associated; for each user of the plurality of users, inserting a UserID associated with the user into the data structure associated with each of the key/value pairs in the set of user-key/value pairs; storing the data structure associated with each of the key/value pairs as a prepared data set; deleting the received data; and evaluating the prepared data set without reference to identifying information the received data. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48)
-
Specification