Methods and devices for analyzing user privacy based on a user's online presence
First Claim
1. A method for rating privacy risk, the method comprising:
- receiving by a privacy analyzing server device a plurality of identifiers, each identifier of the plurality of identifiers identifying an application or website;
for each application or website of the applications or websites identified by the plurality of identifiers,(i) determining by the privacy analyzing server device whether the application or website has a previously generated valid privacy rating;
(ii) if at least a determination is made that the application or website does not have a previously generated valid privacy rating, then(1) obtaining by the privacy analyzing server device at least one policy associated with the application or website;
(2) identifying, by the privacy analyzing server device, key words or phrases included in the at least one policy, the identified key words or phrases corresponding to one or more interactions of the application or website, the one or more interactions comprising use of functionality of a computing device or use of personal information; and
(3) generating by the privacy analyzing server device a new privacy rating for the application or website based on a level of privacy risk assigned to each of the identified key words or phrases in the at least one policy;
(iii) if at least a determination is made that the application or website has a previously generated valid privacy rating, then retrieving by the privacy analyzing server device the previously generated valid privacy rating for the application or website from a data store; and
generating by the privacy analyzing server device an aggregate privacy rating based on the new privacy ratings or previously generated valid privacy ratings for the applications or websites identified by the plurality of identifiers.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, non-transitory computer readable medium, and policy rating server device that receives a request from a client computing device for one or more privacy ratings. The request identifies at least one application, such as an application installed on the client computing device for example. A policy associated with the identified application is obtained. The obtained policy is analyzed to identify a plurality of key words or phrases associated with use by the at least one application of functionality of, or personal information stored on, the client computing device. One or more privacy ratings are generated based on numerical values assigned to each of the identified key words or phrases. The generated one or more privacy ratings are output to the client computing device in response to the request.
-
Citations
21 Claims
-
1. A method for rating privacy risk, the method comprising:
-
receiving by a privacy analyzing server device a plurality of identifiers, each identifier of the plurality of identifiers identifying an application or website; for each application or website of the applications or websites identified by the plurality of identifiers, (i) determining by the privacy analyzing server device whether the application or website has a previously generated valid privacy rating; (ii) if at least a determination is made that the application or website does not have a previously generated valid privacy rating, then (1) obtaining by the privacy analyzing server device at least one policy associated with the application or website; (2) identifying, by the privacy analyzing server device, key words or phrases included in the at least one policy, the identified key words or phrases corresponding to one or more interactions of the application or website, the one or more interactions comprising use of functionality of a computing device or use of personal information; and (3) generating by the privacy analyzing server device a new privacy rating for the application or website based on a level of privacy risk assigned to each of the identified key words or phrases in the at least one policy; (iii) if at least a determination is made that the application or website has a previously generated valid privacy rating, then retrieving by the privacy analyzing server device the previously generated valid privacy rating for the application or website from a data store; and generating by the privacy analyzing server device an aggregate privacy rating based on the new privacy ratings or previously generated valid privacy ratings for the applications or websites identified by the plurality of identifiers. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system comprising:
-
at least one processor; at least one memory coupled to the processor; and program instructions stored in the at least one memory and executable by the at least one processor, the program instructions when executed by the at least one processor for causing the at least one processor to perform the steps of; receiving a plurality of identifiers, each identifier of the plurality of identifiers identifying an application or website; for each application or website of the applications or websites identified by the plurality of identifiers, (i) determining whether the application or website has a previously generated valid privacy rating; (ii) if at least a determination is made that the application or website does not have a previously generated valid privacy rating, then (1) obtaining at least one policy associated with the application or web site; (2) identifying key words or phrases included in the at least one policy, the identified key words or phrases corresponding to one or more interactions of the application or website, the one or more interactions comprising use of functionality of a computing device or use of personal information; and (3) generating a new privacy rating for the application or website based on a level of privacy risk assigned to each of the identified key words or phrases in the at least one policy; (iii) if at least a determination is made that the application or website has a previously generated valid privacy rating, then retrieving the previously generated valid privacy rating for the application or website from a data store; and generating an aggregate privacy rating based on the new privacy ratings or previously generated valid privacy ratings for the applications or websites identified by the plurality of identifiers. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A non-transitory computer readable medium storing program code for causing a computer to perform the steps of:
-
receiving by a privacy analyzing server device a plurality of identifiers, each identifier of the plurality of identifiers identifying an application or website; for each application or website of the applications or websites identified by the plurality of identifiers, (i) determining by the privacy analyzing server device whether the application or website has a previously generated valid privacy rating; (ii) if at least a determination is made that the application or website does not have a previously generated valid privacy rating, then (1) obtaining by the privacy analyzing server device at least one policy associated with the application or website; (2) identifying, by the privacy analyzing server device, key words or phrases included in the at least one policy, the identified key words or phrases corresponding to one or more interactions of the application or website, the one or more interactions comprising use of functionality of a computing device or use of personal information; and (3) generating by the privacy analyzing server device a new privacy rating for the application or website based on a level of privacy risk assigned to each of the identified key words or phrases in the at least one policy; (iii) if at least a determination is made that the application or website has a previously generated valid privacy rating, then retrieving by the privacy analyzing server device the previously generated valid privacy rating for the application or website from a data store; and generating by the privacy analyzing server device an aggregate privacy rating based on the new privacy ratings or previously generated valid privacy ratings for the applications or websites identified by the plurality of identifiers.
-
Specification