Data processing systems for modifying privacy campaign data via electronic messaging systems
First Claim
1. A computer-implemented data processing method for electronically receiving the input of campaign data related to a privacy campaign and electronically calculating a risk level for the privacy campaign based on the data inputs comprising:
- displaying on a graphical user interface a prompt to create an electronic record for a privacy campaign, wherein the privacy campaign utilizes personal data collected from at least one or more persons or one or more entities;
receiving a command to create an electronic record for the privacy campaign;
creating an electronic record for the privacy campaign and digitally storing the record;
presenting, on one or more graphical user interfaces, a plurality of prompts for the input of campaign data related to the privacy campaign;
electronically receiving campaign data input by one or more users, wherein the campaign data identifies each of;
a description of the campaign;
one or more types of personal data related to the campaign;
a subject from which the personal data was collected;
the storage of the personal data; and
access to the personal data;
processing the campaign data by electronically associating the campaign data with the record for the privacy campaign;
receiving, by one or more computer processors, a request to associate an electronic message with the record for the privacy campaign;
in response to receiving the request, associating the electronic message with the record for the privacy campaign;
digitally storing the campaign data associated with the record for the campaign;
using one or more computer processors, calculating a risk level for the campaign based on the campaign data, wherein calculating the risk level for the campaign comprises;
electronically retrieving from a database the campaign data associated with the record for the campaign;
electronically determining a plurality of weighting factors for the campaign, wherein the plurality of weighting factors are based upon a plurality of factors including;
the nature of the personal data associated with the campaign;
the physical location of the personal data associated with the campaign;
the length of time that the personal data associated with the campaign will be retained in storage;
the type of individual from which the personal data associated with the campaign originated; and
the country of residence of the individual from which the personal data associated with the campaign originated;
electronically assigning a relative risk rating for each of the plurality of factors; and
electronically calculating a risk level for the campaign based upon the plurality of weighting factors and the relative risk rating for each of the plurality of factors; and
digitally storing the risk level associated with the record for the campaign;
scanning one or more pieces of content in the electronic message;
after scanning the one or more pieces of content, analyzing the one or more pieces of content to identify one or more keywords in the electronic message;
determining, based at least in part on the one or more keywords, whether to modify the risk level for the privacy campaign;
in response to determining to modify the risk level, calculating an updated risk level for the particular privacy campaign by;
electronically modifying at least one of the plurality of weighting factors;
electronically calculating an updated risk level based at least in part on the modified plurality of weighting factors; and
digitally storing the updated risk level associated with the record for the campaign.
2 Assignments
0 Petitions
Accused Products
Abstract
In various embodiments, a privacy campaign data modification system is configured to store electronic messages in memory and associate those electronic messages with a particular privacy campaign. In particular, a privacy officer or other individual may receive e-mails or other electronic messages that are associated with an existing privacy campaign or an existing privacy impact assessment currently being performed for a particular privacy campaign. In various embodiments, it may be necessary to store and maintain the electronic messages for any suitable reason (e.g., record keeping, auditing, etc.).
-
Citations
20 Claims
-
1. A computer-implemented data processing method for electronically receiving the input of campaign data related to a privacy campaign and electronically calculating a risk level for the privacy campaign based on the data inputs comprising:
-
displaying on a graphical user interface a prompt to create an electronic record for a privacy campaign, wherein the privacy campaign utilizes personal data collected from at least one or more persons or one or more entities; receiving a command to create an electronic record for the privacy campaign; creating an electronic record for the privacy campaign and digitally storing the record; presenting, on one or more graphical user interfaces, a plurality of prompts for the input of campaign data related to the privacy campaign; electronically receiving campaign data input by one or more users, wherein the campaign data identifies each of; a description of the campaign; one or more types of personal data related to the campaign; a subject from which the personal data was collected; the storage of the personal data; and access to the personal data; processing the campaign data by electronically associating the campaign data with the record for the privacy campaign; receiving, by one or more computer processors, a request to associate an electronic message with the record for the privacy campaign; in response to receiving the request, associating the electronic message with the record for the privacy campaign; digitally storing the campaign data associated with the record for the campaign; using one or more computer processors, calculating a risk level for the campaign based on the campaign data, wherein calculating the risk level for the campaign comprises; electronically retrieving from a database the campaign data associated with the record for the campaign; electronically determining a plurality of weighting factors for the campaign, wherein the plurality of weighting factors are based upon a plurality of factors including; the nature of the personal data associated with the campaign; the physical location of the personal data associated with the campaign; the length of time that the personal data associated with the campaign will be retained in storage; the type of individual from which the personal data associated with the campaign originated; and the country of residence of the individual from which the personal data associated with the campaign originated; electronically assigning a relative risk rating for each of the plurality of factors; and electronically calculating a risk level for the campaign based upon the plurality of weighting factors and the relative risk rating for each of the plurality of factors; and digitally storing the risk level associated with the record for the campaign; scanning one or more pieces of content in the electronic message; after scanning the one or more pieces of content, analyzing the one or more pieces of content to identify one or more keywords in the electronic message; determining, based at least in part on the one or more keywords, whether to modify the risk level for the privacy campaign; in response to determining to modify the risk level, calculating an updated risk level for the particular privacy campaign by; electronically modifying at least one of the plurality of weighting factors; electronically calculating an updated risk level based at least in part on the modified plurality of weighting factors; and digitally storing the updated risk level associated with the record for the campaign. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-implemented data processing method of electronically modifying a data structure comprising campaign data related to a privacy campaign, the method comprising:
-
receiving, by one or more processors, a request to modify a data structure to include one or more electronic messages, wherein the data structure digitally stores campaign data related to a privacy campaign, and the campaign data identifies each of; a description of the privacy campaign; one or more types of personal data related to the privacy campaign; a subject from which the personal data was collected; a storage location of the personal data; one or more access permissions related to the personal data; a risk level for the privacy campaign, wherein the risk level is calculated by; identifying a plurality of risk factors for the privacy campaign, wherein each of the plurality of risk factors has an associated weighting factor and the plurality of risk factors includes; a type of the personal data collected as part of the particular privacy campaign; information about a type of data subject from which the personal data is collected as part of the particular privacy campaign; and storage information for the personal data collected as part of the particular privacy campaign; and electronically calculating the risk level for the privacy campaign based upon, for each respective one of the plurality of risk factors, the weighting factor for the risk factor, in response to receiving the request; scanning one or more pieces of content in the one or more electronic messages; after scanning the one or more pieces of content, analyzing the one or more pieces of content; determining based at least in part on the one or more pieces of content, whether to modify the data structure to include the one or more messages; in response to determining to modify the data structure, modifying, by one or more processors, the data structure to include the one or more electronic messages; associating, in the data structure, the one or more electronic messages with the campaign data; determining, based at least in part on the one or more pieces of content, whether to modify the risk level for the privacy campaign; and in response to determining to modify the risk level, calculating an updated risk level for privacy campaign by; electronically modifying the associated weighting factor for at least one of the plurality of risk factors; after electronically modifying the associated weighting factor for the at least one of the plurality of risk factors;
electronically calculating a modified risk level for the privacy campaign based upon, for each respective one of the plurality of risk factors, the associated weighting factor; anddigitally storing the modified risk level with the campaign data. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A computer-implemented data processing method of electronically modifying campaign data related to a particular privacy campaign of a plurality of privacy campaigns, the method comprising:
-
providing, by one or more processors, a software plug-in for installation on a computing device; receiving, by one or more processors, via the software plug-in, a request to modify campaign data for a particular privacy campaign of a plurality of privacy campaigns to include one or more electronic messages, wherein the campaign data identifies each of; a description of the particular privacy campaign; one or more types of personal data related to the particular privacy campaign; a subject from which the personal data was collected; a storage location of the personal data; one or more access permissions related to the personal data; and a risk level for the particular privacy campaign; in response to receiving the request; scanning one or more pieces of content in the one or more electronic messages; after scanning the one or more pieces of content, analyzing the one or more pieces of content; and identifying the particular privacy campaign of the plurality of privacy campaigns based at least in part on the analyzed one or more pieces of content; modifying, by one or more processors, the campaign data for the particular privacy campaign to include the one or more electronic messages; associating, in the data structure, the one or more electronic messages with the campaign data; analyzing the one or more pieces of content to identify one or more keywords in the one or more messages; determining, based at least in part on the one or more keywords, whether to modify the risk level for the particular privacy campaign; and in response to determining to modify the risk level, calculating an updated risk level for the particular privacy campaign by; identifying a plurality of risk factors for the particular privacy campaign, wherein each of the plurality of risk factors has an associated weighting factor and the plurality of risk factors includes; a type of the personal data collected as part of the particular privacy campaign; information about a type of data subject from which the personal data is collected as part of the particular privacy campaign; and storage information for the personal data collected as part of the particular privacy campaign; electronically modifying the associated weighting factor for at least one of the plurality of risk factors; electronically calculating the updated risk level for the privacy campaign based upon, for each respective one of the plurality of risk factors, the weighting factor for the risk factor; and digitally storing the updated risk level associated with the record for the campaign. - View Dependent Claims (18, 19, 20)
-
Specification