System, method, and program for storing and controlling access to data representing personal behavior
First Claim
1. A system for storing and controlling access to data representing personal behavior, the system comprising:
- an ID retrieval apparatus configured to receive identifying information revealing an identity of an individual, to submit a request corresponding to received identifying information to an ID generation apparatus, to receive an anonymized user ID in return, and to output the anonymized user ID to the individual;
a data engine comprising a data store and an access controller, the data store being inaccessible to the ID retrieval apparatus and being configured to receive and store personalized behavioral data, access to stored personalized behavioral data being controlled by the access controller, wherein the personalized behavioral data are from a behavioral data source device;
the behavioral data source device being either one of a device configured to interact with the individual and to record information representing an interaction with the individual as behavioral data, and a sensor apparatus configured to record a series of measurements of a physical property of the individual as behavioral data; and
the behavioral data source device being configured to submit the behavioral data to the data engine as personalized behavioral data, either by one of anonymously personalizing the behavioral data with the anonymized user ID of the individual at the behavioral data source device, and via an intermediate device at which the behavioral data are received, anonymously personalized with the anonymized user ID of the individual, and transferred to the data engine as personalized behavioral data;
the access controller being configured to control access to the personalized behavioral data by requiring that data access requests from service providers specify the anonymized user ID with which the personalized behavioral data are personalized to access the personalized behavioral data, wherein the access controller is configured to maintain a list of service providers authorized to access the data store, to determine whether a received data access request is from one of the service providers of the list, and when not, to block the data access request;
the system further comprising;
a service providing apparatus operable on behalf of the one of the service providers authorized to access the data store and being configured to receive an anonymously personalized registration request from the individual, the anonymously personalized registration request being personalized only by the anonymized user ID, to submit a data access request to the data engine specifying the anonymized user ID and a range of the behavioral data personalized with the specified anonymized user ID, to receive behavioral data from within the range from the data engine, to execute data processing on received behavioral data, and to output a data processing result on behalf of the individual.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for storing and controlling access to data representing personal behavior, the system comprising an ID retrieval apparatus to receive identifying information revealing the identity of an individual, to submit a request corresponding to the received identifying information to an ID generation apparatus, to receive an anonymized user ID in return, and to output the user ID to the individual; a data engine comprising a data store and an access controller, the store being inaccessible to the ID retrieval apparatus and configured to receive and store personalized behavioral data, access to the stored behavioral data being controlled by the controller, the behavioral data representing behavior of the individual, which data are anonymously personalized with the user ID; the controller controlling access to the data by requiring that access requests from service providers specify the user ID with which the behavioral data are personalized to access the data.
-
Citations
10 Claims
-
1. A system for storing and controlling access to data representing personal behavior, the system comprising:
-
an ID retrieval apparatus configured to receive identifying information revealing an identity of an individual, to submit a request corresponding to received identifying information to an ID generation apparatus, to receive an anonymized user ID in return, and to output the anonymized user ID to the individual; a data engine comprising a data store and an access controller, the data store being inaccessible to the ID retrieval apparatus and being configured to receive and store personalized behavioral data, access to stored personalized behavioral data being controlled by the access controller, wherein the personalized behavioral data are from a behavioral data source device; the behavioral data source device being either one of a device configured to interact with the individual and to record information representing an interaction with the individual as behavioral data, and a sensor apparatus configured to record a series of measurements of a physical property of the individual as behavioral data; and the behavioral data source device being configured to submit the behavioral data to the data engine as personalized behavioral data, either by one of anonymously personalizing the behavioral data with the anonymized user ID of the individual at the behavioral data source device, and via an intermediate device at which the behavioral data are received, anonymously personalized with the anonymized user ID of the individual, and transferred to the data engine as personalized behavioral data; the access controller being configured to control access to the personalized behavioral data by requiring that data access requests from service providers specify the anonymized user ID with which the personalized behavioral data are personalized to access the personalized behavioral data, wherein the access controller is configured to maintain a list of service providers authorized to access the data store, to determine whether a received data access request is from one of the service providers of the list, and when not, to block the data access request; the system further comprising; a service providing apparatus operable on behalf of the one of the service providers authorized to access the data store and being configured to receive an anonymously personalized registration request from the individual, the anonymously personalized registration request being personalized only by the anonymized user ID, to submit a data access request to the data engine specifying the anonymized user ID and a range of the behavioral data personalized with the specified anonymized user ID, to receive behavioral data from within the range from the data engine, to execute data processing on received behavioral data, and to output a data processing result on behalf of the individual. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for storing and controlling access to data representing personal behavior, the method comprising:
-
receiving, at an ID retrieval apparatus, identifying information revealing an identity of an individual, submitting a request corresponding to received identifying information to an ID generation apparatus, receiving an anonymized user ID from the ID generation apparatus in return, and outputting the anonymized user ID to the individual; receiving and storing, at a data engine comprising a data store and an access controller with the data store being inaccessible to the ID retrieval apparatus, personalized behavioral data, access to the stored personalized behavioral data being controlled by the access controller, wherein the personalized behavioral data are from a behavioral data source device, the behavioral data source device being either one of a device configured to interact with the individual and to record information representing an interaction with the individual as behavioral data, and a sensor apparatus configured to record a series of measurements of a physical property of the individual as behavioral data; and the method further comprising; submitting, by the behavioral data source device, the behavioral data to the data engine as personalized behavioral data, either by one of anonymously personalizing the behavioral data with the anonymized user ID of the individual at the behavioral data source device, and via an intermediate device at which the behavioral data are received, anonymously personalized with the anonymized user ID of the individual, and transferred to the data engine as personalized behavioral data; controlling, at the access controller, access to the stored personalized behavioral data by requiring that data access requests from service providers specify the anonymized user ID with which the personalized behavioral data are personalized to access the personalized behavioral data, including maintaining a list of service providers authorized to access the data store, determining whether a received data access request is from one of the service providers of the list, and when not, blocking the data access request; and at a service providing apparatus operable on behalf of the one of the service providers authorized to access the data store, receiving an anonymously personalized registration request from the individual, the anonymously personalized registration request being personalized only by the anonymized user ID, submitting a data access request to the data engine specifying the anonymized user ID and a range of the behavioral data personalized with the specified anonymized user ID, receiving behavioral data from within the range from the data engine, executing data processing on the received behavioral data, and outputting a data processing result on behalf of the individual.
-
-
9. A computer readable non-transitory storage media, comprising:
-
a first non-transitory storage medium area storing a computer program which when executed by a first server, causes the first server to perform; receiving identifying information revealing an identity of an individual, submitting a request corresponding to the received identifying information to an ID generation apparatus, receiving an anonymized user ID from the ID generation apparatus in return, and outputting the anonymized user ID to the individual; and a second non-transitory storage medium area storing a computer program which when executed by a second server, comprising a data storage unit that is inaccessible to the first server, causes the second server to perform; receiving and storing personalized behavioral data, access to the stored personalized behavioral data being controlled by the second server, wherein the personalized behavioral data are from a behavioral data source device, the behavioral data source device being either one of a device configured to interact with the individual and to record information representing an interaction with the individual as behavioral data, and a sensor apparatus configured to record a series of measurements of a physical property of the individual as behavioral data, the second server receiving the behavioral data from the behavioral data source device as personalized behavioral data, personalized with the anonymized user ID of the individual, either from the behavioral data source device or from an intermediate device between the behavioral data source device and the second server; and controlling access to the stored personalized behavioral data by requiring that data access requests from service providers specify the anonymized user ID with which the personalized behavioral data are personalized to access the personalized behavioral data, including maintaining a list of service providers authorized to access the data store, determining whether a received data access request is from one of the service providers of the list, and when not, blocking the data access request; the computer-readable non-transitory storage media further comprising; a third non-transitory storage medium area storing a computer program which when executed by a third server, causes the third server to perform; on behalf of the one of the service providers authorized to access the data store, receiving an anonymously personalized registration request from the individual, the anonymously personalized registration request being personalized only by the anonymized user ID, submitting a data access request to the data engine specifying the anonymized user ID and a range of the behavioral data personalized with the specified anonymized user ID, receiving behavioral data from within the range from the data engine, executing data processing on the received behavioral data, and outputting a data processing result on behalf of the individual. - View Dependent Claims (10)
-
Specification