Data processing systems for generating and populating a data inventory for processing data access requests
First Claim
1. A computer-implemented data processing method for identifying one or more pieces of personal data associated with a data subject within a data system in order to fulfill a data subject access request, the method comprising:
- receiving, by one or more processors, from a data subject, a data subject access request that is a request for a particular organization to perform one or more actions with regard to one or more pieces of personal data the particular organization has obtained on the data subject;
processing, by one or more processors, the data subject access request by identifying the one or more pieces of personal data associated with the data subject, wherein;
identifying the one or more pieces of personal data associated with the data subject comprises;
accessing a plurality of data models that comprise a respective data inventory for each of a plurality of data storage locations and map one or more relationships between one or more aspects of the data inventory and one or more data storage locations of the plurality of data storage locations;
identifying, based at least in part on one or more data models of the plurality of data models, one or more storage locations of the plurality of data storage locations that comprise each of the one or more pieces of personal data the particular organization has obtained on the data subject; and
retrieving each of the one or more pieces of personal data the particular organization has obtained on the data subject from the one or more storage locations of the plurality of data storage locations;
in response to identifying the one or more pieces of personal data, taking one or more actions selected from the group consisting of;
deleting the one or more pieces of personal data from the data system;
modifying at least one of the one or more pieces of personal data and storing the modified at least one of the one or more pieces of personal data in the data system; and
generating a report comprising the one or more pieces of personal data and providing the report to the data subject.
2 Assignments
0 Petitions
Accused Products
Abstract
In particular embodiments, a data processing data inventory generation system is configured to: (1) generate a data model (e.g., a data inventory) for one or more data assets utilized by a particular organization; (2) generate a respective data inventory for each of the one or more data assets; and (3) map one or more relationships between one or more aspects of the data inventory, the one or more data assets, etc. within the data model. In particular embodiments, a data asset (e.g., data system, software application, etc.) may include any entity that collects, processes, contains, and/or transfers personal data (e.g., a software application, database, website, server, etc.). A data asset may include any software or device (e.g., server or servers) utilized by a particular entity for such data collection, processing, transfer, storage, etc. The system may then utilize the generated model to fufill a data subject access request.
462 Citations
20 Claims
-
1. A computer-implemented data processing method for identifying one or more pieces of personal data associated with a data subject within a data system in order to fulfill a data subject access request, the method comprising:
-
receiving, by one or more processors, from a data subject, a data subject access request that is a request for a particular organization to perform one or more actions with regard to one or more pieces of personal data the particular organization has obtained on the data subject; processing, by one or more processors, the data subject access request by identifying the one or more pieces of personal data associated with the data subject, wherein; identifying the one or more pieces of personal data associated with the data subject comprises; accessing a plurality of data models that comprise a respective data inventory for each of a plurality of data storage locations and map one or more relationships between one or more aspects of the data inventory and one or more data storage locations of the plurality of data storage locations; identifying, based at least in part on one or more data models of the plurality of data models, one or more storage locations of the plurality of data storage locations that comprise each of the one or more pieces of personal data the particular organization has obtained on the data subject; and retrieving each of the one or more pieces of personal data the particular organization has obtained on the data subject from the one or more storage locations of the plurality of data storage locations; in response to identifying the one or more pieces of personal data, taking one or more actions selected from the group consisting of; deleting the one or more pieces of personal data from the data system; modifying at least one of the one or more pieces of personal data and storing the modified at least one of the one or more pieces of personal data in the data system; and generating a report comprising the one or more pieces of personal data and providing the report to the data subject. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-implemented data processing method for responding to a data subject access request, the method comprising:
-
receiving a data subject access request from a requestor comprising one or more request parameters that is a request for a particular organization to perform one or more actions with regard to one or more pieces of personal data the particular organization has obtained on the requestor based on the one or more request parameters; processing the request by identifying one or more pieces of personal data associated with the requestor, the one or more pieces of personal data being stored in one or more data repositories associated with a particular organization, wherein identifying the one or more pieces of personal data associated with the requestor comprises; accessing a plurality of data models that comprise a respective data inventory for each of the one or more data repositories and map one or more relationships between one or more aspects of the data inventory and the one or more data repositories; determining, based at least in part on one or more data models of the plurality of data models, one or more storage locations of the one or more data repositories that comprise each of the one or more pieces of personal data associated with the requestor by; analyzing each respective data inventory to identify one or more data inventory attributes associated with each of the one or more data repositories; and scanning the one or more data inventory attributes using one or more pieces of identifying information associated with the requestor to determine the one or more storage locations of the one or more data repositories that comprise each of the one or more pieces of personal data associated with the requestor retrieving each of the one or more pieces of personal data associated with the requestor from the one or more storage locations of the one or more data repositories; and taking one or more actions based at least in part on the data subject access request, the one or more actions including one or more actions related to the one or more pieces of personal data. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A data subject access request processing system comprising;
-
one or more processors; computer memory; and a computer-readable medium storing computer-executable instructions that, when executed by the one or more processors, cause the one or more processors to perform operations comprising; receiving a data subject access request from a requestor comprising one or more request parameters that is a request for a particular organization to perform one or more actions with regard to one or more pieces of personal data the particular organization has obtained on the requestor based on the one or more request parameters; processing the request by identifying one or more pieces of personal data associated with the requestor, the one or more pieces of personal data being stored in one or more data repositories associated with a particular organization, wherein identifying the one or more pieces of personal data comprises; accessing a data map that defines one or more electronic links between the one or more data repositories and stores a plurality of data inventories that define a plurality of inventory attributes for each of the one or more data repositories; scanning each of the plurality of data inventories to identify one or more data attributes associated with each of the one or more data inventories; and analyzing each of the one or more data attributes to identify the one or more pieces of personal data; and taking one or more actions based at least in part on the data subject access request, wherein the one or more actions comprise at least one action selected from the group consisting of; deleting the one or more pieces of personal data; modifying at least one of the one or more pieces of personal data; and displaying the one or more pieces of personal data to the requestor. - View Dependent Claims (18, 19, 20)
-
Specification