Privacy management systems and methods
First Claim
Patent Images
1. A data processing system for determining readiness to comply with a set of privacy regulations, the system comprising:
- one or more processors; and
computer memory storing computer-executable instructions that, when executed by the one or more processors, cause the one or more processors to perform operations comprising;
generating a master compliance readiness questionnaire comprising a plurality of questions;
detecting, on a graphical user interface, a user selection of a first territory;
at least partially in response to detecting the user selection of the first territory;
determining a first set of regulations based at least in part on the first territory;
and generating a first compliance readiness questionnaire based at least in part on the first set of regulations, the first compliance readiness questionnaire comprising a plurality of questions;
detecting, on the graphical user interface, a user selection of a second territory;
at least partially in response to detecting the user selection of the second territory;
determining a second set of regulations based at least in part on the second territory; and
generating a second compliance readiness questionnaire based at least in part on the second set of regulations, the second compliance readiness questionnaire comprising a plurality of questions;
generating an ontology mapping a first question of the plurality of questions of the master compliance readiness questionnaire to a first question of the plurality of questions of the first compliance readiness questionnaire for the first set of regulations and to a first question of the plurality of questions of the second compliance readiness questionnaire for the second set of regulations, wherein the first question of the plurality of questions of the master compliance readiness questionnaire solicits information regarding one or more privacy policies;
receiving a request to determine an extent of compliance with a plurality of sets of regulations, wherein the plurality of sets of regulations comprises the set of regulations;
at least partially in response to receiving the request to determine the extent of compliance with the plurality of sets of regulations, generating a prompt to a user requesting an answer to the first question of the plurality of questions of the master compliance readiness questionnaire;
receiving input from the user indicating the answer to the first question of the plurality of questions of the master compliance readiness questionnaire;
storing the answer to the first question of the plurality of questions of the master compliance readiness questionnaire;
accessing the ontology;
populating the first question of the plurality of questions of the first compliance readiness questionnaire for the first set of regulations with the answer to the first question of the plurality of questions of the master compliance readiness questionnaire using the ontology;
determining, based at least in part on the answer to the first question of the plurality of questions of the master compliance readiness questionnaire, an extent of compliance with the first set of regulations; and
automatically generating a notification of the extent of compliance with the first set of regulations.
2 Assignments
0 Petitions
Accused Products
Abstract
Data processing systems and methods, according to various embodiments, are adapted for mapping various questions regarding a data breach from a master questionnaire to a plurality of territory-specific data breach disclosure questionnaires. The answers to the questions in the master questionnaire are used to populate the territory-specific data breach disclosure questionnaires and determine whether disclosure is required in territory. The system can automatically notify the appropriate regulatory bodies for each territory where it is determined that data breach disclosure is required.
1066 Citations
20 Claims
-
1. A data processing system for determining readiness to comply with a set of privacy regulations, the system comprising:
-
one or more processors; and computer memory storing computer-executable instructions that, when executed by the one or more processors, cause the one or more processors to perform operations comprising; generating a master compliance readiness questionnaire comprising a plurality of questions; detecting, on a graphical user interface, a user selection of a first territory; at least partially in response to detecting the user selection of the first territory; determining a first set of regulations based at least in part on the first territory; and generating a first compliance readiness questionnaire based at least in part on the first set of regulations, the first compliance readiness questionnaire comprising a plurality of questions; detecting, on the graphical user interface, a user selection of a second territory; at least partially in response to detecting the user selection of the second territory; determining a second set of regulations based at least in part on the second territory; and generating a second compliance readiness questionnaire based at least in part on the second set of regulations, the second compliance readiness questionnaire comprising a plurality of questions; generating an ontology mapping a first question of the plurality of questions of the master compliance readiness questionnaire to a first question of the plurality of questions of the first compliance readiness questionnaire for the first set of regulations and to a first question of the plurality of questions of the second compliance readiness questionnaire for the second set of regulations, wherein the first question of the plurality of questions of the master compliance readiness questionnaire solicits information regarding one or more privacy policies; receiving a request to determine an extent of compliance with a plurality of sets of regulations, wherein the plurality of sets of regulations comprises the set of regulations; at least partially in response to receiving the request to determine the extent of compliance with the plurality of sets of regulations, generating a prompt to a user requesting an answer to the first question of the plurality of questions of the master compliance readiness questionnaire; receiving input from the user indicating the answer to the first question of the plurality of questions of the master compliance readiness questionnaire; storing the answer to the first question of the plurality of questions of the master compliance readiness questionnaire; accessing the ontology; populating the first question of the plurality of questions of the first compliance readiness questionnaire for the first set of regulations with the answer to the first question of the plurality of questions of the master compliance readiness questionnaire using the ontology; determining, based at least in part on the answer to the first question of the plurality of questions of the master compliance readiness questionnaire, an extent of compliance with the first set of regulations; and automatically generating a notification of the extent of compliance with the first set of regulations. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A computer-implemented data processing method for determining readiness to comply with a plurality of sets of privacy regulations, the method comprising:
-
generating, by one or more processors a master regulatory compliance readiness questionnaire comprising a plurality of questions; detecting, by one or more processors on a graphical user interface, a user selection of a first territory; at least partially in response to detecting the user selection of the first territory; determining, by one or more processors, a first set of privacy regulations based at least in part on the first territory; and generating, by one or more processors, a first regulatory compliance readiness questionnaire for the first set of privacy regulations, the first regulatory compliance readiness questionnaire for the first set of privacy regulations comprising a plurality of questions; detecting, by one or more processors on the graphical user interface, a user selection of a second territory; at least partially in response to detecting the user selection of the second territory; determining, by one or more processors, a second set of privacy regulations based at least in part on the second territory; and generating, by one or more processors, a second regulatory compliance readiness questionnaire for the second set of privacy regulations, the second regulatory compliance readiness questionnaire for the second set of privacy regulations comprising a plurality of questions; generating, by one or more computer processors, an ontology, wherein the ontology; maps one or more questions from the first regulatory compliance readiness questionnaire for the first set of privacy regulations to a first question in the master regulatory compliance readiness questionnaire; and maps one or more questions from the second regulatory compliance readiness questionnaire for the second set of privacy regulations to the first question in the master regulatory compliance readiness questionnaire; presenting, by one or more processors via a graphical user interface, a prompt requesting an answer to the first question in the master regulatory compliance readiness questionnaire from a user; receiving, by one or more processors via the graphical user interface, input indicating the answer to the first question in the master regulatory compliance readiness questionnaire from the user; storing, by one or more processors, the answer to the first question in the master regulatory compliance readiness questionnaire; populating, by one or more processors using the ontology, the one or more questions from the first regulatory compliance readiness questionnaire with the answer to the first question in the master regulatory compliance readiness questionnaire; populating, by one or more processors using the ontology, the one or more questions from the second regulatory compliance readiness questionnaire with the answer to the first question in the master regulatory compliance readiness questionnaire; determining, by the one or more processors based on the one or more questions from the first regulatory compliance readiness questionnaire, an extent of compliance with the first set of privacy regulations; determining, by the one or more processors based on the one or more questions from the second regulatory compliance readiness questionnaire, an extent of compliance with the second set of privacy regulations; and automatically presenting, by one or more processors on the graphical user interface, an indication of the extent of compliance with the first set of privacy regulations and an indication of the extent of compliance with the second set of privacy regulations. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification