Data processing systems for use in automatically generating, populating, and submitting data subject access requests
First Claim
1. A computer-implemented data processing method of automatically submitting a data subject access request, the method comprising:
- analyzing, by at least one computer processor, a plurality of pieces of electronic correspondence sent to a particular data subject from a particular entity;
determining, by at least one computer processor based on the analysis, that the particular data subject has established a software rule to automatically direct electronic correspondence received from the particular entity to a particular correspondence folder;
at least partially in response to determining that the particular data subject has established the software rule to automatically direct electronic correspondence received from the particular entity to the particular correspondence folder, determining, by at least one computer processor, that the particular data subject does not actively do business with the particular entity; and
at least partially in response to determining that the particular data subject does not actively do business with the particular entity;
scanning, by at least one computer processor, one or more of the plurality of pieces of electronic correspondence to determine one or more pieces of personal data of the particular data subject; and
automatically submitting, by at least one computer processor, a data subject access request to the particular entity on behalf of the particular data subject, wherein the data subject access request comprises the one or more pieces of the personal data of the particular data subject determined by scanning the one or more of the plurality of pieces of electronic correspondence, and wherein the data subject access request is a request that is selected from a group consisting of;
(1) a request to rectify inaccurate personal data of the particular data subject;
(2) a request to access of a copy of the personal data of the particular data subject processed by the entity;
(3) a request to restrict the processing of the personal data of the particular data subject;
(4) a request to delete the one or more pieces of the personal data of the particular data subject determined by scanning the one or more of the plurality of pieces of electronic correspondence; and
(5) a request to transfer the personal data of the particular data subject to a specified controller.
2 Assignments
0 Petitions
Accused Products
Abstract
Computer systems and methods for: (1) analyzing electronic correspondence associated with a data subject (e.g., the emails within one or more email in-boxes associated with the data subject); (2) based on the analysis, identifying at least one entity that that the data subject does not actively do business with (e.g., as evidenced by the fact that the data subject no longer opens emails from the entity, and/or has set up a rule to automatically delete emails received from the entity); and (3) in response to identifying the entity as an entity that the data subject no longer does business with, at least substantially automatically populating and/or submitting a data subject access request to the entity (e.g., to delete all personal information being processed by the entity).
904 Citations
20 Claims
-
1. A computer-implemented data processing method of automatically submitting a data subject access request, the method comprising:
-
analyzing, by at least one computer processor, a plurality of pieces of electronic correspondence sent to a particular data subject from a particular entity; determining, by at least one computer processor based on the analysis, that the particular data subject has established a software rule to automatically direct electronic correspondence received from the particular entity to a particular correspondence folder; at least partially in response to determining that the particular data subject has established the software rule to automatically direct electronic correspondence received from the particular entity to the particular correspondence folder, determining, by at least one computer processor, that the particular data subject does not actively do business with the particular entity; and at least partially in response to determining that the particular data subject does not actively do business with the particular entity; scanning, by at least one computer processor, one or more of the plurality of pieces of electronic correspondence to determine one or more pieces of personal data of the particular data subject; and automatically submitting, by at least one computer processor, a data subject access request to the particular entity on behalf of the particular data subject, wherein the data subject access request comprises the one or more pieces of the personal data of the particular data subject determined by scanning the one or more of the plurality of pieces of electronic correspondence, and wherein the data subject access request is a request that is selected from a group consisting of; (1) a request to rectify inaccurate personal data of the particular data subject; (2) a request to access of a copy of the personal data of the particular data subject processed by the entity; (3) a request to restrict the processing of the personal data of the particular data subject; (4) a request to delete the one or more pieces of the personal data of the particular data subject determined by scanning the one or more of the plurality of pieces of electronic correspondence; and (5) a request to transfer the personal data of the particular data subject to a specified controller. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-implemented data processing method of automatically submitting a data subject access request, the method comprising:
-
analyzing, by at least one computer processor, a plurality of text messages sent to a particular data subject from a particular entity; determining, by at least one computer processor based on the analysis, that the particular data subject has configured messaging software to automatically block text messages received from the particular entity; at least partially in response to determining that the particular data subject has configured the messaging software to automatically block the text messages received from the particular entity, determining, by at least one computer processor, that the particular data subject does not actively do business with the particular entity; and at least partially in response to determining that the particular data subject does not actively do business with the particular entity; scanning, by at least one computer processor, one or more of the plurality of text messages to identify one or more pieces of personal data of the particular data subject; automatically generating and populating, by at least one computer processor, a data subject access request to the particular entity on behalf of the particular data subject, wherein the data subject access request comprises the one or more pieces of the personal data of the particular data identified by scanning the one or more of the plurality of text messages; and automatically submitting, by at least one computer processor, the data subject access request to the particular entity on behalf of the particular data subject, wherein the data subject access request is a request to delete the one or more pieces of the personal data of the particular data subject identified by scanning the one or more of the plurality of text messages and stored by the particular entity. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A data processing system for automatically submitting a data subject access request, the system comprising:
-
one or more computer processors; and computer memory operatively coupled to the computer processor, wherein the data processing system comprises; means for analyzing a first plurality of pieces of electronic correspondence by scanning one or more components of each piece of the first plurality of pieces of electronic correspondence to identify a particular entity; means for determining, based at least in part on scanning the one or more components of each piece of the first plurality of pieces of electronic correspondence to identify the particular entity, a second plurality of pieces of electronic correspondence sent to a particular data subject from the particular entity; means for determining that the particular data subject has submitted a request to the particular entity requesting that the particular entity not send electronic correspondence to the particular data subject; means for determining, based at least in part on determining that the particular data subject has submitted the request to the particular entity requesting that the particular entity not send electronic correspondence to the particular data subject, that the particular data subject does not use one or more services offered by the particular entity; and means for, at least partially in response to determining that the particular data subject does not use one or more services offered by the particular entity; scanning one or more of the second plurality of pieces of electronic correspondence to determine one or more pieces of personal data of the particular data subject; automatically generating a data subject access request to the particular entity on behalf of the particular data subject; automatically populating the data subject access request with the one or more pieces of the personal data of the particular data determined by scanning the one or more of the second plurality of pieces of electronic correspondence; and automatically submitting the data subject access request to the particular entity on behalf of the particular data subject, wherein the data subject access request is a request to delete the one or more pieces of the personal data of the particular data subject determined by scanning the one or more of the second plurality of pieces of electronic correspondence and stored by the particular entity. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification