PRIVACY PROTECTION-TYPE DATA PROVIDING SYSTEM
First Claim
1. An information providing apparatus connected to a plurality of first user terminals and a plurality of second user terminals, wherein the information providing apparatus applies anonymization processing, which is executed by designating a parameter and which is processing for converting data so that an individual is not identified, onto data including personal information collected from the plurality of first user terminals, and the information providing apparatus distributes anonymized data generated as a result of application of the anonymization processing to the second user terminal in response to a request from the second user terminal,the information providing apparatus comprising:
- a storage unit configured to store;
data including the personal information;
first information specifying the parameter of the anonymized data which are allowed to be provided, for each piece of data of an individual who is an owner of the personal information;
second information specifying the personal information which is a target to which the anonymization processing is applied;
third information specifying a level of reliability for each user who receives the provided anonymized data via the second user terminal; and
fourth information specifying the parameter of the anonymized, data which the user having the reliability can receive in accordance with the level of the reliability,a processing unit configured to;
extract data which are to be allowed to be provided from among the data for each of a plurality of predetermined parameters on the basis of the first information, identify personal information which is a target of the anonymization processing from among personal information of the extracted data on the basis of the second information, and execute anonymization processing on the identified personal information with each of the plurality of predetermined parameters, thus generating a plurality of anonymized data of which amounts of information are different; and
identify the level of the reliability of the user of the second user terminal on the basis of the third information in response to a request from the second user terminal, and identify anonymized data that can be distributed to the second user terminal from among the plurality of anonymized data on the basis of the fourth information and the level of the reliability identified.
1 Assignment
0 Petitions
Accused Products
Abstract
An information providing apparatus for collecting data including personal information and distributing the data to a user terminal performs anonymization processing for converting data, which an individual who is an owner of personal information allows to use, into data with which the individual cannot be identified using multiple parameters, thus generating multiple anonymized data protecting the, privacy of the individual. Since each of the anonymized data is anonymized using a different parameter, the amount of information of each of the anonymized data is different. Then, when a request is received from a user terminal, anonymized data that can be provided to the user are identified from among multiple generated anonymized data on the basis of the reliability of the user who uses the user terminal.
14 Citations
10 Claims
-
1. An information providing apparatus connected to a plurality of first user terminals and a plurality of second user terminals, wherein the information providing apparatus applies anonymization processing, which is executed by designating a parameter and which is processing for converting data so that an individual is not identified, onto data including personal information collected from the plurality of first user terminals, and the information providing apparatus distributes anonymized data generated as a result of application of the anonymization processing to the second user terminal in response to a request from the second user terminal,
the information providing apparatus comprising: -
a storage unit configured to store; data including the personal information; first information specifying the parameter of the anonymized data which are allowed to be provided, for each piece of data of an individual who is an owner of the personal information; second information specifying the personal information which is a target to which the anonymization processing is applied; third information specifying a level of reliability for each user who receives the provided anonymized data via the second user terminal; and fourth information specifying the parameter of the anonymized, data which the user having the reliability can receive in accordance with the level of the reliability, a processing unit configured to; extract data which are to be allowed to be provided from among the data for each of a plurality of predetermined parameters on the basis of the first information, identify personal information which is a target of the anonymization processing from among personal information of the extracted data on the basis of the second information, and execute anonymization processing on the identified personal information with each of the plurality of predetermined parameters, thus generating a plurality of anonymized data of which amounts of information are different; and identify the level of the reliability of the user of the second user terminal on the basis of the third information in response to a request from the second user terminal, and identify anonymized data that can be distributed to the second user terminal from among the plurality of anonymized data on the basis of the fourth information and the level of the reliability identified. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A control method for an information providing apparatus connected to a plurality of first user terminals and a plurality of second user terminals, wherein the control method for the information providing apparatus includes applying anonymization processing, which is executed by designating a parameter and which is processing for converting data so that an individual is not identified, onto data including personal information collected from the plurality of first user terminals, and distributing anonymized data generated as a result of application of the anonymization processing to the second user terminal in response to a request from the second user terminal,
wherein the control method of the information providing apparatus includes storing: -
data including the personal information; first information specifying the parameter of the anonymized data which are allowed to be provided, for each piece of data of an individual who is an owner of the personal information; second information specifying the personal information which is a target to which the anonymization processing is applied; third information specifying a level of reliability for each user who receives the provided anonymized data via the second user terminal; and fourth information specifying the parameter of the anonymized data which the user having the reliability can receive in accordance with the level of the reliability, and the control method of the information providing apparatus includes; extracting data which are to be allowed to be provided from among the data for each of a plurality of predetermined parameters on the basis of the first information, identifying personal information which is a target of the anonymization processing from among personal information of the extracted data on the basis of the second information, and executing anonymization processing on the identified personal information with each of the plurality of predetermined parameters, thus generating a plurality of anonymized data of which amounts of information are different; and identifying the level of the reliability of the user of the second user terminal on the basis of the third information in response to a request from the second user terminal, and identifying anonymized data that can be distributed to the second user terminal from among the plurality of anonymized data on the basis of the fourth information and the level of the reliability identified. - View Dependent Claims (7, 8, 9, 10)
-
Specification