Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Method and System for 3rd Party Management of Personal Information

IP.com Disclosure Number: IPCOM000238972D
Publication Date: 2014-Sep-29
Document File: 3 page(s) / 864K

Publishing Venue

The IP.com Prior Art Database

Abstract

Personal data should be managed by dedicated 3rd party operators which will take care of all the aspects of personal data management and provides access to those data to all the other operators through a specific mechanism designed to provide security of the data as well as full access to information (according to end user chosen policies).

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 52% of the total text.

Page 01 of 3

Method and System for 3rd Party Management of Personal Information

    Nowadays personal information are widely collected and used by many web operators to provide targeted advisements, model end user behaviors and preferences and so on. Such possibility to exploit personal information provides large advances also for end users that usually are keen to share information, also through social network systems, in order to obtain an improved and tailored navigation experience, easier access to content and services and many additional benefits.

    The drawback of the aforementioned approach lies in lack of control on the personal data provided to any web operator, the hurdles to data portability across different operators and the give up of any privacy control.

    The proposed solution is based on the idea that personal data should be managed by dedicated 3rd party operators which will take care of all the aspects of personal data management and provides access to those data to all the other operators through a specific mechanism designed to provide security of the data as well as full access to information (according to end user chosen policies).

    The proposed mechanism is based on an exchangeable element, thereafter call 'cookielet', which is used to retrieve personal data information and perform additional data operations. The structure of such exchangeable element is shown in figure 1 and comprises a script section, an optional data mask section, a rating and classification manifest and a digital signature. Moreover instance data maybe appended in the last section.

1


Page 02 of 3

Fig 1

    The most effective way to describe the solution is by mean of an example. Let assume the web operator (light blue on right top corner) would like to proposed targeted advertisement to clients navigating on her/his website. For example, to clients aged 30 to 40 with professions in IT will be show an advertisement on a new development platform while to younger students (aged 20 to 30 and studying) an advertisement of a travel agency will be proposed. The mainstream way of achieving this goal could be to ask user to provide personal information like age, gender, profession etc. and use later these information.

    In the proposed solution web operator will prepare a 'cookielet' template and ask the 3rd party manager of personal information to perform phase 1, which is from correlation analysis to digital signature. The web operator will propose is script (multiple languages...