US2024005020A1PendingUtilityA1

Decentralized consent network for decoupling the storage of personally identifiable user data from user profiling data

Assignee: CONCORD TECH INCPriority: Jun 15, 2020Filed: Sep 15, 2023Published: Jan 4, 2024
Est. expiryJun 15, 2040(~13.9 yrs left)· nominal 20-yr term from priority
G06F 21/6218G06F 21/604H04L 9/0643H04L 63/102G06F 2221/2141H04L 9/50H04L 63/12G06F 21/6209H04L 9/3239H04L 2209/42
61
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A computer implemented method for tracking and securing user data, the method including providing a user data vault that stores user data, providing the user data to display on a user interface, collecting access rights and permission settings, storing the access rights on a blockchain consent network, and providing access to remote users. The system and methods utilize blockchain technology, encryption, and a novel data structure (e.g. consent tokens) that enhance the security, transparency, and user experience regarding user data collection.

Claims

exact text as granted — not AI-modified
1 . A computer-implemented method to securely access data in a data vault, the method comprising:
 generating a consent token, wherein the consent token is associated with user data of a user, and wherein the user data is stored in a data vault;   recording the consent token on a ledger of a blockchain consent network;   determining, based at least in part on the consent token, that a remote system is authorized to access the user data associated with the consent token; and   providing access to the user data associated with the consent token to the remote system.   
     
     
         2 . The computer-implemented method of  claim 1 , wherein generating the consent token further comprises determining access rights to the user data granted to a third party by the user. 
     
     
         3 . The computer-implemented method of  claim 1 , wherein providing access to the remote system to the user data associated with the consent token comprises providing a consent report in response to a request associated with the consent token. 
     
     
         4 . The computer-implemented method of  claim 1 , wherein recording the consent token further comprises recording a timestamp and metadata associated with the remote system accessing the data. 
     
     
         5 . The computer-implemented method of  claim 1 , wherein the consent token is received from the remote system, and wherein the consent token is correlated to personally identifiable information (PII) of the user stored in the remote system. 
     
     
         6 . The computer-implemented method of  claim 1 , further comprising:
 identifying a consent update to at least a portion of the user data, wherein the consent update comprises a change in access permission to the user data specified by the user;   updating the ledger in based at least in part on the consent update;   updating the consent token to reflect the consent update; and   communicating the consent update to the remote system.   
     
     
         7 . The computer-implemented method of  claim 1 , wherein providing access includes accepting a request, from a third party, for an audit associated with the consent token, and providing a response confirming consent to use the user data associated with the consent token. 
     
     
         8 . A computer-implemented method for compensating a user for sharing data, the method comprising:
 receiving first data indicating a user consent to use personal data of a user;   storing second data derived from the first data on a blockchain;   recording executable data referencing the second data on the blockchain;   determining a predetermined condition identified in the executable data has occurred; and   executing the executable data referencing the second data to:
 provide a reward in exchange for the user consent, wherein the reward is provided by an enterprise that collected the first data; and 
 provide a report to a remote device, wherein the predetermined condition is a change in the user consent and wherein the report is provided to the enterprise, the user, or a third-party auditor. 
   
     
     
         9 . The computer-implemented method of  claim 8 , wherein the second data comprises analytical data derived from the first data shared by the user. 
     
     
         10 . The computer-implemented method of  claim 8 , wherein the executable data referencing the second data on the blockchain comprises instructions for linking a first portion of the personal data and a second portion of the personal data that have been decoupled. 
     
     
         11 . The computer-implemented method of  claim 8 , further comprising recording, on the blockchain, redemption of the reward at a system associated with the enterprise.

Join the waitlist — get patent alerts

Track US2024005020A1 — get alerts on status changes and closely related new filings.

We store only your email — no account needed. See our privacy policy.