Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020223263 - DATA CONSENT STORAGE AND MANAGEMENT SYSTEM AND METHOD

Note: Text based on automatic Optical Character Recognition processes. Please use the PDF version for legal matters

[ EN ]

CLAIMS

1. A system for managing consent, the system comprising:

a consent database with a user ID comprising a unique identifier for a user account referenced to:

a set of types of data the user has consented to share;

a set of devices from which the user has consented to share the data generated by those devices;

a set of consumers the user has consented to share data with;

a memory containing machine readable medium comprising machine executable code having stored thereon instructions for performing a method;

a control system coupled to the memory comprising one or more processors, the control system configured to execute the machine executable code to cause the control system to:

receive a request from a consumer to access data from the user comprising a time stamp, user ID associated with an account, and a first type of data;

query the consent database to access the user ID and determine whether the user associated with the user ID has consented to share the first type of data; and

send, to the consumer, a response indicating whether the consumer is authorized to access the first type of data from the account referenced to the user ID.

2. The system of claim 1, wherein the control system is further configured to:

receive, from the user, a request indicating the user has revoked consent to share the first type of data; and

send to the consumer, a notification indicating the user has revoked consent to share the first type of data.

3. The system of any one of claims 1 - 2, wherein the control system is further configured to:

send, to the user, a request to renew consent;

receive, from the user, a confirmation to renew consent; and send to the consumer a notification indicating the user has renewed consent.

4. The system of claim 1, wherein the control system is further configured to:

send, to the consumer, an address where the consumer may access the first type of data;

receiving, a request from the consumer to access the first type of data at the address, and

establishing, a link between the consumer and a user database comprising the first type of data stored in reference to the user ID and sending a set of the first type of data to the consumer.

5. The system of claim 1, wherein the first type of data is profile data, mobile data, location data, health data, respiratory therapy data, vital sign data, wearable data, heart related wearable data, steps data, genetic data, social media usage data, workout data, or fitness data.

6. The system of claim 1, wherein the control system is further configured to:

store in the consent database the consumer as an authorized data consumer referenced to the user ID and a time window for the consent;

sending, to the consumer, a notification that the consent has been revoked once the time window has expired.

7. The system of any one of claims 1 - 6, wherein the types of devices include a mobile phone, a wearable fitness tracker, a heart rate monitoring watch, a pulse oximeter, or a respiratory therapy device.

8. The system of any one of claims 1 - 6, wherein the consent database further comprises a market rate referenced to each type of data stored.

9. The system of any one of claims 1 - 6, wherein each of the set of consumers are each referenced to an address.

10. A system for managing data access for third parties, the system comprising:

a consent database with a user ID comprising a unique identifier for a user accounts referenced to:

a set of data the user has consented to share comprising at least a first and second type of data;

a set of devices from which the user has consented to share the data generated by those devices;

a memory containing machine readable medium comprising machine executable code having stored thereon instructions for performing a method;

a control system coupled to the memory comprising one or more processors, the control system configured to execute the machine executable code to cause the control system to:

send, to a user device associated with the user ID, a request for consent to share data;

receiving, from the user device, a confirmation of consent to share data, the confirmation of consent comprising:

a consent to share the first type of data; and

a time window the consent to share is valid;

receiving, from the user device, login information for a third party account associated with the user ID and a first data device;

sending to the first data device a request to retrieve data;

receiving a first set of data from the first data device;

processing the first set of data to identify a set of the first type of data; and

storing the set of the first type of data in the consent database referenced to the user ID.

11. The system of claim 10, wherein processing the first set of data to identify a set of the first type of data further comprises processing the data to identify GPS coordinates.

12. The system of any one of claims 10 - 11, wherein processing the first set of data to identify a set of the first type of data further comprises processing the data to identify data output from an accelerometer, gyroscope, or magnetometer.

13. The system of any one of claims 10 - 11, wherein the control system is further configured to:

query a consumer database that references a set of consumers and data receipt addresses to types of data each consumer has agreed to receive within a threshold market price to identify any of the set of consumers that has agreed to receive the first type of data at the current market price for the first type of data; and

send the set of the first type of data to any of the identified consumers of the set of consumers at the referenced data receipt address.

14. The system of any one of claims 10 - 13, wherein the consumer database references specific characteristics of types of data that must be included in order to receive the data at the market price.

15. The system of claim 14, wherein the characteristics include height, weight, and age.

16. The system of claim 14, wherein the characteristics include heart rate data.

17. The system of claim 14, wherein the characteristics include genetic data.

18. The system of claim 14, wherein the characteristics include a combination of genetic data and heart rate data.

19. A system for managing consent, the system comprising:

a consent database with a user ID comprising a unique identifier for a user account referenced to:

a set of types of data the user has consented to share;

a set of devices from which the user has consented to share the data generated by those devices;

a set of consumer devices the user has consented to share data with;

a memory containing machine readable medium comprising machine executable code having stored thereon instructions for performing a method;

a control system coupled to the memory comprising one or more processors, the control system configured to execute the machine executable code to cause the control system to:

receive a request from a first of the set of consumer devices to access data from the user comprising a time stamp, user ID associated with an account, and a first type of data;

query the consent database to access the user ID and determine whether the user associated with the user ID has consented to share the first type of data with the first of the set of consumer devices; and

send, to the first of the set of consumer devices, a response indicating whether the first of the set of consumer devices is authorized to access the first type of data from the account referenced to the user ID.

20. The system of claim 19, wherein the control system is further configured to:

receive, from the user, a request indicating the user has revoked consent to share the first type of data; and

send to the first of the set of consumer devices, a notification indicating the user has revoked consent to share the first type of data.

21. The system of claim 20, wherein the control system is further configured to:

send, to the user, a request to renew consent;

receive, from the user, a confirmation to renew consent; and

send to the first of the set of consumer devices a notification indicating the user has renewed consent.

22. The system of claim 21, wherein the control system is further configured to:

send, to the first of the set of consumer devices, an address where the first of the set of consumer devices may access the first type of data;

receiving, a request from the first of the set of consumer devices to access the first type of data at the address, and

establishing, a link between the first of the set of consumer devices and a user database comprising the first type of data stored in reference to the user ID and sending a set of the first type of data to the first of the set of consumer devices.

23. The system of claim 19, wherein the first type of data is profile data, mobile data, location data, health data, respiratory therapy data, vital sign data, wearable data, heart related wearable data, steps data, genetic data, social media usage data, workout data, or fitness data.

24. The system of claim 19, wherein the control system is further configured to:

store in the consent database the first of the set of consumer devices as an authorized data consumer referenced to the user ID and a time window for the consent;

sending, to the first of the set of consumer devices, a notification that the consent has been revoked once the time window has expired.

25. The system of claim 19, wherein the types of devices include a mobile phone, a wearable fitness tracker, a heart rate monitoring watch, a pulse oximeter, or a respiratory therapy device.

26. The system of claim 19, wherein the consent database further comprises a market rate referenced to each type of data stored.

27. The system of claim 19, wherein each of the set of consumer devices are each referenced to an address.

28. A method comprising:

receiving, a request from a consumer to access data from the user comprising a time stamp, user ID associated with an account, and a first type of data;

querying a consent database to access the user ID and determine whether the user associated with the user ID has consented to share the first type of data; and

sending, to the consumer, a response indicating whether the consumer is authorized to access the first type of data from the account referenced to the user ID.

29. The method of claim 28, further comprising:

receiving, from the user, a request indicating the user has revoked consent to share the first type of data; and

sending to the consumer, a notification indicating the user has revoked consent to share the first type of data.

30. The method of claim 28, further comprising:

sending, to the user, a request to renew consent;

receiving, from the user, a confirmation to renew consent; and

sending to the consumer a notification indicating the user has renewed consent.

31. The method of claim 28, further comprising:

sending, to the consumer, an address where the consumer may access the first type of data;

receiving, a request from the consumer to access the first type of data at the address, and

establishing, a link between the consumer and a user database comprising the first type of data stored in reference to the user ID and sending a set of the first type of data to the consumer.

32. The method of any one of claims 28 - 31, wherein the first type of data is profile data, mobile data, location data, health data, respiratory therapy data, vital sign data, wearable data, heart related wearable data, steps data, genetic data, social media usage data, workout data, or fitness data.

33. The method of claim 28, further comprising:

storing in the consent database, the consumer as an authorized data consumer referenced to the user ID and a time window for the consent;

sending, to the consumer, a notification that the consent has been revoked once the time window has expired.

34. The method of any one of claims 28 - 32, wherein the types of devices include a mobile phone, a wearable fitness tracker, a heart rate monitoring watch, a pulse oximeter, or a respiratory therapy device.

35. The method of any one of claims 28 - 32, wherein the consent database further comprises a market rate referenced to each type of data stored.

36. The method of any one of claims 28 - 32, wherein each of the set of consumers are each referenced to an address.

37. A computer program product comprising instructions which, when executed by a control system, cause the computer to carry out the method of any one of claims 28 to 36.

38. The computer program product of claim 37, wherein the computer program product is a non-transitory computer readable medium.

39. A control system comprising:

one or more processors;

a memory having stored thereon machine readable instructions;

wherein the one or more processors arecoupled to the memory, and the method of any one of claims 28 - 36 is implemented when the machine readable instructions in the memory are execute by at least one of the one or more processors of the control system.

40. A system for managing consent, comprising the control system of claim 39, and a consent database with a user ID comprising a unique identifier for a user account referenced to:

a set of types of data the user consented to share;

a set of devices from which the user has consented to share the data generated by those devices; and

a set of consumers the user has consented to share data with.