The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jan. 13, 2009
Filed:
Nov. 07, 2001
Kathryn A. Bohrer, Austin, TX (US);
Catherine A. Chess, Ossining, NY (US);
Robert L. Hoch, Wilton, CT (US);
John Karat, Greenwich, CT (US);
Dogan Kesdogan, White Plains, NY (US);
Xuan Liu, Yorktown Heights, NY (US);
Edith G. Schonberg, New York, NY (US);
Moninder Singh, Hamden, CT (US);
Kathryn A. Bohrer, Austin, TX (US);
Catherine A. Chess, Ossining, NY (US);
Robert L. Hoch, Wilton, CT (US);
John Karat, Greenwich, CT (US);
Dogan Kesdogan, White Plains, NY (US);
Xuan Liu, Yorktown Heights, NY (US);
Edith G. Schonberg, New York, NY (US);
Moninder Singh, Hamden, CT (US);
International Business Machines Corporation, Armonk, NY (US);
Abstract
An exemplary embodiment of the present invention includes a method to enforce privacy preferences on exchanges of personal data of a data-subject. The method comprises the steps of: specifying data-subject authorization rule sets having subject constraints, receiving a request message from a requester and a requester privacy statement, comparing the requester privacy statement to the subject constraints, and releasing the data-subject data in a response message to the requester only if the subject constraints are satisfied. The requester privacy statement includes purpose, retention, recipient, and access information, wherein the purpose information specifies the purpose for which the requested data is acquired, the retention information specifies a retention policy for the requested data, the recipient information specifies the recipients of the requested data, and the access information specifies whether the requested data should be accessing to the data-subject after the data has been released.