KR20150006909A - Method for Managing Personal Information and Server for Managing Personal Information - Google Patents

Method for Managing Personal Information and Server for Managing Personal Information Download PDF

Info

Publication number
KR20150006909A
KR20150006909A KR20130079771A KR20130079771A KR20150006909A KR 20150006909 A KR20150006909 A KR 20150006909A KR 20130079771 A KR20130079771 A KR 20130079771A KR 20130079771 A KR20130079771 A KR 20130079771A KR 20150006909 A KR20150006909 A KR 20150006909A
Authority
KR
South Korea
Prior art keywords
information
personal information
user
pieces
revocation
Prior art date
Application number
KR20130079771A
Other languages
Korean (ko)
Inventor
장윤상
Original Assignee
코리아크레딧뷰로 (주)
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 코리아크레딧뷰로 (주) filed Critical 코리아크레딧뷰로 (주)
Priority to KR20130079771A priority Critical patent/KR20150006909A/en
Publication of KR20150006909A publication Critical patent/KR20150006909A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Game Theory and Decision Science (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present invention relates to a personal information management method, and a personal information management method according to the present invention is a personal information management method for managing personal information by a management server capable of interfacing with N (N? 1) A method for managing personal information to be executed, the method comprising: a first step of receiving unique information that uniquely identifies the user from a user terminal; a step of providing unique information of the user to the N enterprise servers, A second step of collecting n pieces of personal information utilization status information about the user from the plurality of enterprise servers; and a second step of collecting n pieces of personal information utilization status information about the user from the plurality of enterprise servers, (N ' n ') personal information utilization status information in which n ' (n ' n & (N? N? N) pieces of information to be discarded from the user terminal; and a fourth step of generating personal information analysis information, And a sixth step of performing a revocation procedure of the personal information corresponding to the n "pieces of revocation object information based on the instruction from the user terminal, wherein the step of providing the personal information analysis information and the reception of the revocation object information And performing personal information revocation procedure. The personal information utilization status information may include at least one of company information collecting and storing personal information of the user, At least one of the collection purpose, the collection path, the agreement method, the agreement contents, the holding period, and the utilization contents of the user's personal information stored in the database Information.

Description

[0001] The present invention relates to a personal information management method and a personal information management server for the same,

The present invention collects and analyzes personal information utilization statuses of users stored in respective enterprise servers and provides the collected information to users, and selectively provides the users who are to be discarded among personal information stored in each company, So that they can be actively protected.

Recently, there have been frequent hacking cases and concerns about leakage of personal information have been increasing. On the other hand, some credit rating agencies offer services that provide information on the status of utilization of personal information. For example, a service that notifies a user when a personal information inquiry occurs is a representative example.

However, simply providing the status of personal information utilization is vague as to how the user should take measures to protect his / her personal information. Therefore, most users have the problem that they can not do any actions to protect their personal information but only know how their personal information is being used through the use of personal information.

However, even if the user agrees to collect and use his / her personal information by any motive, the right of withdrawal of his / her consent is legally guaranteed to the user at any time. Most users, however, do not know that they have the right to withdraw their consent, and even if they do, they often do not know what procedures to take to withdraw their consent. While the personal information of the user is being neglected, many personal information is being leaked at the moment.

In order to solve the above problems, an object of the present invention is to collect and analyze personal information utilization status of a user stored in each company server and provide the collected information to a user, By providing judgments on at least one of, or a combination of, at least one of a path, an agreement method, a consent content, a retention period, and a utilization content, a personal information management method that enables a user to positively protect his / have.

A personal information management method according to the present invention is a personal information management method executed by a management server capable of interfacing with N (N? 1) enterprise servers for collecting and storing personal information and capable of communicating with a user terminal, A first step of receiving unique information that uniquely identifies the user from the terminal; and a second step of providing unique information of the user to the N enterprise servers, A second step of collecting personal information utilization status information; and a second step of reading the collected n pieces of personal information utilization status information and storing n '(0? N' (N-n) pieces of personal information utilization status information, which are distinguished from the determined n 'pieces of personal information utilization status information and (n-n') pieces of personal information utilization status information, (N? N? N) pieces of information to be discarded from the user terminal; and a fifth step of receiving an instruction from the user terminal And a sixth step of performing a revocation procedure of the personal information corresponding to the n "pieces of revocation object information on the basis of at least one of providing the personal information analysis information, receiving the revocation object information, The personal information management status information includes information on the company that collects and stores the personal information of the user, information on the personal information of the user stored in the company, Information that can discriminate at least one of a collection purpose, a collection path, an agreement method, a consent content, a retention period, and a utilization content.

According to the present invention, in the third step, the result of reading the personal information utilization status information may be utilized for the purpose other than the purpose of collecting the personal information, or the collection path of the personal information may not correspond to the legitimate collection route, It can be determined that there is an unlawful matter in the case where the method does not correspond to a legitimate agreement method, the personal information is used as an unacceptable content, or at least one of the storage period of the personal information has elapsed.

According to the present invention, in the case where one or more pieces of personal information utilization status information in which the improper matters exist is determined, the personal information management method may include: n '(n'? 1) pieces of personal information utilization status information, Wherein the personal information analysis information includes at least one of the n 'pieces of personal information utilization status information and the recommendation or specification of the n' pieces of personal information utilization status information to the user terminal have.

According to the present invention, in the case where one or more pieces of personal information utilization status information in which the improper matters exist is determined, the personal information management method may include: n '(n'? 1) pieces of personal information utilization status information, May include first or automatically including the n "number of pieces of discarding object information.

According to the present invention, in the case where n pieces of personal information utilization status information are collected for the user, the personal information management method may be configured such that, based on personal information management details of other users, Extracting a user group that matches at least one of the user, sex, age, occupation, and credit with a user as a comparison target, collecting a user group in which personal information is stored or archived in a server Generating analysis reference information including a percentage or an average value of the digitizable information in the personal information management history of the user information as a percentage; and providing the generated analysis reference information to the user terminal. On the other hand, the digitizable information includes information on the number of times the personal information analysis information is provided, the number of times the discard target information is received, the number of times of determination of automatic discard of personal information, the number of times of discarding personal information by each user, And the number of times the number of times of operation is set.

According to the present invention, the personal information management method may further include a step 6a-1 of generating a revocation request electronic document for the n "pieces of revocation object information, a step 6b-1 for providing the revocation request electronic document to the terminal of the user, Step 6c-3 of receiving an electronic signature of the revocation request electronic document from the terminal of the user.

According to the present invention, the personal information management method may further include: (6b-1) transferring the revocation request electronic document corresponding to the n "number of revocation object information to a designated judicial corporation terminal or server; 6b-2) receiving at least one discard procedure identification value for the discard request message, and 6b-3) providing the discard procedure identification value to the user terminal. Wherein the discard procedure execution value includes at least one of a value for identifying the contents proof sending of the user's private information storage, a value for identifying the response from the company storing the user's personal information, and a value corresponding to the response from the company It can contain one value.

The personal information management server according to the present invention is a personal information management server capable of interfacing with N (N > = 1) enterprise servers for collecting and storing personal information and communicating with a user terminal, A utilization status collecting unit for collecting n personal information utilization status information for the user provided by n (1? N? N) enterprises to which the unique information of the user is transferred; (N) (n) (n) (n) (n) of the personal information utilization status information in which at least one of the collection, storage, A utilization status analyzing unit for generating personal information analysis information including the n 'pieces of personal information utilization status information and the (n-n') pieces of personal information utilization status information that are distinguished from each other; A discarding unit for performing a discarding procedure of the personal information corresponding to the n "pieces of discarding object information based on n" (1? N "? N) pieces of discarding object information received from the disc, And a management history storage unit for generating and storing personal information management details for at least one of providing the discard target information and performing the personal information discard procedure.

According to the present invention, it is possible to easily grasp the status of personal information kept in a plurality of companies, and there is an advantage that it can be managed by the user himself or herself.

In addition, there is an advantage in that it is possible to easily decide which personal information to keep and which personal information to be discarded from the personal information of a user kept in a plurality of companies, and when the user decides to discard his / her personal information, There is an advantage in that the personal information to be discarded is automatically discarded even if the complicated procedure is not directly carried out.

FIG. 1 is a diagram illustrating a configuration of a personal information management system according to an embodiment of the present invention.
2 is a view illustrating a process of collecting and analyzing personal information utilization status according to an embodiment of the present invention.
FIG. 3 is a diagram illustrating an advanced process for analyzing the status of personal information utilization according to an embodiment of the present invention.
4 is a flowchart illustrating an automatic discarding process according to an embodiment of the present invention.
5 is a diagram illustrating a process of disposing a user's personal information according to an embodiment of the present invention.
FIG. 6 is a diagram illustrating a process for forcibly disposing a user's personal information according to an embodiment of the present invention.

The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention.

In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.

As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.

FIG. 1 is a diagram illustrating a configuration of a personal information management system according to an embodiment of the present invention.

In more detail, FIG. 1 collects and analyzes personal information utilization status of a user stored in each company server 160 and provides the collected information to a user, and selectively provides a discard target of personal information of a user stored in each company, The present invention is not limited to the above embodiments, but may be modified and changed without departing from the spirit and scope of the present invention. It will be appreciated that various implementations of the management system (e.g., some of the components may be omitted, or subdivided, or combined) may be inferred, but the present invention includes all of the above- The technical characteristics are not limited only by the method shown in FIG.

The personal information management system of the present invention includes a user terminal 150 that can be interlocked with N (N > = 1) enterprise servers 160 for collecting and storing personal information and used by a user storing personal information in at least one enterprise, And a management server 100 capable of communicating with the management server 100. The management server 100 is a collective term of a server capable of collecting the user's personal information utilization status from each enterprise server 160 and preferably includes a server provided in a credit evaluation company (for example, Korea Credit Bureau) desirable.

The company server 160 is a collective term for servers provided in a company that collects and stores personal information of users and preferably provides the status of personal information utilization of each user to the management server 100 It is the server of the enterprise.

The user terminal 150 is a collective term of a terminal used by a user who has stored his / her personal information in at least one company. The user terminal 150 preferably includes a wired terminal such as a computer, a notebook computer, And a wireless terminal.

1, the management server 100 includes a unique information receiving unit 105 for receiving unique information that uniquely identifies the user from the user terminal 150, and N (N? 1) And collects n pieces of personal information utilization status information for the user from n (1? N? N) enterprise servers 160 by providing the unique information of the user with?

The unique information receiver 105 communicates with a browser or a program of the user terminal 150 to request unique information for collecting personal information utilization status from the user terminal 150, As shown in FIG. Preferably, the unique information may include at least one of a resident registration number, a name, and IPIN information of the user.

The utilization status collecting unit 110 provides the unique information received from the user terminal 150 to the N affiliated company servers 160 and transmits the personal information of the user among the N companies provided with the unique information Collects n pieces of personal information utilization status information for the user from n corporate servers 160 that are collected and stored. Preferably, the personal information utilization status information includes at least one of company information collecting and storing the user's personal information, collection purpose of the user's personal information stored in the company, collection path, agreement method, agreement content, And information that can be used to discriminate at least one of the utilization contents.

According to the embodiment of the present invention, each of the enterprise servers 160, in response to the information request of the utilization status collecting unit 110, selects the enterprise information item, the collection purpose item, the collection path item, It is preferable that the response information is filled in the one or more requested items out of the consent contents item, the retention period item, and the utilization contents item, but some enterprise servers 160 may miss some of the requested items, State. According to the method of the present invention, items missing or blanked out of the request items can be judged to be preferentially existed.

According to another embodiment of the present invention, the utilization status collecting unit 110 scrapes the personal information utilization status information from mails received from each enterprise server 160 or a terminal of each company, Information utilization status information can be collected.

According to another embodiment of the present invention, when the unique information is received from the user terminal 150, the utilization status collecting unit 110 checks the Internet subscription information corresponding to the unique information through the impersonation confirmation service, And provides the identified Internet subscription information to the user terminal 150. After the Internet subscription information is confirmed by the user, the user terminal 150 provides specific company information to collect utilization status And collect the utilization status information of the user from the enterprise server corresponding to the specific enterprise information.

Here, the impersonation confirmation service may be performed through the management server 100 or may be performed in cooperation with a separate server that provides the impersonation confirmation service.

Referring to FIG. 1, the management server 100 reads the collected n pieces of personal information utilization status information and stores n '(0? N 'N' personal information utilization status information and (n-n ') personal information utilization status information are distinguished from each other and included A utilization state analysis unit 120 for generating personal information analysis information and an analysis information providing unit 130 for providing the generated personal information analysis information to the user terminal 150. At least one improper matter And a discarding object sorting unit 125 that first or automatically includes personal information or corporation corresponding to existing personal information utilization status information as a discard target.

The illegality judging unit 115 includes an inappropriate law discrimination algorithm for discriminating the legitimacy of the personal information utilization status information. The above-mentioned improper discrimination algorithm can be applied to various laws related to personal information (for example, the personal information protection law, the law on the protection of personal information of public institutions, the law on information communication network utilization promotion and information protection, the resident registration law, Laws, etc.), it is an algorithm that judges whether each item of the personal information utilization status information is legitimate intellectual property law based on the contents of each item of each clause related to personal information protection or penalty. For example, if the personal information retention period is specified as 5 years in a specific law of the various laws related to the personal information, the inapplicable discrimination algorithm has not elapsed since the retention period item of the personal information utilization status information has passed five years May be included. Or if the private information retention period of the public institution is specified to be 10 years under a specific law of the various laws related to the personal information and the private information retention period of the general private enterprise is specified to be 5 years under another law, To determine if the holding company is a public institution or a private private company and to determine if the retention period has passed 10 years in case of a public institution and to include in the case of a general private enterprise an algorithm to determine if the retention period has passed 5 years have.

According to the method of the present invention, the inappropriate-law discrimination algorithm can be updated so that various laws related to personal information may be additionally enacted or applied when the existing law is revised.

The illegality judging unit 115 reads the n pieces of personal information utilization status information collected from the n enterprise servers 160 through the utilization status collecting unit 110 by using the inappropriate policy discrimination algorithm, (0 ≤ n'≤ n) personal information utilization status information in which inappropriate information exists in at least one of the information storage, storage, and utilization. Preferably, the illegality judging unit 115 judges whether the collection path of the personal information does not correspond to a legitimate collection path, or if the personal information is not collected, , It can be determined that there is an unlawful matter in the case where at least one of the consent form of the consent form does not correspond to a legitimate consent form, the personal information is used as an unacceptable content, or the storage period of the personal information has elapsed.

According to the embodiment of the present invention, when the negative judgment result of the negative judgment unit 115 indicates that the negative information exists in the personal information utilization status information, it may be "n '= 0" or "n'≥1" .

The utilization state analyzing unit 120 analyzes the personal information analysis information including the n 'pieces of personal information utilization status information and the (n-n') pieces of personal information utilization status information discriminated through the negative judgment unit 115, And the analysis information providing unit 130 provides the personal information analysis information generated through the utilization state analysis unit 120 to the user terminal 150.

If the result of discrimination by the above-mentioned illegality judging unit 115 is' n '= 0', the utilization state analysis unit 120 may generate personal information analysis information including the n pieces of personal information utilization status information, The information on the status of use of personal information in which the improper matters exist may be used without discrimination. However, even in the case of "n '= 0", personal information analysis information including information on n' (n '= 0) personal information utilization status information and (n-n') personal information utilization status information is generated Category.

On the other hand, if the result of discrimination by the above-mentioned illegality discriminating section 115 is "n '? 1", the utilization state analyzing section 120 generates personal information analysis information including the n personal information utilization status information, N '(n''1) personal information utilization status information in which there is no inappropriate information among the personal information utilization status information of the personal information utilization status information and the (n-n') personal information utilization status information in which no inappropriate law information exists, Analysis information can be generated.

According to the embodiment of the present invention, when one or more pieces of personal information utilization state information in which the improper matters exist are determined through the above-described illegality discrimination unit 115, the utilization state analysis unit 120 acquires personal information analysis information At the specified time before, during, or after the generation, the discarding object selector 125 selects n 'pieces of personal information corresponding to the n' (n '1) pieces of personal information utilization status information in which the improper matter exists n 'corporations may be included in the first or the automatic disposal target. In this case, the analysis information providing unit 130 may recommend or designate the n 'pieces of personal information utilization status information to the personal information analysis information, and provide the n' pieces of personal information utilization status information to the user terminal 150.

According to an embodiment of the present invention, when n pieces of personal information utilization status information are collected for the user, the utilization status analysis unit 120 may calculate the utilization status of the user based on the personal information management details of other users, (Or a corporate server 160 of the same type) 160, and selects at least one of the user, the sex, the age, the occupation, and the credit score And the analysis reference information including the ratio or average value of the digitizable information in the personal information management details of the comparison object set as a percentage can be generated. Herein, the quantifiable information includes the number of times the personal information analysis information is provided, the number of times the discard target information is received, the number of times of priority or automatically determined discard of personal information, the number of times of discarding personal information by each user, The analysis reference information, which includes at least one of the ratio or the average value as a percentage, can be used to refer to how the other users who are in a similar condition to the user discard or maintain the personal information in terms of the user Information. When the analysis reference information is generated, the analysis information providing unit 130 may provide the analysis reference information to the user terminal 150 in the personal information analysis information, And provide the analysis reference information to the user terminal 150.

1, the management server 100 includes a discard receiving unit 135 for receiving n "(1? N"? N) pieces of discarding information from the user terminal 150, 150), and performs a revocation procedure of the personal information corresponding to the n "pieces of revocation object information, wherein the revocation procedure performing unit (145) And a management history storage unit 140 for generating and storing a personal information management history for at least one of reception and personal information discard procedure.

If the personal information analysis information is provided to the user terminal 150 through the analysis information providing unit 130, n 'pieces of personal information utilization status information included in the user's personal information analysis information, (1? N?? N) pieces of object information to be discarded are determined by referring to at least one piece of information among the pieces of personal information management information generated based on the pieces of personal information utilization status information of the personal information of the other users. The n "pieces of object information to be discarded can be selected by the user or the user can select n 'pieces of personal information utilization status information included in the personal information analysis information by selecting an' OK 'button / menu, Or one or more pieces of personal information utilization status information that has been designated as a revocation target of at least a certain reference ratio or a predetermined reference value in the analysis reference information generated based on the specified n 'personal information utilization status information of another user is n Quot; can be automatically set as the discarding object information.

When the user terminal 150 sets n "pieces of to-be-discarded information, the discard receiving unit 135 receives the n" pieces of to-be-discarded information from the user terminal 150, The revocation procedure performing unit 145 performs a revocation procedure of the personal information corresponding to the n "pieces of revocation object information based on the instruction from the user terminal 150, &Quot; performs the revocation procedure of the personal information corresponding to the "n "

According to the embodiment of the present invention, the revocation procedure performing unit 145 obtains proxy rights to the user's own information control right before, during, and after the n " The revocation procedure performing unit 145 generates an electronic document delegated with the self-information control delegation authority to the user terminal 150 and provides the generated electronic document to the user terminal 150, ) Receiving the electronic signature of the electronic document delegated to the self-information control authority, the user can be entrusted with the control of the self-information of the user, and the personal information corresponding to the n & Can be performed.

The management history storage unit 140 generates personal information management details for at least one of providing the personal information analysis information, receiving the revocation object information, and performing personal information revocation procedure, and stores the personal information management record in a designated database (not shown) .

According to the embodiment of the present invention, when one or more pieces of personal information utilization status information in which the improper matters exist are discriminated through the illegal legality discrimination unit 115, the destruction subject discriminating unit 125 judges that the non- n 'pieces of personal information corresponding to n' (n '1) pieces of personal information utilization status information or n' pieces of enterprise information may be included in the n "pieces of disposal object information automatically or automatically. In this case, The execution unit 145 may perform the discarding procedure for n "pieces of discarding object information including n " objects to be discarded selected by the discarding object sorting unit 125. [

According to an embodiment of the present invention, the revocation procedure performing unit 145 generates a revocation request electronic document for the n "revoked object information, and provides the revocation request electronic document to the user terminal 150. [ The user terminal 150 attaches the electronic signature of the user to the revocation request electronic document and transmits the electronic signature to the revocation requesting electronic document. The revocation procedure performing unit 145 receives the electronic signature of the revocation request electronic document from the user terminal 150 And can perform the revocation procedure of the personal information corresponding to the n "pieces of revocation object information based on the digital signature of the user. Preferably, the revocation procedure performing unit 145 provides the n "number of enterprise servers 160 to the n" number of enterprise servers 160 by providing the revocation requesting electronic document with the digital signature of the user to n & Of your personal information. According to the embodiment of the present invention, when the personal information is not discarded due to the request to revoke the personal information to the n "number of enterprise servers 160, the revocation procedure can be performed through the designated legal entity, It is also possible for the law firms to carry out the revocation procedure.

According to the embodiment of the present invention, the revocation procedure performing unit 145 transmits the revocation request electronic document corresponding to the n "number of revocation object information to the designated judicial corporation terminal 170 or the server 170, "The discarding procedure of the personal information corresponding to the discarding object information. According to the embodiment of the present invention, the revocation procedure performing unit 145 may delegate the control of the self-information delegated by the user to the legal affairs corporation, and delegate the self-information control authority to the user terminal 150 The electronic document may include information about such secondary delegation. The revocation procedure performing unit 145 updates the revocation requesting electronic document to the legal affairs corporation terminal 170 or the server 170 and then transmits the revocation requesting electronic document to the judging corporation terminal 170 or the server 170 And may provide the received revocation procedure identification value to the user terminal 150. The revocation procedure identification value may be provided to the user terminal 150. [ Here, the discard procedure identification value includes a value for identifying the contents proof sending of the user's personal information storage, a value for identifying the response from the company storing the user's personal information, a value corresponding to the response from the company Or a value of at least one of < RTI ID = 0.0 >

FIG. 2 is a diagram illustrating a process of collecting and analyzing personal information utilization status according to an embodiment of the present invention.

In more detail, FIG. 2 illustrates a process of collecting and analyzing the personal information utilization status of a user stored in each company server 160 based on unique information of a user and upgrading the user information to the user terminal 150, Those skilled in the art will be able to refer to and / or modify the FIG. 2 to understand various methods of collecting and analyzing the personal information utilization status (for example, some steps may be omitted, However, the present invention includes all of the above-described embodiments, and the technical features of the present invention are not limited by the method shown in FIG.

Referring to FIG. 2, the user terminal 150 provides unique information for analyzing the user's personal information utilization status to the management server 100 (200), and the management server 100 correspondingly provides the unique information to the user terminal 150 (N = 205). Then, the unique information of the user is provided to the N enterprise servers 160 to request the personal information utilization status information of the user (210).

Each enterprise server 160 receives unique information for extracting personal information utilization status (215), and obtains personal information utilization status information corresponding to the unique information from its own personal information D / B based on the received unique information (220). The management server 100 collects n pieces of personal information utilization status information corresponding to the unique information from the n enterprise servers 160 among the N enterprise servers 160 providing the unique information.

The management server 100 reads the collected n pieces of personal information utilization status information and discriminates n 'pieces of personal information utilization status information in which at least one of the collection, storage, and utilization of the personal information exists, ), Personal information analysis information including the determined n 'personal information utilization status information and (n-n') personal information utilization status information is generated (235) and provided to the user terminal 150 (240), and the user terminal (150) receives and outputs the personal information analysis information (245).

FIG. 3 is a diagram illustrating an advanced process for analyzing the status of personal information utilization according to an embodiment of the present invention.

In more detail, FIG. 3 shows an example in which, while performing the process shown in FIG. 2, a set of comparison objects corresponding to conditions similar to a user is extracted based on personal information management details of other users to generate analysis reference information, Analysis information to the user terminal 150. If the person skilled in the art is familiar with the present invention, referring to and / or modifying the FIG. 3, It will be appreciated that various implementations of the process may be inferred (e.g., some steps omitted or alternate implementations), but the present invention encompasses all such contemplated implementations, The technical features thereof are not limited by the implementation method alone.

Referring to FIG. 3, when n pieces of personal information utilization status information is collected while performing the process shown in FIG. 2, the management server 100 determines whether or not the same user (300) a user group in which personal information is stored or kept in the server 160 (or the enterprise server 160 of the same type) is selected as an aggregate sum 300, and the user, sex, age, occupation And the credit score are extracted as a comparison object set (305), and then analysis reference information including the ratio or average value of the digitizable information in the personal information management details of the comparison object set is generated as a percentage (310).

The management server 100 includes the generated analysis reference information in the personal information analysis information including the n 'pieces of personal information utilization status information and the (n-n') pieces of personal information utilization status information 315, (320) to the user terminal (150), and the user terminal (150) receives and outputs the personal information analysis information (325).

FIG. 4 is a flowchart illustrating an automatic discarding process according to an embodiment of the present invention.

4, when one or more pieces of personal information utilization status information having an irregularity item are discriminated while performing the process shown in FIG. 2, n '(n'? 1) The personal information utilization status information is automatically set as a revocation target. If the person skilled in the art is familiar with the present invention, referring to and / or modified with reference to FIG. 4, It will be appreciated that the various embodiments of the present invention (e.g., some steps omitted or alternate embodiments) may be deduced, but the present invention includes all of the above- The technical characteristics thereof are not limited.

Referring to FIG. 4, when one or more pieces of personal information utilization status information having an irregularity item is determined during the process shown in FIG. 2, the management server 100 determines that n '(n (N > = 1) pieces of personal information utilization status information are first or automatically included in the revocation list 400, and n ' (n & (405), and provides the personal information analysis information to the user terminal 150 (410). The user terminal 150 receives the personal information analysis information And outputs it (415).

5 is a diagram illustrating a process of disposing a user's personal information according to an embodiment of the present invention.

More specifically, FIG. 5 illustrates a process of discarding n "pieces of discarded personal information determined based on personal information analysis information provided to the user terminal 150 through the processes shown in FIGS. 2 to 4 Those skilled in the art will be able to refer to and / or modify the FIG. 5 to understand various methods of discarding the personal information (e.g., some steps may be omitted or the order may be changed). However, the present invention includes all of the above-mentioned embodiments, and the technical features of the present invention are not limited only by the method shown in FIG.

Referring to FIG. 5, the user terminal 150 transmits n "pieces of information to be revoked (500) based on the personal information analysis information provided through the processes shown in FIGS. 2 to 4, (1005) receives n "pieces of discarding object information from the user terminal 150 (505).

On the other hand, if the user's own information control right is not delegated to the management server 100, the management server 100 generates a delegated electronic information delegation control document for delegating the user's own information control authority to the user terminal 150 (510), and the user terminal 150 can transmit the electronic signature of the user to the electronic information delegated authority with the digital signature attached thereto (515).

The management server 100 generates a revocation request electronic document for the n "pieces of revocation object information and provides the revocation request electronic document to the user terminal 150 (520) The management server 100 transmits the revocation requesting electronic document with the digital signature of the user to the n "number of enterprise servers 160 based on the delegation of the user's self-information control authority, (530), each enterprise server 160 receives the user's revocation request electronic document (535), examines the revocation request electronic document according to the personal information management procedure defined in the company, (540), and performs a procedure according to a result of the personal information discarding decision (545). Preferably, the personal information of the user is discarded by the discard request electronic document, but the personal information of the user may not be discarded according to the discarding request electronic document.

The management server 100 confirms the discarding result of the user's personal information (e.g., confirms that the discarding request message is not discarded when the discard request electronic document is collected by requesting the user's personal information to the enterprise server 160 provided with the discard request electronic document) (550), and the user terminal (150) receives and outputs the discarding result of the user's personal information (555). The process is preferably repeated until discarding of the user's personal information corresponding to the discard request electronic document is confirmed.

FIG. 6 is a diagram illustrating a process for forcibly disposing a user's personal information according to an embodiment of the present invention.

FIG. 6 is a flowchart illustrating a method of forcing n "pieces of personal information to be discarded, determined based on personal information analysis information provided to the user terminal 150, through a designated legal entity through a process shown in FIGS. 2 to 4 6 is a flowchart illustrating a process of discarding personal information according to an exemplary embodiment of the present invention. Referring to FIG. 6 and / or modified by those skilled in the art, The present invention is not limited to the above-described embodiments, but may be embodied in many other specific forms without departing from the spirit or essential characteristics thereof.

Referring to FIG. 6, a revocation requesting electronic document with a digital signature of a user is received from the user terminal 150 through the process shown in FIG. 5, (600), the management server (100) delegates the control of the self-information delegated by the user to the designated legal entity (600), and if the digital signature is attached And provides the revocation requesting electronic document to the legal affairs corporation terminal 170 or the server 170 (605).

The legal affairs corporation terminal 170 or the server 170 receives the user's revocation request electronic document (610) and performs a legal business procedure for discarding the user's personal information using the revocation request electronic document of the user The management server 100 receives the discard procedure identification value for the personal information discard service in operation 620 and transmits the discard procedure identification value to the management server 100 from the legal entity terminal 170 or the server 170, At least one discard procedure identification value for the electronic document is received 625 and provided to the user terminal 150 at step 630. The user terminal 150 receives and outputs the discard procedure identification value 635 ). The process is preferably repeated until discarding of the user's personal information corresponding to the discard request electronic document is confirmed.

100: management server 105: unique information receiver
110: Utilization status collecting section 115: Negative judging section
120: Utilization Status Analysis Unit 125: Destination Target Selection Unit
130: Analysis information providing unit 135: Destination object receiving unit
140: management history storage unit 145: disposition procedure performing unit

Claims (13)

A personal information management method executed by a management server capable of interfacing with N (N? 1) enterprise servers for collecting and storing personal information and capable of communicating with user terminals,
A first step of receiving unique information that uniquely identifies the user from a user terminal;
A second step of collecting n personal information utilization status information for the user from n (1? N? N) enterprise servers by providing the unique information of the user to the N enterprise servers;
(N < = n < = n) personal information utilization status information in which at least one of the collection, storage, and utilization of personal information is present in the collected n pieces of personal information utilization status information, Step 3;
A fourth step of generating personal information analysis information including the determined n 'pieces of personal information utilization status information and (n-n') pieces of personal information utilization status information and providing the generated personal information analysis information to the user terminal;
A fifth step of receiving n "(1 ≤ n ≤ n) pieces of destruction object information from the user terminal; And
And a sixth step of performing a procedure of discarding personal information corresponding to the n "pieces of discard target information based on an instruction from the user terminal,
And generating and storing a personal information management record for at least one of providing the personal information analysis information, receiving the discard target information, and performing the personal information discard procedure. The information processing apparatus according to claim 1,
Information that can discriminate at least one of the company information collecting and storing the user's personal information, the collection purpose of the user's personal information stored in the company, the collection path, the consent mode, the agreement content, Wherein the personal information management method comprises the steps of: 2. The method according to claim 1,
If the result of reading the personal information utilization status information is used for purposes other than the purpose of collecting personal information, or if the collection path of the personal information does not correspond to the legitimate collection path, or the consent mode of the personal information does not correspond to the legitimate consent mode, The personal information is used as an unaccepted content, or when it is at least one of the storage period of the personal information has elapsed, it is determined that the non-compliance matters exist. The method according to claim 1,
If one or more pieces of personal information utilization status information,
(N '> = 1) pieces of personal information utilization status information in which the above-mentioned improper matters exist,
Wherein the fourth step provides recommendation or designation of the n 'pieces of personal information utilization status information to the personal information analysis information to the user terminal. The method according to claim 1,
If one or more pieces of personal information utilization status information,
Further comprising the step of automatically or automatically including n '(n'> = 1) pieces of personal information utilization status information in which said improper matters exist in said n "pieces of disposal object information. The method according to claim 1,
When n pieces of personal information utilization status information are collected for the user,
Age, occupation, and credit (hereinafter, referred to as " personal information ") by collecting the user group in which the personal information is stored or kept in the same enterprise server (or the same type of enterprise server) Extracting a user group that matches at least one of the user groups with a comparison object set;
Generating analysis reference information including percentage or average value of the digitizable information among the personal information management details of the comparison target set as a percentage;
And providing the generated analysis reference information to the user terminal. ≪ Desc / Clms Page number 20 > 7. The method of claim 6,
At least one of the number of times the personal information analysis information is provided, the number of times the revocation information is received, the number of times of determination of revocation of the personal information that is automatically or automatically determined, the number of times of the personal information revocation determination by each user, The personal information management method comprising the steps of: The method according to claim 1,
Step 6a-1 for generating a discard request message for the n "pieces of discard target information;
6b-2) providing the revocation requesting electronic document to the user terminal; And
Further comprising: (6c-3) receiving an electronic signature of the revocation requesting electronic document from the terminal of the user. The method according to claim 1,
6b-1) transmitting the revocation request electronic document corresponding to the n "pieces of revocation object information to a designated judicial corporation terminal or server;
6b-2) receiving at least one discard procedure identification value for the discard request message from the legal affairs corporation terminal or server; And
And providing the discard procedure identification value to the user terminal. ≪ RTI ID = 0.0 > [10] < / RTI > 10. The method of claim 9,
A value identifying at least one of a value for identifying a content proof sending of the user's personal information storage case, a value for identifying a response from the company storing the user's personal information, and a value corresponding to a response from the company Wherein the personal information management method comprises the steps of: 1. A personal information management server capable of interfacing with N (N > = 1) enterprise servers for collecting and storing personal information and communicating with user terminals,
A unique information receiving unit for receiving unique information that uniquely identifies the user from a user terminal;
A usage status collecting unit for collecting n pieces of personal information utilization status information for the user provided by n (1? N? N) enterprises to which the unique information of the user is transferred;
(N < = n < = n) personal information utilization status information in which at least one of the collection, storage, and utilization of personal information is present in the collected n pieces of personal information utilization status information, Legality discrimination section;
A utilization status analyzing unit for generating personal information analysis information including distinguishing the n 'pieces of personal information utilization status information and the (n-n') pieces of personal information utilization status information;
A discarding unit for discarding personal information corresponding to the n "pieces of discard target information based on n" (1? N? N) pieces of discard object information received from the user terminal;
And a management history storage unit for generating and storing a personal information management history for at least one of providing the personal information analysis information, receiving the revocation object information, and performing the personal information revocation procedure. 12. The method of claim 11,
Further comprising a revocation procedure execution unit for generating a revocation request electronic document for the n "pieces of revocation target information and providing the generated revocation request electronic document to the user terminal,
Wherein the revocation procedure performing unit receives an electronic signature of the revocation request electronic document from the terminal of the user. 12. The method of claim 11,
And transmits the revocation request electronic document corresponding to the n "pieces of revocation object information to the designated judicial corporation terminal or server and receives at least one revocation procedure identification value for the revocation request electronic document from the judicial corporation terminal or server Further comprising a procedure performing unit,
Wherein the revocation procedure performing unit provides the revocation procedure identification value to the user terminal,
The discard procedure identification value may be < RTI ID =
A value identifying at least one of a value for identifying a content proof sending of the user's personal information storage case, a value for identifying a response from the company storing the user's personal information, and a value corresponding to a response from the company The personal information management server comprising:
KR20130079771A 2013-07-08 2013-07-08 Method for Managing Personal Information and Server for Managing Personal Information KR20150006909A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR20130079771A KR20150006909A (en) 2013-07-08 2013-07-08 Method for Managing Personal Information and Server for Managing Personal Information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR20130079771A KR20150006909A (en) 2013-07-08 2013-07-08 Method for Managing Personal Information and Server for Managing Personal Information

Publications (1)

Publication Number Publication Date
KR20150006909A true KR20150006909A (en) 2015-01-20

Family

ID=52570025

Family Applications (1)

Application Number Title Priority Date Filing Date
KR20130079771A KR20150006909A (en) 2013-07-08 2013-07-08 Method for Managing Personal Information and Server for Managing Personal Information

Country Status (1)

Country Link
KR (1) KR20150006909A (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101990087B1 (en) * 2018-05-31 2019-06-18 주식회사 오내피플 System for writing personal information collection and usage agreement
KR20210107438A (en) * 2020-02-24 2021-09-01 박승현 An office-worker server for managing staffs and a system using the same
KR102384662B1 (en) 2021-09-14 2022-04-11 대영유비텍 주식회사 Method and system for providing data using information related to the collection and utilization of personal information
US20220141211A1 (en) * 2016-06-03 2022-05-05 Docusign, Inc. Universal access to document transaction platform
KR20220064766A (en) * 2020-11-12 2022-05-19 성신여자대학교 연구 산학협력단 Anonymous Attribute Proof System and Method with Efficient Key Revocation

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20220141211A1 (en) * 2016-06-03 2022-05-05 Docusign, Inc. Universal access to document transaction platform
US11962578B2 (en) 2016-06-03 2024-04-16 Docusign, Inc. Universal access to document transaction platform
KR101990087B1 (en) * 2018-05-31 2019-06-18 주식회사 오내피플 System for writing personal information collection and usage agreement
KR20210107438A (en) * 2020-02-24 2021-09-01 박승현 An office-worker server for managing staffs and a system using the same
KR20220064766A (en) * 2020-11-12 2022-05-19 성신여자대학교 연구 산학협력단 Anonymous Attribute Proof System and Method with Efficient Key Revocation
KR102384662B1 (en) 2021-09-14 2022-04-11 대영유비텍 주식회사 Method and system for providing data using information related to the collection and utilization of personal information

Similar Documents

Publication Publication Date Title
KR20150006909A (en) Method for Managing Personal Information and Server for Managing Personal Information
CN103209174B (en) A kind of data prevention method, Apparatus and system
US7562122B2 (en) Message classification using allowed items
US8370948B2 (en) System and method for analysis of electronic information dissemination events
JP4544417B2 (en) List management server, list management system, list management method and program
US9225618B2 (en) Method of tracing and of resurgence of pseudonymized streams on communication networks, and method of sending informative streams able to secure the data traffic and its addressees
US20100318614A1 (en) Displaying User Profile and Reputation with a Communication Message
US8413251B1 (en) Using disposable data misuse to determine reputation
RU2622883C2 (en) System and method for managing access to personal data
WO2006094275A2 (en) Trust evaluation systems and methods
KR20090086276A (en) Metadata broker
JP5644977B1 (en) Document management apparatus and document management program
CN111324370A (en) Method and device for carrying out risk processing on to-be-on-line small program
Hernández-Serrano et al. On the road to secure and privacy-preserving iot ecosystems
US20130204398A1 (en) Access control device, access control system, access control method, and computer readable medium
WO2004054188A1 (en) Electronic mail system
CN101460938B (en) Synchronous message management system and method
Velasco Cybercrime jurisdiction: past, present and future
Pöhls et al. Sanitizable signed privacy preferences for social networks.
Ehondor et al. Personal data protection and Facebook privacy infringements in Nigeria.
JP4891953B2 (en) Information transmission control device, method and program
JP2008123067A (en) Document processing management system
JP2008234437A (en) Electronic mail incorrect transmission prevention device and electronic mail incorrect transmission prevention method and program
Wolff Application-layer design patterns for accountable–anonymous online identities
Zhang et al. Legal Attributes of IP Attribution Information under China's PIPL: Clarification of Identifiability Terminology and Operationalisation of Identifiability Criteria

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E601 Decision to refuse application