WO2021085064A1 - 情報取引装置、情報取引方法及びプログラム - Google Patents
情報取引装置、情報取引方法及びプログラム Download PDFInfo
- Publication number
- WO2021085064A1 WO2021085064A1 PCT/JP2020/037989 JP2020037989W WO2021085064A1 WO 2021085064 A1 WO2021085064 A1 WO 2021085064A1 JP 2020037989 W JP2020037989 W JP 2020037989W WO 2021085064 A1 WO2021085064 A1 WO 2021085064A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- information
- approval
- provision
- sharing
- personal information
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims description 7
- 230000005540 biological transmission Effects 0.000 claims abstract description 25
- 238000012545 processing Methods 0.000 claims description 34
- 230000010365 information processing Effects 0.000 claims description 30
- 230000006870 function Effects 0.000 claims description 7
- 238000010586 diagram Methods 0.000 description 12
- 230000015654 memory Effects 0.000 description 6
- 230000004044 response Effects 0.000 description 4
- 230000009471 action Effects 0.000 description 2
- 230000036772 blood pressure Effects 0.000 description 2
- 230000008859 change Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 238000012360 testing method Methods 0.000 description 2
- 230000036760 body temperature Effects 0.000 description 1
- 238000012217 deletion Methods 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 201000010099 disease Diseases 0.000 description 1
- 208000037265 diseases, disorders, signs and symptoms Diseases 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 238000004549 pulsed laser deposition Methods 0.000 description 1
- 230000029058 respiratory gaseous exchange Effects 0.000 description 1
- 230000000717 retained effect Effects 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
- G06F21/6254—Protecting personal data, e.g. for financial or medical purposes by anonymising data, e.g. decorrelating personal data from the owner's identification
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
Definitions
- the present invention relates to an information trading device, an information trading method and a program.
- Patent Document 1 when a user requests a change in privacy policy, the existing privacy policy is compared with the updated privacy policy, and it is determined that personal information cannot be used by another provider. It discloses a privacy change input device that sends a deletion request to the other provider.
- the business operator device receives usage conditions from the user device and the user device, extracts personal information that meets both conditions, and transmits the personal information to the user device to distribute personal information. It discloses the technology to make it transparent.
- Patent Document 3 receives a request for disclosure of personal information, determines whether or not this personal information exists in a database, and if so, determines whether or not it is difficult to identify a service user with a predetermined threshold.
- the technology for returning personal information corresponding to the disclosure request when the value is equal to or higher than the threshold value is disclosed.
- An object of the present invention is to provide an information trading device, an information trading method, and a program that solve the above-mentioned problems.
- the information trading device is connected to an information holding device including a storage unit for storing personal information, and receives approval for sharing personal information by the information sharing destination device from a user associated with the personal information.
- the information holding device when the provision approval receiving unit accepts the approval of the provision of personal information to the information providing destination device from the user associated with the personal information, and the shared approval receiving unit accepts the shared approval.
- the sharing instruction unit instructing the sharing and the provision instruction unit instructing the information holding device to provide the information when the provision approval reception unit receives the approval of the provision are provided.
- the information trading method is a user associated with the personal information for approval of sharing of personal information by the information sharing destination device by using an information trading device connected to an information holding device including a storage unit for storing personal information.
- the shared approval reception unit provided in the information trading device receives the approval of the provision of personal information to the information providing destination device, and the provision approval receiving unit provided in the information trading device receives the approval of the provision of personal information from the user associated with the personal information.
- the sharing approval receiving unit receives the approval of the sharing
- the information holding device is instructed to share the information
- the providing approval receiving unit receives the approval of the provision
- the information holding device is instructed to provide the information.
- a computer connected to an information holding device having a storage unit for storing personal information receives approval for sharing personal information by the information sharing destination device from a user associated with the personal information.
- provision approval receiving means for accepting approval for provision of personal information to the information providing destination device from the user associated with the personal information, sharing instructing the information holding device for the sharing when the approval for sharing is received
- the instruction means causes the information holding device to function as the provision instruction means for instructing the provision.
- the approval for sharing personal information and the approval for providing personal information can be performed in one device, so that the time and effort required for approval can be reduced.
- FIG. 1 shows the configuration of the information trading system 10 according to the first embodiment.
- the information trading system 10 includes an information trading device 100 that accepts approval for sharing personal information and approval for providing personal information with a single device. Therefore, this system can reduce the time and effort required for approval.
- the information trading system 10 includes an information trading device 100, a user terminal 200, an information holding device 300, an information sharing destination device 400, an information providing destination device 500, and an information processing device 600.
- the information trading system 10 shown in FIG. 1 includes an information holding device 300A and an information holding device 300B as the information holding device 300, but may be configured to include a different number of information holding devices 300.
- the information trading system 10 shown in FIG. 1 includes an information processing device 600A and an information processing device 600B as information processing devices, but may be configured to include a different number of information processing devices.
- the information processing device 600A and the information processing device 600B may be simply referred to as the information processing device 600 in the following description.
- Sharing means that the information holding device 300 makes the personal information of the information holding device 300 visible to the business operator who has the information sharing destination device 400. That is, in the shared state, the information holding device 300 transmits the personal information of the information holding device 300 as many times as possible in response to the reference request from the predetermined business operator by the predetermined deadline. The provision is a single transmission of the personal information of the information holding device 300 to the personal information utilization business operator having the information providing destination device 500. In the shared state, the information holding device 300 may be in a state of transmitting personal information in response to a reference request up to a predetermined number of times (once or a plurality of times).
- FIG. 2 shows an example of the above personal information.
- Examples of personal information shown in FIG. 2 include a personal identification code, a name, a gender, an age, a data acquisition date, a data acquisition institution code, vital signs 1 (body temperature), and vital signs 2 (pulse). , Vital signs 3 (breathing), vital signs 4 (blood pressure), test items, test results, and diagnostic results.
- FIG. 3 shows the configuration of the information trading device 100.
- the information transaction device 100 includes a transaction storage unit 110, a transaction transmission unit 120, a shared approval reception unit 130, a provision approval reception unit 131, a shared instruction unit 140, an provision instruction unit 141, and a shared consideration calculation unit 150.
- a provision consideration calculation unit 151, a shared consideration distribution unit 160, a provision consideration distribution unit 161, a report reception unit 170, and a request reception unit 180 are provided.
- FIG. 4 shows the configuration of the user terminal 200.
- the user terminal 200 includes a terminal receiving unit 210, an output unit 220, an approval receiving unit 230, and an approval transmitting unit 240.
- Examples of the user terminal 200 include a personal computer and a mobile terminal. Examples of mobile terminals include smartphones and tablet terminals.
- FIG. 5 shows the configuration of the information holding device 300.
- the information holding device 300 includes a storage unit 310, an instruction receiving unit 320, an information providing unit 330, and a shared processing unit 340.
- An example of the information holding device 300 is a device provided by a business operator such as a hospital that holds the personal information of the user 20.
- FIG. 6 shows the configuration of the information sharing destination device 400.
- the information sharing destination device 400 includes a sharing request receiving unit 410, a sharing request transmitting unit 420, an instruction notification receiving unit 430, and a shared information reference unit 440.
- An example of the information sharing destination device 400 is a device provided by a business operator such as a hospital different from the hospital provided with the information holding device 300.
- FIG. 7 shows the configuration of the information providing destination device 500.
- the information providing destination device 500 includes a providing destination storage unit 510, a providing request receiving unit 520, a providing request transmitting unit 530, and a providing information receiving unit 540.
- An example of the information providing destination device 500 is a personal information utilization business operator such as a retail company that utilizes the personal information of the user 20.
- FIG. 8 shows the configuration of the information processing device 600 (600A, 600B).
- the information processing device 600 includes a receiving unit 610, a processing unit 620, and a transmitting unit 630.
- the transaction storage unit 110 stores the shared consideration information, the provided consideration information, the shared consideration distribution information, and the provided consideration distribution information. Examples of the transaction storage unit 110 include on-premises storage and cloud storage.
- the shared consideration information is information in which the amount and type of personal information related to sharing and the amount of consideration are associated with each other.
- FIG. 9 shows an example of shared consideration information.
- the unit of the amount of personal information in the example of FIG. 9 is the number of data sets. Further, the amount of consideration shown in the example of FIG. 9 is the amount of consideration for the personal information of one of the users 20.
- the offer consideration information is information in which the amount and type of personal information related to the provision and the amount of consideration are associated with each other.
- FIG. 10 shows an example of the value provided information.
- the unit of the amount of personal information in the example of FIG. 10 is the number of data sets. Further, the amount of consideration shown in the example of FIG. 10 is the amount of consideration for the personal information of one of the users 20.
- the shared consideration is the amount of consideration paid by the business operator having the information sharing destination device 400 to the business operator having the information holding device 300.
- the provision consideration is the amount of consideration paid by the personal information utilization business operator provided with the information providing destination device 500 to the business operator having the information holding device 300.
- the shared consideration distribution information is information in which the user 20 and the information holding device 300 related to the shared consideration and the distribution rate are associated with each other.
- FIG. 11 shows an example of shared consideration distribution information. In this example, the distribution rate corresponding to the user 20 is 0.6, and the distribution rate corresponding to the information holding device 300 is 0.3.
- the offer consideration distribution information is information in which the user 20 and the information holding device 300 related to the offer consideration and the distribution rate are associated with each other.
- FIG. 12 shows an example of the value distribution information provided. In this example, the distribution rate corresponding to the user 20 is 0.7, and the distribution rate corresponding to the information holding device 300 is 0.2.
- the transaction transmitting unit 120 transmits the sharing request to the user terminal 200. Further, when the request receiving unit 180 receives the provision request, the transaction transmitting unit 120 transmits the providing request to the user terminal 200. Further, the transaction transmission unit 120 transmits the shared consideration to the information sharing destination device 400, and transmits the provided consideration to the information providing destination device 500. Further, the transaction transmission unit 120 transmits the shared distribution consideration and the provided distribution consideration to the user terminal 200 and the information holding device 300.
- the sharing approval reception unit 130 receives the sharing approval from the user terminal 200.
- the provision approval reception unit 131 receives the provision approval from the user terminal 200.
- the sharing instruction unit 140 instructs the information holding device 300 to share the information.
- the provision instruction unit 141 instructs the information holding device 300 to provide the information.
- the shared consideration calculation unit 150 compares the amount and type of personal information related to the sharing with the shared consideration information stored in the transaction storage unit 110. , Calculate the co-ownership consideration, which is the amount of consideration for the co-ownership.
- the offer consideration calculation unit 151 compares the amount and type of personal information related to the provision with the offer consideration information stored in the transaction storage unit 110. , Calculate the offer consideration, which is the amount of consideration for the offer.
- the shared consideration distribution unit 160 compares the shared consideration with the shared consideration distribution information stored in the transaction storage unit 110, and multiplies the shared consideration by the distribution rate to cause the user 20 and the information holding device. Calculate the shared distribution consideration corresponding to 300.
- the shared distribution consideration is the amount of consideration paid by the business operator having the information sharing destination device 400 to the user 20 or the business operator having the information holding device 300.
- the offer consideration distribution unit 161 compares the offer consideration with the offer consideration distribution information stored in the transaction storage unit 110, and multiplies the offer consideration by the distribution rate to obtain the user 20 and the information holding device. Calculate the offer distribution consideration corresponding to 300.
- the provision distribution consideration is the amount of consideration paid by the personal information utilization business operator having the information providing destination device 500 to the user 20 or the business operator having the information holding device 300.
- the report receiving unit 170 receives a shared report or a provided report from the information processing device 600.
- the request receiving unit 180 receives the sharing request from the information sharing destination device 400, and receives the provision request from the information providing destination device 500.
- the terminal receiving unit 210 receives a sharing request, a provision request, a shared distribution consideration, and a provision distribution consideration from the information trading device 100.
- the output unit 220 displays the sharing request, the provision request, the shared distribution consideration, and the provision distribution consideration received by the terminal receiving unit 210 on a touch panel (not shown) included in the user terminal 200.
- the approval receiving unit 230 accepts the sharing approval and the provision approval input by the user 20 via one application on the touch panel included in the user terminal 200.
- the approval transmitting unit 240 transmits the shared approval received by the approval receiving unit 230 and the approval of provision to the information trading device 100.
- the storage unit 310 stores the personal information of the user 20.
- the storage unit 310 stores a data set of personal information as shown in FIG.
- the storage unit 310 stores a data set of personal information of the plurality of users.
- Examples of the storage unit 310 include on-premises storage and cloud storage.
- the instruction receiving unit 320 receives a sharing instruction or an instruction to provide from the information trading device 100.
- the information providing unit 330 transmits the personal information related to the instruction among the personal information stored in the storage unit 310 to the information processing device 600.
- the sharing processing unit 340 can refer to the personal information related to the instruction among the personal information stored in the storage unit 310 by the information sharing destination device 400 related to the instruction. Process to the state. That is, the sharing processing unit 340 transmits the personal information according to the instruction in response to the reference request of the information sharing destination device 400 according to the instruction by the predetermined deadline according to the instruction.
- the sharing request receiving unit 410 receives a sharing request, which is a request for sharing personal information of the user 20, entered by the user of the information sharing destination device 400 into an input device (not shown) included in the information sharing destination device 400.
- a sharing request which is a request for sharing personal information of the user 20, entered by the user of the information sharing destination device 400 into an input device (not shown) included in the information sharing destination device 400.
- the sharing request transmitting unit 420 transmits the sharing request to the information trading device 100.
- the instruction notification reception unit 430 receives the instruction notification from the information trading device 100.
- the shared information reference unit 440 receives the instruction notification reception unit 430 instruction notification
- the shared information reference unit 440 refers to the personal information related to the instruction among the personal information stored in the information holding device 300.
- the provision destination storage unit 510 stores the personal information received by the provision information receiving unit 540. Examples of the destination storage unit 510 include on-premises storage and cloud storage.
- the provision request receiving unit 520 receives a provision request, which is a request for provision of personal information of the user 20, which is input by the user of the information providing destination device 500 to an input device (not shown) included in the information providing destination device 500.
- the provision request transmitting unit 530 transmits the providing request to the information trading device 100.
- the provided information receiving unit 540 receives the personal information provided by the information holding device 300.
- the receiving unit 610 accepts the personal information transmitted from the information holding device 300.
- the processing unit 620 anonymizes the personal information received by the receiving unit 610. For example, the processing unit 620 replaces the personal identification code and the name in the personal information as shown in FIG. 2 received by the receiving unit 610 with a random character string irrelevant to the personal identification code and the name. Alternatively, the processing unit 620 deletes the personal identification code and the name from the personal information as shown in FIG. 2 received by the receiving unit 610.
- the transmission unit 630 transmits the personal information anonymized by the processing unit 620 to the information providing destination device 500.
- the above processing unit 620 may perform pseudonymization instead of anonymization.
- the processing unit 620 performs pseudonymization by replacing the personal identification code and the name in the personal information as shown in FIG. 2 with another character string according to a certain rule. Since the pseudonymization is performed based on a certain rule, even if there are many information processing devices 600 in the information trading system 10, the same personal identification code and the name are converted into the same character string, and the pseudonymization is performed. Be told. As a result, even if the personal information related to the same personal identification code and name is in different data sets, such as when the number of days for acquiring personal information is different, the personal information of the same person can be analyzed collectively.
- FIG. 13 shows an operation related to sharing of the information trading system 10.
- the user of the information sharing destination device 400 inputs a sharing request, which is a request for sharing the personal information of the user 20, into the input device included in the information sharing destination device 400.
- the sharing request receiving unit 410 receives the sharing request (step S1).
- the sharing request transmitting unit 420 transmits the sharing request received in step S1 to the information trading device 100 (step S2).
- the request receiving unit 180 receives the sharing request transmitted in step S2 (step S3).
- the transaction transmission unit 120 transmits the sharing request received by the request reception unit 180 in step S3 to the user terminal 200 (step S4).
- the terminal receiving unit 210 receives the sharing request transmitted in step S4.
- the output unit 220 displays the sharing request received by the terminal receiving unit 210 on the display device included in the user terminal 200 (step S5).
- the user 20 sees the sharing request displayed on the display device of the user terminal 200 in step S5, and inputs the approval of sharing to the input device provided in the user terminal 200.
- the approval receiving unit 230 accepts the shared approval (step S6).
- the approval transmission unit 240 transmits the shared approval received in step S6 to the information trading device 100 (step S7).
- the sharing approval receiving unit 130 accepts the sharing approval transmitted in step S7 (step S8).
- the sharing instruction unit 140 instructs the information holding device 300 of the sharing instruction related to the approval of sharing received in step S8. Further, the sharing instruction unit 140 transmits an instruction notification relating to the approval of sharing received in step S8 to the information sharing destination device 400 (step S9).
- the instruction notification reception unit 430 receives the sharing instruction in step S9.
- the sharing processing unit 340 processes the reference so as to allow the reference (step S10).
- the instruction notification receiving unit 430 receives the instruction notification transmitted in step S9.
- the shared information reference unit 440 refers to the personal information related to the instruction notification received by the instruction notification reception unit 430 among the personal information stored in the information holding device 300 (step S11).
- the shared consideration calculation unit 150 calculates the shared consideration by comparing the amount and type of personal information related to sharing received in step S8 with the shared consideration information stored in the transaction storage unit 110 (step S12). ).
- the co-ownership value distribution unit 160 compares the co-ownership value calculated in step S12 with the co-ownership value distribution information stored in the transaction storage unit 110, and multiplies the co-ownership value by the distribution rate to co-distribute.
- the consideration is calculated (step S13).
- the transaction transmission unit 120 transmits the shared distribution consideration calculated in step S13 to the user terminal 200 and the information holding device 300 (step S14). Further, the transaction transmission unit 120 transmits the shared consideration calculated in step S12 to the information sharing destination device 400 (step S15).
- the user 20 can share the personal information of the user 20 with the information sharing destination device 400 by using the information trading device 100, and can confirm the consideration price related to the sharing.
- FIG. 14 shows an operation related to the provision of the information trading system 10.
- the user of the information providing destination device 500 inputs a request for providing personal information of the user 20 to the input device provided in the information providing destination device 500.
- the provision request reception unit 520 receives a provision request, which is a provision request input to the input device included in the information providing destination device 500.
- the provision request transmitting unit 530 transmits the provision request received by the providing request receiving unit 520 to the information trading device 100 (step S21).
- the request receiving unit 180 receives the provision request transmitted in step S21.
- the transaction transmission unit 120 transmits the provision request received by the request reception unit 180 to the user terminal 200 (step S22).
- the terminal receiving unit 210 receives the provision request transmitted in step S22.
- the output unit 220 displays the provision request received by the terminal receiving unit 210 on the display device included in the user terminal 200 (step S23).
- the user 20 inputs the approval of the provision to the input device included in the user terminal 200 in response to the provision request displayed in step S23.
- the approval receiving unit 230 accepts the approval of the offer input to the input device included in the user terminal 200.
- the approval transmitting unit 240 transmits the approval of the provision accepted by the approval receiving unit 230 to the information trading device 100 (step S24).
- the provision approval reception unit 131 accepts the approval of the provision transmitted in step S24.
- the provision instruction unit 141 instructs the information holding device 300 to provide the approval related to the approval received by the provision approval reception unit 131 (step S25).
- the instruction receiving unit 320 receives the instruction provided in step S25.
- the information providing unit 330 transmits, among the personal information stored in the storage unit 310, the personal information related to the provision received by the instruction receiving unit 320 to the information processing device 600 (step S26).
- the receiving unit 610 accepts the personal information transmitted in step S26.
- the processing unit 620 anonymizes the personal information received by the receiving unit 610 (step S27).
- the transmission unit 630 transmits the personal information anonymized in step S27 to the information providing destination device 500.
- the transmission unit 630 notifies the information trading device 100 that the anonymized personal information has been transmitted (step S28).
- the personal information transmitted to the information providing destination device 500 in step S28 is received by the providing information receiving unit 540 of the information providing destination device 500 and stored in the providing destination storage unit 510 (step S29).
- the offer consideration calculation unit 151 compares the amount and type of personal information related to the offer received by the offer approval reception unit 131 in step S25 with the offer consideration information stored in the transaction storage unit 110, and provides the offer consideration. Is calculated (step S30).
- the offer consideration distribution unit 161 compares the offer consideration calculated in step S30 with the offer consideration distribution information stored in the transaction storage unit 110, and multiplies the offer consideration by the distribution rate to provide distribution.
- the consideration is calculated (step S31).
- the transaction transmission unit 120 transmits the offer distribution consideration calculated in step S31 to the user terminal 200 and the information holding device 300. Further, the transaction transmission unit 120 transmits the offer consideration calculated in step S30 to the information providing destination device 500 (step S32).
- the user 20 can provide the personal information of the user 20 to the information providing destination device 500 by using the information trading device 100, and can confirm the consideration price related to the provision.
- the personal information of one user 20 is shared and provided, but the personal information of a plurality of users 20 may be shared and provided.
- the calculation of the shared consideration or the provision consideration for the plurality of users 20 may be performed collectively. Therefore, the information transaction device 100 records the actual data of sharing or provision in the transaction storage unit 110, and calculates the shared consideration or the provision consideration for the plurality of users 20 based on the actual data.
- the information trading device 100 is connected to an information holding device 300 including a storage unit 310 for storing personal information, and the information sharing destination device 400 approves sharing, which is a reference to personal information.
- the shared approval reception unit 130 that receives from the user 20 associated with the personal information and the provision approval reception unit that accepts the approval of the provision of the transmission of the personal information to the information providing destination device 500 from the user 20 associated with the personal information.
- the sharing instruction unit 140 instructing the information sharing destination device 400 to share the information and the provision approval receiving unit 131 receive the approval of the provision, the information is retained.
- the device 300 is provided with a provision instruction unit 141 that instructs the provision.
- the user 20 can approve the sharing and provision of personal information of the user 20 by using the information trading device 100, which is one device, and the time and effort related to the approval can be reduced. it can.
- the information holding device 300 is connected to the information processing device 600.
- the information processing device 600 includes a receiving unit 610 that accepts personal information, a processing unit 620 that anonymizes or pseudonyms personal information received by the receiving unit 610, and an individual that has been anonymized or pseudonymed by the processing unit 620. It includes a transmission unit 630 that transmits information to the information providing destination device 500. The provision is performed by transmitting personal information to the information providing destination device 500 via the information processing device 600.
- the user 20 of the information trading device 100 can provide personal information that has been anonymized or pseudonymized via the information processing device 600. Therefore, the information trading device 100 can improve the security related to the provision of personal information.
- the information trading device 100 compares the amount and type of personal information related to sharing with the shared consideration information which is information in which the amount and type of personal information related to the sharing and the amount of consideration are associated with each other.
- the shared consideration calculation unit 150 for calculating the shared consideration, which is the amount of the consideration related to the sharing, is provided.
- the user 20 of the information trading device 100 can easily confirm the shared consideration for the sharing.
- the information trading device 100 compares the amount and type of personal information related to the provision with the provision consideration information which is information in which the amount and type of personal information related to the provision and the amount of consideration are associated with each other.
- the provision consideration calculation unit 151 for calculating the provision consideration which is the amount of the consideration related to the provision is provided.
- the user 20 of the information trading device 100 can easily confirm the offer consideration for the provision.
- the information trading device 100 is connected to a user terminal 200, which is a terminal owned by the user 20 associated with personal information.
- the user terminal 200 includes an approval receiving unit 230 that accepts the approval of sharing or the approval of provision associated with the user 20 from the user 20 having the user terminal 200.
- the shared approval receiving unit 130 accepts the approval of sharing through the approval receiving unit 230 associated with the user 20 associated with the sharing.
- the provision approval receiving unit 131 accepts the approval of the provision through the approval receiving unit 230 associated with the user 20 associated with the provision.
- the user 20 of the information trading device 100 can approve the sharing or provision of personal information of the user 20 by using the user terminal 200 connected to the information trading device 100. Therefore, it is possible to reduce the time and effort required for the approval.
- the approval receiving unit 230 of the user terminal 200 accepts the approval of sharing and the approval of provision through one application of the user terminal 200.
- the user 20 of the information trading device 100 can approve the sharing or the provision through one application of the user terminal 200. Therefore, the time and effort required for approval can be reduced.
- the configuration of the information trading system 10'according to the second embodiment includes an information statistical device 700 in addition to the configuration of the information trading system 10 according to the first embodiment.
- FIG. 15 shows the information trading system 10'according to the second embodiment. In the example of FIG. 15, one user 20 is shown, but there are a plurality of users 20 (not shown) and user terminals 200 (not shown) corresponding to the number of the users 20.
- FIG. 16 shows the configuration of the information statistical device 700.
- the information statistical device 700 includes an information receiving unit 710, a statistical processing unit 720, and a statistical transmitting unit 730.
- the information receiving unit 710 receives anonymized or pseudonymized personal information from the information processing device 600.
- the statistical processing unit 720 performs statistical processing of the personal information received by the information receiving unit 710 and generates statistical information.
- the statistical transmission unit 730 transmits the statistical information generated by the statistical processing unit 720 to the information providing destination device 500.
- the number of people who meet certain conditions age range, people diagnosed with a specific disease, etc.
- the distribution of specific data blood pressure, etc.
- the ratio etc. can be mentioned.
- the above-mentioned statistical transmission unit 730 may transmit both the personal information anonymized or pseudonymized by the information processing device 600 and the statistical information to the information providing destination device 500.
- the information processing device 600 is connected to the information statistics device 700.
- the information statistical device 700 includes an information receiving unit 710 that receives information related to personal information that has been anonymized or pseudonymized by the processing unit 620 of the information processing device 600, and statistical processing based on the information received by the information receiving unit 710. It is provided with a statistical processing unit 720 that performs the above and generates statistical information.
- the personal information utilization business operator having the information providing destination device 500 can use the information statistical device 700 that generates statistical information. Therefore, this personal information utilization business operator can also use statistical information related to personal information.
- the information processing device 600 in which the personal information of the user 20 is anonymized is connected to the information holding device 300.
- the information trading device 100 includes a processing unit and does not store personal information in the information trading device 100, and the processing unit directly anonymizes or pseudonyms the personal information stored in the information holding device 300. Personal information that has been anonymized or pseudonymed may be provided to the information providing destination device 500.
- FIG. 17 shows the basic configuration of the information trading device 100'.
- the information transaction device 100'related to the basic configuration includes a transaction storage unit 110, a transaction transmission unit 120, a shared approval reception unit 130, a provision approval reception unit 131, a shared instruction unit 140, and a provision instruction unit 141. ..
- the information trading device 100'related to the basic configuration allows the user 20 of the information trading device 100'to approve the sharing or provision of personal information of the user 20 by the information trading device 100', which is one device. The time and effort required for approval can be reduced.
- FIG. 18 is a schematic block diagram showing a configuration of a computer according to at least one embodiment.
- the computer 1100 includes a processor 1110, a main memory 1120, a storage 1130, and an interface 1140.
- the above-mentioned information trading devices 100 and 100' are mounted on the computer 1100.
- the operation of each processing unit described above is performed by executing a program stored in the storage 1130.
- the processor 1110 reads a program from the storage 1130, expands it into the main memory 1120, and executes the above processing according to the program. Further, the processor 1110 secures a storage area corresponding to each of the above-mentioned storage units in the main memory 1120 according to the program.
- the program may be for realizing a part of the functions exerted on the computer 1100.
- the program may exert its function in combination with another program already stored in the storage 1130, or in combination with another program mounted on another device.
- the computer 1100 may include a custom LSI (Large Scale Integrated Circuit) such as a PLD (Programmable Logic Device) in addition to or in place of the above configuration.
- PLDs include PAL (Programmable Array Logic), GAL (Generic Array Logic), CPLD (Complex Programmable Logic Device), and FPGA (Field Programmable Gate Array).
- PLDs Programmable Logic Device
- PAL Programmable Array Logic
- GAL Generic Array Logic
- CPLD Complex Programmable Logic Device
- FPGA Field Programmable Gate Array
- Examples of the storage 1130 include magnetic disks, magneto-optical disks, semiconductor memories, and the like.
- the storage 1130 may be internal media directly connected to the bus of computer 1100, or external media connected to the computer via interface 1140 or a communication line.
- this program is distributed to the computer 1100 via a communication line, the distributed computer 1100 may expand the program in the main memory 1120 and execute the above processing.
- storage 1130 is a non-temporary tangible storage medium.
- the program may be for realizing a part of the above-mentioned functions. Further, the program may be a so-called difference file (difference program) that realizes the above-mentioned function in combination with another program already stored in the storage 1130.
- difference file difference program
- the present invention can be applied to an information trading device that handles personal information, and in an information trading device that handles personal information, approval for sharing personal information and approval for providing personal information can be performed in one device. Therefore, the time and effort required for approval can be reduced.
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Medical Informatics (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Databases & Information Systems (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Finance (AREA)
- General Business, Economics & Management (AREA)
- Development Economics (AREA)
- Economics (AREA)
- Marketing (AREA)
- Strategic Management (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Description
本発明の目的は、上述した課題を解決する情報取引装置、情報取引方法及びプログラムを提供することにある。
《情報取引システムの構成》
以下、図面を参照しながら実施形態について詳しく説明する。図1は、第1の実施形態に係る情報取引システム10の構成を示す。
図7は、情報提供先装置500の構成を示す。情報提供先装置500は、提供先記憶部510と、提供要請受付部520と、提供要請送信部530と、提供情報受信部540とを備える。情報提供先装置500の例としては、ユーザ20の個人情報を活用する小売企業などの個人情報活用事業者が挙げられる。
以下、図3を参照して情報取引装置100の構成を説明する。
図9は共有対価額情報の一例を示す。図9の例での個人情報の量の単位はデータセット数である。また、図9の例に示す対価の額とは、ユーザ20の一人の個人情報の対価の額である。提供対価額情報とは、提供に係る個人情報の量及び種別と対価の額とが関連付けられた情報である。
図10は提供対価額情報の一例を示す。図10の例での個人情報の量の単位はデータセット数である。また、図10の例に示す対価の額とは、ユーザ20の一人の個人情報の対価の額である。共有対価額とは、情報共有先装置400を有する事業者が、情報保有装置300を有する事業者に支払う対価の額である。提供対価額とは、情報提供先装置500を備える個人情報活用事業者が、情報保有装置300を有する事業者に支払う対価の額である。
図11は共有対価額分配情報の一例を示す。この例では、ユーザ20に対応する分配率は0.6であり、情報保有装置300に対応する分配率は0.3である。提供対価額分配情報とは、提供対価に係るユーザ20及び情報保有装置300と分配率とが関連付けられた情報である。
図12は提供対価額分配情報の一例を示す。この例では、ユーザ20に対応する分配率は0.7であり、情報保有装置300に対応する分配率は0.2である。
以下、図4を参照してユーザ端末200の構成を説明する。
以下、図5を参照して情報保有装置300の構成を説明する。
以下、図6を参照して情報共有先装置400の構成を説明する。
以下、図7を参照して情報提供先装置500の構成について説明する。
以下、図8を参照して情報処理装置600の構成について説明する。
以下、情報取引システム10の共有に係る動作について説明する。図13は、情報取引システム10の共有に係る動作を示す。
以下、情報取引システム10の提供に係る動作について説明する。図14は、情報取引システム10の提供に係る動作を示す。
第1の実施形態に係る情報取引装置100は、個人情報を記憶する記憶部310を備える情報保有装置300と接続し、情報共有先装置400による個人情報への参照である共有の承認を、当該個人情報に関連付けられたユーザ20から受け付ける共有承認受付部130と、情報提供先装置500への個人情報の送信である提供の承認を、当該個人情報に関連付けられたユーザ20から受け付ける提供承認受付部131と、共有承認受付部130が共有の承認を受け付けた場合、情報共有先装置400に当該共有を指示する共有指示部140と、提供承認受付部131が提供の承認を受け付けた場合、情報保有装置300に当該提供を指示する提供指示部141とを備える。
以下、第2の実施形態に係る情報取引システム10’について説明する。第2の実施形態に係る情報取引システム10’の構成は、第1の実施形態に係る情報取引システム10の構成に加えて、情報統計装置700を備える。図15は、第2の実施形態に係る情報取引システム10’を示す。図15における例ではユーザ20が一人示されているが、図示しない複数のユーザ20と、当該ユーザ20の数に対応するユーザ端末200(図示しない)が存在する。
以下、図16を参照して情報統計装置700の構成について説明する。
情報処理装置600は、情報統計装置700と接続される。情報統計装置700は、情報処理装置600の処理部620により匿名化又は仮名化が行われた個人情報に係る情報を受け取る情報受取部710と、情報受取部710が受け取った情報に基づいて統計処理を行い、統計情報を生成する統計処理部720とを備える。
以上、図面を参照して第1および第2の実施形態について詳しく説明してきたが、具体的な構成は上述のものに限られることはなく、様々な設計変更等をすることが可能である。
以下、基本構成に係る情報取引装置100’について説明する。図17は、情報取引装置100’の基本構成を示す。基本構成に係る情報取引装置100’は、取引記憶部110と、取引送信部120と、共有承認受付部130と、提供承認受付部131と、共有指示部140と、提供指示部141とを備える。
100、100’ 情報取引装置
110 取引記憶部
120 取引送信部
130 共有承認受付部
131 提供承認受付部
140 共有指示部
141 提供指示部
150 共有対価額計算部
151 提供対価額計算部
160 共有対価額分配部
161 提供対価額分配部
170 報告受付部
180 要請受信部
200 ユーザ端末
210 端末受信部
220 出力部
230 承認受入部
240 承認送信部
300 情報保有装置
310 記憶部
320 指示受付部
330 情報提供部
340 共有処理部
400 情報共有先装置
410 共有要請受付部
420 共有要請送信部
430 指示通知受付部
440 共有情報参照部
500 情報提供先装置
510 提供先記憶部
520 提供要請受付部
530 提供要請送信部
540 提供情報受信部
600 情報処理装置
610 受入部
620 処理部
630 送信部
700 情報統計装置
710 情報受取部
720 統計処理部
730 統計送信部
1100 コンピュータ
1110 プロセッサ
1120 メインメモリ
1130 ストレージ
1140 インタフェース
Claims (9)
- 個人情報を記憶する記憶手段を備える情報保有装置と接続され、
情報共有先装置による前記個人情報の共有の承認を、前記個人情報に関連付けられたユーザから受け付ける共有承認受付手段と、
情報提供先装置への前記個人情報の提供の承認を、前記個人情報に関連付けられた前記ユーザから受け付ける提供承認受付手段と、
前記共有承認受付手段が前記共有の承認を受け付けた場合、前記情報保有装置に前記共有を指示する共有指示手段と、
前記提供承認受付手段が前記提供の承認を受け付けた場合、前記情報保有装置に前記提供を指示する提供指示手段と、
を備える情報取引装置。 - 前記情報保有装置は、前記個人情報を受け入れる受入手段と、前記受入手段が受け入れた前記個人情報の匿名化又は仮名化を行う処理手段と、前記処理手段により匿名化又は仮名化が行われた個人情報を前記情報提供先装置へ送信する送信手段とを備えた情報処理装置と接続され、
前記提供は、前記情報処理装置を介した前記情報提供先装置への前記個人情報の送信によって行われる
請求項1に記載の情報取引装置。 - 前記情報処理装置は、前記処理手段により匿名化又は仮名化が行われた前記個人情報に係る情報を受け取る情報受取手段と、前記情報受取手段が受け取った情報に基づいて統計処理を行い、統計情報を生成する統計処理手段とを備えた情報統計装置と接続される
請求項2に記載の情報取引装置。 - 前記共有に係る個人情報の量及び種別を、前記共有に係る個人情報の量及び種別と対価の額とが関連付けられた情報である共有対価額情報に照らし合わせて、前記共有に係る対価の額である共有対価額を計算する共有対価額計算手段を備える請求項1から請求項3の何れか1項に記載の情報取引装置。
- 前記提供に係る個人情報の量及び種別を、前記提供に係る個人情報の量及び種別と対価の額とが関連付けられた情報である提供対価額情報に照らし合わせて、前記提供に係る対価の額である提供対価額を計算する提供対価額計算手段を備える請求項1から請求項3の何れか1項に記載の情報取引装置。
- 前記情報取引装置は、前記個人情報に関連付けられたユーザが有する端末であるユーザ端末と接続され、
前記ユーザ端末は、前記ユーザ端末を有するユーザから、前記ユーザに関連付けられた前記共有の承認又は前記提供の承認を受け入れる承認受入手段を備え、
前記共有承認受付手段は、前記共有の承認を、前記共有に関連付けられたユーザに関連付けられた前記承認受入手段を介して受け付け、
前記提供承認受付手段は、前記提供の承認を、前記提供に関連付けられたユーザに関連付けられた前記承認受入手段を介して受け付ける
請求項1から請求項3の何れか1項に記載の情報取引装置。 - 前記承認受入手段は、前記ユーザ端末の一のアプリケーションを介して、前記共有の承認及び前記提供の承認を受け入れる
請求項6に記載の情報取引装置。 - 個人情報を記憶する記憶手段を備える情報保有装置と接続される情報取引装置を用いて、情報共有先装置による前記個人情報の共有の承認を、前記個人情報に関連付けられたユーザから、前記情報取引装置が備える共有承認受付手段が受け付け、
情報提供先装置への前記個人情報の提供の承認を、前記個人情報に関連付けられたユーザから、前記情報取引装置が備える提供承認受付手段が受け付け、
前記共有承認受付手段が前記共有の承認を受け付けた場合、前記情報保有装置に、前記共有を指示し、
前記提供承認受付手段が前記提供の承認を受け付けた場合、前記情報保有装置に、前記提供を指示する、
情報取引方法。 - 個人情報を記憶する記憶手段を備える情報保有装置と接続するコンピュータを、
情報共有先装置による前記個人情報の共有の承認を、前記個人情報に関連付けられたユーザから受け付ける共有承認受付手段、
情報提供先装置への前記個人情報の提供の承認を、前記個人情報に関連付けられたユーザから受け付ける提供承認受付手段、
前記共有承認受付手段が前記共有の承認を受け付けた場合、前記情報保有装置に前記共有を指示する共有指示手段、
前記提供承認受付手段が前記提供の承認を受け付けた場合、前記情報保有装置に前記提供を指示する提供指示手段、
として機能させるプログラムを記録した記録媒体。
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2021554253A JP7351347B2 (ja) | 2019-10-31 | 2020-10-07 | 情報取引システム、情報取引方法及びプログラム |
US17/768,551 US20240119173A1 (en) | 2019-10-31 | 2020-10-07 | Information transaction device, information transaction method, and program |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2019-198431 | 2019-10-31 | ||
JP2019198431 | 2019-10-31 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2021085064A1 true WO2021085064A1 (ja) | 2021-05-06 |
Family
ID=75715239
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2020/037989 WO2021085064A1 (ja) | 2019-10-31 | 2020-10-07 | 情報取引装置、情報取引方法及びプログラム |
Country Status (3)
Country | Link |
---|---|
US (1) | US20240119173A1 (ja) |
JP (1) | JP7351347B2 (ja) |
WO (1) | WO2021085064A1 (ja) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2023188136A1 (ja) * | 2022-03-30 | 2023-10-05 | 日本電気株式会社 | システム、流通制御サーバ、流通制御サーバの制御方法及び記憶媒体 |
WO2023243015A1 (ja) * | 2022-06-15 | 2023-12-21 | 日本電気株式会社 | システム及び方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2004192353A (ja) * | 2002-12-11 | 2004-07-08 | Nippon Telegr & Teleph Corp <Ntt> | 個人情報開示制御システム及び個人情報開示制御方法 |
JP2015103111A (ja) * | 2013-11-26 | 2015-06-04 | ヤフー株式会社 | 情報取引装置、情報取引方法及び情報取引プログラム |
JP2016053693A (ja) * | 2014-09-04 | 2016-04-14 | 株式会社東芝 | 匿名化システム |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2010067535A (ja) | 2008-09-12 | 2010-03-25 | Q P Corp | スイッチコンセント |
JP5348143B2 (ja) * | 2008-12-08 | 2013-11-20 | 日本電気株式会社 | 個人情報交換システム、個人情報提供装置、そのデータ処理方法、およびそのコンピュータプログラム |
-
2020
- 2020-10-07 US US17/768,551 patent/US20240119173A1/en active Pending
- 2020-10-07 WO PCT/JP2020/037989 patent/WO2021085064A1/ja active Application Filing
- 2020-10-07 JP JP2021554253A patent/JP7351347B2/ja active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2004192353A (ja) * | 2002-12-11 | 2004-07-08 | Nippon Telegr & Teleph Corp <Ntt> | 個人情報開示制御システム及び個人情報開示制御方法 |
JP2015103111A (ja) * | 2013-11-26 | 2015-06-04 | ヤフー株式会社 | 情報取引装置、情報取引方法及び情報取引プログラム |
JP2016053693A (ja) * | 2014-09-04 | 2016-04-14 | 株式会社東芝 | 匿名化システム |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2023188136A1 (ja) * | 2022-03-30 | 2023-10-05 | 日本電気株式会社 | システム、流通制御サーバ、流通制御サーバの制御方法及び記憶媒体 |
WO2023243015A1 (ja) * | 2022-06-15 | 2023-12-21 | 日本電気株式会社 | システム及び方法 |
Also Published As
Publication number | Publication date |
---|---|
US20240119173A1 (en) | 2024-04-11 |
JP7351347B2 (ja) | 2023-09-27 |
JPWO2021085064A1 (ja) | 2021-05-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11397831B2 (en) | Method and system for double anonymization of data | |
US8355935B2 (en) | Third party information transfer | |
US20220188816A1 (en) | System and method for facilitating payment requests within a health care network | |
US11636537B2 (en) | System and methods of providing point-of-need financing | |
CN110582987B (zh) | 用于在多个实体系统之间交换敏感信息的方法和系统 | |
WO2021085064A1 (ja) | 情報取引装置、情報取引方法及びプログラム | |
US20210042294A1 (en) | Blockchain-based consent management system and method | |
Miller | Big-data in cloud computing: A taxonomy of risks | |
US20160042124A1 (en) | Electronic health records data management systems and methods | |
US11908017B2 (en) | Document creation system and method utilizing optional component documents | |
US11288392B2 (en) | Systems and methods for data protection | |
US20220083978A1 (en) | Misconduct metrics reporting generation and rendering engine apparatuses, methods, systems and media | |
US20200042727A1 (en) | Information provision apparatus and information provision method | |
JP6218783B2 (ja) | 住宅ローン事前審査システム、方法およびプログラム | |
JP6242469B1 (ja) | 個人医療情報管理方法、個人医療情報管理サーバおよびプログラム | |
US20210057060A1 (en) | Systems and methods for using databases, data structures, and data protocols to execute a transaction in a data marketplace | |
WO2021138478A1 (en) | Multi-tenant system for consolidated user services | |
AU2016100003A4 (en) | System and method for performing pre-employment medical assessment | |
US20210304859A1 (en) | Cloud-based medical record management system with patient control | |
Adelakun et al. | Technical factors in telemedicine adoption in extreme resource-poor countries | |
US20220382711A1 (en) | Data analysis system and data analysis method | |
CN114186961A (zh) | 业务审批流程配置方法、装置、计算机设备和存储介质 | |
Adamkó et al. | Review and requirement specification of telemedicine systems interoperability with common data exchange hub | |
KR102562365B1 (ko) | 블록체인 기반 개인 건강 기록 분석 플랫폼 서비스 제공 방법, 장치 및 시스템 | |
US20230169519A1 (en) | Automated consent management systems and methods for using same |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 20880443 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2021554253 Country of ref document: JP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 17768551 Country of ref document: US |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 20880443 Country of ref document: EP Kind code of ref document: A1 |