CPC G06Q 30/0269 (2013.01) [G06F 21/6263 (2013.01); G06Q 30/0204 (2013.01); G06Q 30/0275 (2013.01); H04L 67/146 (2013.01); H04L 67/306 (2013.01); H04L 67/56 (2022.05); G06Q 2220/00 (2013.01); H04L 9/3213 (2013.01); H04L 67/1097 (2013.01); H04L 2101/37 (2022.05)] | 20 Claims |
1. A computing system for a content delivery network enabling identity escrow and preventing user-based data leakage and cookie-mapping, the computing system comprising:
a computer readable storage medium having program instructions embodied therewith; and
one or more processors configured to execute the program instructions to cause the computer system to perform the processes of:
initiating delivery of content to a computing system of a user in response to a request for the content by the computing system of the user;
storing a first deterministic identifier associated with the user;
storing user-specific preference information associated with the user based on the first deterministic identifier associated with the user;
receiving, from a publisher, a second deterministic identifier, wherein the publisher does not have access to the first deterministic identifier or the user-specific preference information;
determining if the second deterministic identifier is associated with the user associated with the first deterministic identifier;
retrieving the stored user-specific preference information associated with the user based on a determination that the second deterministic identifier and the first deterministic identifier are both associated with the user;
generating an encrypted token based on the retrieved user-specific preference information associated with the user, wherein the generated encrypted token does not comprise any personally identifiable information for the user;
determining a level of permission associated with one or more of a plurality of demand side platforms to possess a subset of the personally identifiable information for the user, wherein the subset of the personally identifiable information comprises data owned by the one or more of the plurality of demand side platforms or data enabled to be shared to one or more demand side platforms;
if at least one of the plurality of demand side platforms is determined to be associated with a level of permission to possess the subset of the personally identifiable information:
retrieving the subset of the personally identifiable information for the user based at least in part on the determined level of permission associated with the at least one of the plurality of demand side platforms;
encrypting the subset of the personally identifiable information for the user; and
adding the encrypted subset of the personally identifiable information to the encrypted token;
transmitting the encrypted token to the publisher for submission alongside a bid request to a demand-side platform for real-time bidding,
wherein the encrypted subset of the personally identifiable information of the encrypted token is configured to be inaccessible to any of the plurality of demand side platforms which has not be been determined to possess or be authorized to possess the subset of the personally identifiable information; and
delivering to the computing system of the user the content and an ad impression.
|