| CPC G06Q 30/0222 (2013.01) [G06Q 30/0201 (2013.01)] | 18 Claims |
|
1. A computer-implemented method, comprising:
determining, by one or more computing devices associated with an acquirer processor, that a transaction data capture consent request will be presented to an account holder associated with a payment vehicle account, wherein the account holder is initiating a payment transaction at a point of sale device that is associated with a merchant;
providing, by the one or more computing devices associated with the acquirer processor, the transaction data capture consent request for display to the account holder associated with the payment vehicle account, wherein the transaction data capture consent request comprises a plurality of incentives associated with the merchant and a plurality of scopes of consent presented as an incentive-consent matrix;
receiving, by the one or more computing devices associated with the acquirer processor, transaction data corresponding to the payment transaction, an indication of consent from the account holder associated with the payment vehicle account, a selection of a defined consent time period from the account holder after which the consent is revoked, and a selection of a defined data scope from the account holder which identifies an amount of the received transaction data that may be stored, and an entity, or type of entities, that may have access to the transaction data;
responsive to the indication of consent, and by the one or more computing devices associated with the acquirer processor:
altering the received transaction data by applying at least one of the plurality of incentives to the payment transaction based on a scope corresponding to the defined consent time period and the defined data scope;
storing, in a transaction data database communicably coupled to one or more computing device, the altered transaction data based on the defined data scope; and
time stamping the altered transaction data, based on the defined consent time period;
outputting, by the one or more computing devices of the acquirer processor to the point of sale device over an electronic network, a transaction authorization response generated based on the altered transaction data;
receiving, by the one or more computing devices of the acquirer processor via a server-implemented portal, an analytical data request from a recipient, the analytical data request comprising an application programming interface (API) key;
determining, by the one or more computing devices of the acquirer processor, an identity of the recipient based on the API key;
determining, by the one or more computing devices of the acquirer processor, whether the recipient is permitted to access the altered transaction data based on the identity;
upon determining that the recipient is permitted to access the altered transaction data, providing, by the one or more computing devices associated with the acquirer processor, the altered transaction data to the recipient; and
purging or restricting access of the entity or the type of entities to, by the one or more computing devices of the acquirer processor, the stored altered transaction data at an expiration date based on a temporal duration of the defined consent time period that the account holder agreed to while interacting with the point of sale device.
|