| CPC G06F 21/6254 (2013.01) [G06F 21/602 (2013.01)] | 15 Claims |
|
1. A data aggregator and anonymizer for selective encryption of test data, the data aggregator and anonymizer comprising:
a processor; and
a memory storing instructions that, when executed by the processor, configure the data aggregator and anonymizer to perform operations including:
receiving first order data from a first data source, the first order data including a mix of sensitive and non-sensitive information, the sensitive information including one or more of Personally Identifiable Information (PII), Protected Health Information (PHI) and Payment Card Industry (PCI) information;
receiving second order data from a second data source, the second order data including a different mix of sensitive and non-sensitive information, the sensitive information including one or more of PII, PHI, and PCI information;
wherein the first and second data sources are first and second tenants each comprising multiple users in a multitenant network, and wherein the data aggregator and anonymizer resides at a subscription service to which the first and second tenants subscribe;
combining and storing the first and second order data into an aggregated data structure, the aggregated data structure including layers in which stored data resides;
identifying the sensitive information in the first and second order data;
encrypting identified sensitive information stored in at least one layer of the aggregated data structure to create an anonymous body of test data;
storing the anonymous body of test data in a database; and
providing access to the anonymous body of test data to the first or second tenant, wherein providing access to the first or second tenant includes providing a decryption key to unlock a portion of the aggregated test data sourced from the first or second tenant supplying that portion, the decryption key disallowing decryption of any other portion of the aggregated test data.
|