| CPC G06F 21/6218 (2013.01) | 20 Claims |
|
1. A data management system, comprising:
a first processor communicatively coupled to a first storage device operating in a first jurisdiction, wherein the first processor executes application code instructions that are stored in the first storage device to:
transmit data from the first processor in the first jurisdiction to a second processor that is operating in a second jurisdiction, the data comprising data fields with at least one data field classified as a sensitive data field having sensitive data, the sensitive data field being tokenized by the first processor according to a first tokenization protocol before transfer;
transmit detokenization controls to the second processor, the detokenization controls comprising conditions under which the second processor may detokenize tokenized data;
cause storage of the tokenized data on a second storage device in the second jurisdiction, wherein the second storage device is associated with the second processor, and wherein the second processor is unable to access data without satisfying the conditions;
receive a request to revoke access to the sensitive data field accessible in the second jurisdiction;
responsive to the request to revoke access to the sensitive data field accessible in the second jurisdiction, causing retokenization of the data at the first processor according to a second tokenization protocol, wherein the retokenization generates retokenized data and renders the retokenized data inaccessible to the second processor; and
propagate the retokenized data to the second storage device in the second jurisdiction.
|