| CPC G06F 21/6245 (2013.01) [G06F 21/62 (2013.01); H04L 63/20 (2013.01); G06F 16/00 (2019.01); G06F 16/2358 (2019.01); G06F 16/24573 (2019.01); G06F 21/60 (2013.01)] | 20 Claims |
|
1. A system, comprising:
a non-transitory memory; and
one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising:
in response to receiving a data access request from a first entity server configured to provide a service to a first user, accessing a first set of data associated with the first user, wherein the first set of data corresponds to a set of personal user data types;
analyzing a utilization of a second set of data associated with a second user by the first entity server for providing the service to the second user;
determining, based on the analyzing the utilization of the second set of data by the first entity server, that a first subset of the set of personal user data types corresponding to the second set of data is required by the first entity server to provide the service to the second user;
in response to determining that the first subset of the set of personal user data types is required by the first entity server to provide the service, generating a data access policy for the first entity server, wherein the data access policy allows the first entity server to access a first subset of the first set of data corresponding to the first subset of the set of personal user data types; and
transmitting, to the first entity server, a response to the data access request based on the data access policy.
|