US 12,443,987 B1
Secure data exchange
Traci Nguyen, San Francisco, CA (US); Lila Fakhraie, Belmont, CA (US); Anthony Burton, Charlotte, NC (US); Alyce F. Thornton, Discovery Bay, CA (US); Ravi Thota, San Francisco, CA (US); and Meghan Butler, Lakeville, MN (US)
Assigned to Wells Fargo Bank, N.A., San Francisco, CA (US)
Filed by Wells Fargo Bank, N.A., San Francisco, CA (US)
Filed on Apr. 29, 2024, as Appl. No. 18/649,336.
Application 18/649,336 is a continuation of application No. 18/048,720, filed on Oct. 21, 2022, granted, now 11,995,712.
Application 18/048,720 is a continuation of application No. 16/905,339, filed on Jun. 18, 2020, granted, now 11,481,838, issued on Oct. 25, 2022.
Application 16/905,339 is a continuation of application No. 15/337,879, filed on Oct. 28, 2016, granted, now 10,692,138, issued on Jun. 23, 2020.
Claims priority of provisional application 62/247,653, filed on Oct. 28, 2015.
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06Q 40/02 (2023.01)
CPC G06Q 40/02 (2013.01) [H04L 63/083 (2013.01); H04L 63/0861 (2013.01)] 20 Claims
OG exemplary drawing
 
17. An apparatus comprising:
a memory configured to store a set of permissions that specifies types of account data of one or more financial accounts to share with a third-party, the one or more financial accounts being associated with a user and held by a financial institution; and
one or more processors configured to:
initiate a secure session that allows the user to provide permissions data that indicates the set of permissions;
receive, from the user, the permissions data;
transmit, in response to receiving the permissions data, authorization data to the third-party;
receive, from the third-party, authentication data, wherein the authentication data authorizes the third-party;
transmit, in response to receiving the authentication data, one or more access tokens to the third-party, wherein the one or more access tokens indicate authorization of the third-party to access the types of account data specified by the set of permissions;
receive, from the third-party, the one or more access tokens and a request for account data of the one or more financial accounts that conforms to the types of account data specified by the set of permissions; and
transmit, to the third-party, the account data that conforms to the types of account data specified by the set of permissions in response to authorizing the third-party.