US 12,468,832 B2
Data access control system accessible from third-party web
Rajan Gupta, Milton, GA (US); Justin Whitehead, Atlanta, GA (US); and Josh Hanson, Cumming, GA (US)
Assigned to EQUIFAX INC., Atlanta, GA (US)
Filed by EQUIFAX INC., Atlanta, GA (US)
Filed on Apr. 21, 2023, as Appl. No. 18/304,344.
Application 18/304,344 is a continuation of application No. 16/253,545, filed on Jan. 22, 2019, granted, now 11,651,095.
Claims priority of provisional application 62/620,635, filed on Jan. 23, 2018.
Prior Publication US 2023/0259648 A1, Aug. 17, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/62 (2013.01); H04L 9/40 (2022.01); H04L 12/66 (2006.01); H04L 67/53 (2022.01)
CPC G06F 21/6218 (2013.01) [H04L 12/66 (2013.01); H04L 63/0281 (2013.01); H04L 63/029 (2013.01); H04L 63/083 (2013.01); H04L 63/0853 (2013.01); H04L 63/102 (2013.01); H04L 67/53 (2022.05)] 17 Claims
OG exemplary drawing
 
1. A gateway server device comprising:
a processor; and
a non-transitory computer-readable storage device comprising instructions that, when executed by the processor, cause the processor to:
output, via a network communications port, a website comprising a pop-up user interface that is displayable simultaneously as an overlay with at least part of a third-party website hosted by a third-party web server associated with a third party and displayed based on the third-party web server receiving an application request to request the third party to make a decision on an application, wherein the decision causes a transaction to be completed at the third-party website;
receive, via the network communications port and the website, log-in credentials, consent to unlock or unfreeze data about a user, and consent to share the data about the user with the third-party web server, wherein the data about the user is stored in a network-attached system controlled by the gateway server device;
output, via the network communications port, a command to unlock or unfreeze the data about the user, wherein the command to unlock or unfreeze the data about the user comprises an approval token, wherein the approval token is unique to the user, configurable to interface with multiple data sources, and useable by the third-party web server to request unlocking or unfreezing and sharing the data about the user;
obtain the decision on the application based on the unlocked or unfrozen data about the user, wherein the decision includes a timestamp indicating when the decision was obtained;
output, via the network communications port, a command to lock or freeze the data about the user in response to the third-party web server accessing the data about the user, wherein the third-party web server accesses the data about the user without the data about the user being provided to the gateway server device;
receive, via the network communications port, a dispute within a pre-set time window from the timestamp; and
output, via the network communications port, an indication to investigate the transaction.