System and method for creating and assigning a policy for a mobile communications device based on personal data

摘要

A system and method to create and assign a policy for a mobile communications device are disclosed. The policy may be created based on personal data associated with the mobile communications device. For example, known sources of personal data on the mobile communications device may be identified and a policy may be created based on the known personal data. The policy may then be used to identify additional personal data associated with the mobile communications device. Thus, the personal data associated with the mobile communications device may be monitored. If an application attempts to access the monitored personal data, the access will be detected.

主权项

1. A method comprising:
identifying, by a policy management module on a mobile communications device, one or more locations for storing personal data on the mobile communications device; identifying, by the policy management module, a first set of personal data stored at the one or more locations on the mobile communications device; generating, by the policy management module, a policy for the mobile communications device based on an analysis by the policy management module of the first set of personal data, the generated policy for identifying a second set of personal data stored on the mobile communications device and for controlling access to the second set of personal data; identifying, by the policy management module, the second set of personal data stored on the mobile communications device based on the generated policy, the second set of personal data being different from the first set of personal data; monitoring, by the policy management module, the second set of personal data stored on the mobile communications device based on the generated policy; and detecting, by the policy management module, a request for access to the monitored second set of personal data by an application executed on the mobile communications device.