摘要 |
A method for managing a repository of authenticated personal data, the method comprising the steps of
creating for a first user an account in the repository, to produce a first user account;
storing personal data of the first user in the first user account;
allowing the first user to configure the first user account to store therein details of one or more entities with whom the first user is willing to share their personal data; and specify which one or more elements of the personal data stored in the first user account, the first user is willing to share with the or each of the entities;
receiving a request from a second user for access to one or more elements of personal data of a third user;
determining whether the third user has an account in the repository;
in the event the third user has an account with the repository, determining whether the second user is an entity whose details are stored in the third user's account;
in the event the second user is an entity whose details are stored in the third user's account, determining whether the or each element of personal data to which the second user has requested access are stored in the account of the third user, and are specified in the third user's account as personal data that the third user is willing to share with the second user;
in the event the or each element of personal data to which the second user has requested access are stored in the account of the third user, and are specified in the third user's account as personal data that the third user is willing to share with the second user, transmitting details of the or each element of the requested personal data to the second user
characterised in that
the step of creating an account for the first client comprises the steps of:
receiving one or more items of identity evidence from the first client;
extracting one or more features from the or each item of received identity evidence;
validating the authenticity of the or each items of received identity evidence by comparing the or each extracted feature from the or each given item of received identity evidence with related one or more items of feature information acquired from an issuing source for the or each relevant item of identity evidence; and
verifying that the first client is the genuine owner of the identity being claimed by way of the received identity evidence; and
the step of storing personal data of the first user in the first user account comprises the step of storing the extracted features from the or each item of received identity evidence whose authenticity has been validated. |