Method and system for sharing or storing personal data without loss of privacy

摘要

The present invention relates to a method and system for preserving a user's privacy and control on the documents while sharing or storing said documents. The invention follows the principle of "privacy-by-design" by defining a separation of duties such that the user can distribute his confidentiality of Personal Identifiable Information and the data to be protecting over several service providers instead of focusing this information on a single service provider. For that the personal information to be protected is divided and stored in at least three services providers:
- Data storage provider which stores encrypted documents but it does not know the secret keys,
- Trusted Service provider which stores or computes the secret keys but it should not have access to the encrypted documents, and
- Authorization manager which should have a description of documents linked to an authorization policy. It should not have access to the secret keys.