PROTECTING CUSTOMER PERSONAL INFORMATION IN APPLICATION PIPELINE

Organization Name

Wells Fargo Bank, N.A.

Inventor(s)

Chintan Mehta of San Ramon CA (US)

Michelle Moore of Mooresville NC (US)

Ramakrishna Swarup Pogalur of San Ramon CA (US)

Kunal Jha of Indian Land SC (US)

Kapil Soni of Bangalore (IN)

Venkatesan Chinnaraju of Fremont CA (US)

Upul D. Hanwella of San Francisco CA (US)

Ranganathan Kanchi of San Francisco CA (US)

PROTECTING CUSTOMER PERSONAL INFORMATION IN APPLICATION PIPELINE - A simplified explanation of the abstract

This abstract first appeared for US patent application 18523476 titled 'PROTECTING CUSTOMER PERSONAL INFORMATION IN APPLICATION PIPELINE

Simplified Explanation

The patent application describes techniques for detecting and tokenizing customer personal information within customer communications to make the data suitable for external systems, such as cloud-hosted applications.

• Rule-based and machine learning-based detection methods are used to identify structured and unstructured customer personal information in customer communications.
• A masking service is implemented to tokenize or obfuscate the detected customer personal information, allowing the data to be safely transmitted to external systems without exposing sensitive information.

Potential Applications

The technology described in the patent application could be applied in various industries where customer personal information needs to be protected, such as healthcare, finance, and e-commerce.

Problems Solved

1. Protecting customer personal information from exposure in external systems. 2. Ensuring compliance with data privacy regulations by securely handling sensitive data.

Benefits

1. Enhanced data security and privacy protection for customers. 2. Seamless integration of customer communications with cloud-hosted applications. 3. Simplified data handling processes for organizations dealing with sensitive information.

Potential Commercial Applications

Securing customer data in cloud-based CRM systems Enhancing data protection in online banking platforms Improving privacy measures in e-commerce customer databases

Possible Prior Art

One possible prior art could be the use of encryption techniques to secure customer data in transit or at rest. Another could be the implementation of data masking solutions to protect sensitive information in databases.

Unanswered Questions

How does the masking service handle different types of customer personal information, such as names, addresses, and financial data?

The patent application does not provide specific details on how the masking service distinguishes between different types of customer personal information and applies appropriate tokenization methods.

What measures are in place to prevent unauthorized access to the tokenized customer communications?

The patent application does not elaborate on the security measures implemented to safeguard the tokenized customer communications from unauthorized access or breaches.

Original Abstract Submitted

Techniques are described that include detecting customer personal information within any appropriate set of data, such as customer communications produced by customer-facing services offered by an organization. Once detected, the customer personal information may be tokenized within the customer communications, making the data appropriate for external systems, such as cloud-hosted applications. The disclosed techniques include a masking service that may be plugged into an on-premises pipeline of any customer-facing service that makes requests to an off-premises, cloud-hosted application. The masking service may apply rule-based detection and/or machine learning-based detection to detect both structured and unstructured customer personal information included in customer communications. The masking service may further tokenize or otherwise obfuscate or replace the detected customer personal information. The tokenized customer communications may then be included in the requests to the cloud-hosted application or otherwise transmitted to external systems without exposing the customer personal information.