IP3 2024 – Mobile Application & Services (Lot 15395)

This lot is generally related to the risk identification of personal information from a service provider that provides service software as a service. Techniques are disclosed to identify the risk of leakage of personal information from a third party or a service provider side to satisfy general data protection regulation (GDPR). The system receives personal information by receiving a specification related to data usage among services and applications of a third party from a device of the third party. The system stores the received specification in the data storage of the service/platform provider side and receives user consent information from the user side using the service. Also disclosed are techniques to inspect and monitor data storage and processes in the user environment or platform environment of the user side using the service and application. The technology may be implemented in mobile apps, web applications, user authentication systems, etc.