Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that, among other things, authorize initiated exchanges of data in real-time based on dynamically generated tokenized data. For example, an apparatus may receive first positional data identifying a first geographic position of a client device and based on the first positional data, the apparatus may determine a value of a parameter characterizing an exchange of data between the client device and a terminal device disposed proximate to the client device during a temporal interval. The apparatus may transmit data requesting a pre-authorization of the data exchange to a computing system, which perform operations that pre-authorize the data exchange in accordance with the parameter value and transmit a digital token representative of the pre-authorized data exchange to the terminal device. The digital token may be valid during the temporal interval and may include a cryptogram associated with the client device.

Abstract: An electric vehicle charger includes a power supply and a controller. The power supply is for supplying electric power over a charging connection to an electric vehicle. The charging connection employs charging conductors to supply electric power from the power supply to the electric vehicle for charging. The power supply is adapted to send data to and receive data from the electric vehicle over the charging conductors according to a power-line communications protocol. The controller coupled to the power supply to control supply of electric power to the electric vehicle, The controller is adapted to, prior to initiating supply of electric power by the power supply to the electric vehicle for charging, communicate with the electric vehicle to identify a payment method associated with the electric vehicle and with the payment network to authorize the payment method for payment for electric power supplied to the electric vehicle for charging.

Abstract: A trusted session is to be established between a smart speaker and a computer server. The computer server may receive an instruction to initiate a trusted session with the smart speaker. The instruction includes an indication of an account linking token for linking a first and second account associated with the smart speaker and the computer server, respectively. The computer server generates a session token and sends it to the smart speaker for acoustic signalling. The acoustic signal is captured by a mobile device and used to reconstruct the session token. The computer server receives the reconstructed session token along with identifying information from the mobile device. The computer server system uses the identifying information to confirm that the mobile device is associated with the second accord. Upon so confirming, the computer server may establish a trusted session between the first smart speaker and the computer server system.

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that dynamically manage consent, permissioning, and trust between computing systems that maintain confidential data and unrelated third-party applications. By way of example, an apparatus may obtain interaction data that identifies an interaction between an application program executed at a first computing system and a programmatic interface of a second computing system. Based on the interaction data, the apparatus may generate outcome data characterizing a probability that the requested access to the data element is inconsistent with an access permission granted to the executed application program, and may modify the access permission in accordance with the outcome data. The apparatus may also perform that generate permissioning data indicative of the modified access permission and that store the permissioning data within a locally accessible or cloud-based repository.

Abstract: A method for authenticating a wearable device is disclosed. The method includes: receiving, from a tokenization service provider (TSP), a signal representing a first code derived by the TSP from decrypting a security token previously provisioned in the computing device, wherein the security token was received at a terminal from the computing device and transmitted to the TSP; obtaining, based on the received signal representing the first code, a device identifier of the computing device and an identifier of an account; querying a device database to verify that the computing device is associated with a first status; verifying that the account is enabled for an operation initiated using the computing device; and transmitting an authorization message to the terminal, the authorization message authorizing the operation.

Abstract: A computer system provides a user interface efficient in its use of screen space allowing values to be provided for attributes. The computer system comprises a processor and a display, an input interface, and a memory coupled to the processor. The memory stores instructions that, when executed by the processor, cause the computer system to: display, within a first region of the display, a plurality of icons corresponding to a plurality of attributes; receive, via the input interface, input corresponding to a drag-and-drop operation wherein a particular one of the plurality of icons is dragged to and then dropped at a drop position within a second region of the display; and assign a value to an attribute corresponding to the particular one of the plurality of icons based on a location of the drop position within the second region. Related methods and computer-readable media are also disclosed.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. In response to a determination that an environment of a first voice assistant device is not private, a first secure communication session between the first voice assistant device and an application server is suspended. In response a determination that one or more other voice assistant devices have been authorized for communication with the application server is made and input to transfer the first secure communication session, a second secure communication session between a second voice assistant device and the application server is initiated. The first secure communication session between the first voice assistant device and the application server is terminated in response to successful initiation of the second secure communication session.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. A user is authenticated via one or more first criteria in response to a request to initiate a communication session with a voice assistant. Periodically during the communication session with the voice assistant, sensor data is acquired. The sensor data is processed to determine a number of persons present in an environment of the voice assistant via one or more second criteria. The communication of private data by the voice assistant is enabled when one person is in the environment and that person is the authenticated user. The communication of private data by the voice assistant is disabled when one person is in the environment and that person is not the authenticated user.

Abstract: A method for regulating access to a protected resource is disclosed.

Abstract: The disclosed embodiments include processes that securely approve and execute exchanges of data between systems, apparatuses, and devices in a computing environment. For example, a terminal device may establish communications with a client device across a direct channel of communication, and may initiate an exchange of data with that additional device across the direct communications channel. The initiated data exchange may be characterized by a value of a data-exchange parameter, and the terminal device may determine to authorize the current data exchange in real-time based on cryptographically secure distributed ledger data maintained by the client device and provided to the terminal device across the direct communications channel. Further, and based on transmitted confirmation data, the client device may generate additional, cryptographically secure of the distributed ledger data to reflect the authorized data exchange.

Abstract: The present disclosure involves systems, software, and computer implemented methods for intercepting data exchange requests and automatically imposing a hold period while the data exchange is evaluated for a user profile initiating the request. One example system includes operations to detect a data exchange request prior to completion of the attempted data exchange, the data exchange request including information defining the attempted data exchange and associated wherein the attempted data exchange is associated with a particular user profile. A portion of the information is transmitted to a data exchange analysis system for execution of a user profile-specific data exchange analysis based on the information and a status of the user profile. A hold state is initiated for the data exchange request while the analysis is performed. The results of the analysis are presented and a confirmation to proceed is required before allowing the attempted data exchange to be processed.

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that, among other things, dynamically authorize pre-stages data exchanges based on contextual data. For example, an apparatus may receive first data characterizing an initiation of a first exchange of data between a client device and a terminal device. Based on the first data, the apparatus may obtain second data that characterizes an expected initiation of a second exchange of data during a corresponding temporal interval, which may be specified relative to an initiation time of the first data exchange. The apparatus may generate and transmit, to a computing system, pre-authorization data that requests a pre-authorization of the second data exchange to a computing system. The pre-authorization data may include a portion of the second data and may instruct the computing system to pre-authorize the second data exchange in accordance with the second data.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. Periodically during the communication session with the voice assistant, sensor data is acquired. The sensor data is processed to determine a number of persons present in an environment of the voice assistant. The communication of private data by the voice assistant is enabled when one person is in the environment and that person is the authorized user. The communication of private data by the voice assistant is disabled when one person is in the environment and that person is not the authorized user. When more than one person is present in the environment of the voice assistant, the communication of private data by the voice assistant may be enabled when the environment of the voice assistant is determined to match the one or more predetermined privacy criteria for a multi-person environment.

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that monitor and reconcile indirectly initiated exchanges of data between network-connected devices and computing systems using a permissioned distributed ledger. For example, an apparatus may obtain and transmit first transaction information characterizing a data exchange to a first computing system. The first computing system may submit a portion of the first transaction information to a second computing system through a programmatic interface inaccessible to the apparatus, and the second computing system may execute the data exchange in accordance with at least the portion of the first transaction information.

Abstract: In an aspect, the present application may describe a method. The method may include: receiving, from a remote computing device, a first indication of consent for an authenticated entity to share data with a first third party server, the first indication of consent associated with a first sharing permission defining a first sharing scope; in response to receiving the first indication of consent: configuring a server to share data for the authenticated entity with the first third party server based on the sharing permission; identifying a first safety score, the first safety score associated with the first third party server; and updating a risk score for the authenticated entity based on the first safety score and the first sharing permission; and sending the updated risk score for the authenticated entity to the remote computing device for display thereon.

Abstract: A method for authenticating a wearable device is disclosed. The method includes: receiving, a signal representing an indication that the wearable device is in active use; in response to receiving the signal, updating a device database to associate a first status with the wearable device; receiving, from a tokenization service provider (TSP), a signal representing a first code derived by the TSP from decrypting a security token previously provisioned in the wearable device, wherein the security token was received at a terminal from the wearable device and transmitted to the TSP; obtaining, based on the received first code, a device identifier of the wearable device and an identifier of an account; querying the device database to verify that the wearable device is associated with the first status; verifying that the account is enabled for an operation initiated using the wearable device; and transmitting an authorization message to the terminal, the authorization message authorizing the operation.

Abstract: A data management device, communication system and methods for tagging data in a data table and triggering automated action. A data management device receives from a first data provider one or more records of a data table, each record comprising a plurality of fields. The data table is associated with an account having one or more authorized users. The plurality of fields each has a value set by the first data provider. The data manger determines one or more tags for the one or more records in accordance with a plurality of autotagging rules. The data manger appends the one or more records to include one or more tag fields corresponding to the one or more tags for the one or more records. The appended records are stored in a database. One or more automated actions may be triggered based on one or more tag fields of one or more of the plurality of records.

Abstract: A computer system for selectively enabling a data transfer method is disclosed. The computer system includes a processor, a communications module, and a memory. The memory stores instructions that, when executed by the processor, cause the computer system to: receive a signal from a remote electronic device via a network using the communications module, the received signal representing information including a context for a transfer of value between a database record associated with a data sender and a database record associated with a data receiver, the context including an identifier for the data receiver; obtain a condition to be satisfied in performing the transfer of value based on the identifier for the data receiver; determine that the condition is satisfied by performing the transfer of value using a particular data transfer method; and enable the transfer of value using the particular data transfer method.

Abstract: The disclosed embodiments include processes that securely approve and execute exchanges of data between systems, apparatuses, and devices in a computing environment. For example, a terminal device may establish communications with a client device across a direct channel of communication, and may initiate an exchange of data with that additional device across the direct communications channel. The initiated data exchange may be characterized by a value of a data-exchange parameter, and the terminal device may determine to authorize the current data exchange in real-time based on cryptographically secure distributed ledger data maintained by the client device and provided to the terminal device across the direct communications channel. Further, and based on transmitted confirmation data, the client device may generate additional, cryptographically secure of the distributed ledger data to reflect the authorized data exchange.

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that manage cryptographically secure exchanges of data using a permissioned distributed ledger. For example, an apparatus obtains parameter values characterizing an exchange of data and transmits the parameter values to a first computing system, which executed instructions included within a distributed ledger. The executed additional instructions cause the first computing system to access rules data recorded onto the distributed ledger and establish a consistency between the parameter values and at least a portion of the accessed rules data. The apparatus receives, from the first computing system, confirmation data indicative of the established consistency, and based on the confirmation data, transmit a request to execute the data exchange in accordance with at least the portion of the parameter values to a second computing system.