Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that manage cryptographically secure exchanges of data using a permissioned distributed ledger. For example, an apparatus may obtain parameter data and additional content associated with a data exchange. The apparatus may generate first data that includes at least a portion of the additional content accessible to a first computing system, and may generate second data that includes at least a portion of the parameter data. The apparatus may provide the first data to a peer computing system, which records encrypted information associated with the first data within an element of a distributed ledger accessible at the first computing system. The apparatus may also provide the second data to a second computing system, which executes the data exchange in accordance with at least the portion of the parameter data.

Abstract: The present disclosure involves systems, software, and computer implemented methods for intercepting data exchange requests and automatically imposing a hold period while the data exchange is evaluated for a user profile initiating the request. One example system includes operations to detect a data exchange request prior to completion of the attempted data exchange, the data exchange request including information defining the attempted data exchange and associated wherein the attempted data exchange is associated with a particular user profile. A portion of the information is transmitted to a data exchange analysis system for execution of a user profile-specific data exchange analysis based on the information and a status of the user profile. A hold state is initiated for the data exchange request while the analysis is performed. The results of the analysis are presented and a confirmation to proceed is required before allowing the attempted data exchange to be processed.

Abstract: A computer server includes a processor that is configured to receive an incoming authorization request that includes an original numeric value and an identification number, and locate a profile that is associated with the identification number. The located profile includes at least one adjustment criterion. The processor is configured to determine a primary numeric value and a secondary numeric value from the original numeric value and the adjustment criterion, confirm that the secondary numeric value is not greater than a balance value in a loyalty points account associated with the identification number, and reduce the balance value in the loyalty points account by the secondary numeric value. The processor is configured to, after confirming the secondary numeric value, generate a revised authorization request and transmit the revised authorization request to an authorization server. The revised authorization request includes the identification number and the primary numeric value.

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that, among other things, dynamically authorize pre-stages data exchanges based on contextual data. For example, an apparatus may receive first data characterizing an initiation of a first exchange of data between a client device and a terminal device. Based on the first data, the apparatus may obtain second data that characterizes an expected initiation of a second exchange of data during a corresponding temporal interval, which may be specified relative to an initiation time of the first data exchange. The apparatus may generate and transmit, to a computing system, pre-authorization data that requests a pre-authorization of the second data exchange to a computing system. The pre-authorization data may include a portion of the second data and may instruct the computing system to pre-authorize the second data exchange in accordance with the second data.

Abstract: A data management device, communication system and methods for tagging data in a data table and triggering automated action. A data management device receives from a first data provider one or more records of a data table, each record comprising a plurality of fields. The data table is associated with an account having one or more authorized users. The plurality of fields each has a value set by the first data provider. The data manger determines one or more tags for the one or more records in accordance with a plurality of autotagging rules. The autotagging rules include heuristic rules learned from user behavior and based on one or more of the plurality of fields of the record. The data manger appends the one or more records to include one or more tag fields corresponding to the one or more tags for the one or more records. The appended records are stored in a database. One or more automated actions may be triggered based on one or more tag fields of one or more of the plurality of records.

Abstract: A computer system for selectively enabling a data transfer method is disclosed. The computer system includes a processor, a communications module, and a memory. The memory stores instructions that, when executed by the processor, cause the computer system to: receive a signal from a remote electronic device via a network using the communications module, the received signal representing information including a context for a transfer of value between a database record associated with a data sender and a database record associated with a data receiver, the context including an identifier for the data receiver; obtain a condition to be satisfied in performing the transfer of value based on the identifier for the data receiver; determine that the condition is satisfied by performing the transfer of value using a particular data transfer method; and enable the transfer of value using the particular data transfer method.

Abstract: A computer server includes a transaction processor that is configured to receive from a POS terminal an incoming authorization request that includes an original numeric value, a token cryptogram and an identification number identifying an identity token; confirm that the token cryptogram was generated from the original numeric value and a cryptographic key associated with the token; determine primary and secondary numeric values from the original numeric value and a user profile associated with the identification number; confirm that the secondary numeric value is not greater than the balance in a loyalty points account associated with the identification number; transmit to an authorization server a revised authorization request that includes the identification number and the primary numeric value; and receive from the authorization server a confirmation message confirming that the primary numeric value is not greater than the balance in a payment account associated with the identification number.

Abstract: Systems and methods are provided that use a trained process to reply to a request comprising query data defining a query and context data defining contextual factors for the query from a device. The query is answered by one or more selected APIs of a plurality of APIs that invoke respective services to prepare a response. The trained process determines an execution plan responsive to the query data and the context data and is configured using training to define execution plans comprising selected APIs where a particular API is selected for the plan if it answers at least a portion of the query and the selected APIs together prepare the response optimized for the device according to the context data. The plan is provided to an execution component to execute the plan using the selected APIs and send the response to the requesting device.

Abstract: The present disclosure involves systems, software, and computer implemented methods for a remittance system that pre-populates remittance data based on historical usage of remittance transactions. One example system includes operations to generate, using a predictive model, data indicating a predicted likelihood of a user selecting at least one data exchange transaction, wherein the data indicates the predicted likelihood of the user performing the at least one data exchange transaction. A request is received to access a remittance page. In response, the at least one data exchange transaction that was previously generated is selected from a repository of predicted likelihoods. Remittance data associated with a UI element is generated that includes the at least one data exchange transaction. The remittance data is transmitted to the device. An indication from the device is received for interacting with the UI element. The data exchange transaction is executed in response to receiving the indication.

Abstract: There is provided a system and method to direct processing of orders to improve processing resource usage. QOS statistics relative to wait times and/or processing times or other measures of busyness may be maintained relative to physical office or branch locations where customers attend to have orders processed. QOS measures may be defined relative to these statistical measures of busyness that predict future busyness at respective locations. The QOS measures may be provided to a customer, such as in association with an order ahead application, to recommend to the customer to attend at a location that is less busy thereby distributing processing requests (orders) to less busy locations and better utilize resources.

Abstract: A token management server includes a memory and a data processor. The memory stores a token database and a subledger database. The processor is configured to save a token in the token database in a record in association with a ledger identifier and a subledger identifier. The processor receives from a point-of-sale station a token authorization request that includes the token and an authorization value, locates in the token database the record that includes the token, extracts the ledger identifier and the subledger identifier from the record, locates in the subledger database a subledger that is associated with the subledger identifier, and confirms that a balance value associated with the located subledger is at least equal to the authorization value. The processor then initiates a transfer from a pooling ledger that is associated with the ledger identifier of a transfer amount that is equal to the authorization value.

Abstract: A server includes a processor that receives, from a first device, initiation message(s) each including a service identifier and a service value and, for each initiation message, saves in a database a record comprising the service identifier in association with the service value. The processor receives, from a second device, authorization message(s) each including one of the service identifiers and an authorization value, and for each authorization message, validates one of the initiation messages by (i) locating in the database the record comprising the one service identifier, and (ii) confirming that the service value in the located database record matches the authorization value. The processor updates a journal with an entry identifying a transfer between a first ledger and a second ledger in an amount equal to a sum of the service values of the validated initiation messages, and provides the first device with a message confirming the transfer.

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that, among other things, dynamically provision and initiate exchanges of data between network-connected devices and systems based on aggregated contextual information. For example, a network-connected apparatus may obtain (i) first data identifying first exchanges of data initiated during a first temporal interval, (ii) second data identifying a current parameter value of the first data exchanges, and (iii) third data identifying a status of an account involved in the first data exchanges. Based on the first, second, and third data, the apparatus may compute a value indicative of a probability of an initiation of a second data exchange involving the account during a second temporal interval. Further, when the computed value is consistent with an alert criterion, the apparatus may transmit alert data characterizing the second data exchange to a device for display within an interface.

Abstract: The present disclosure involves systems, software, and computer implemented methods for personalizing interactions within a conversational interface based on an input context. One example system performs operations including receiving a conversational input received via a conversational interface. The conversational input is analyzed to determine an intent and lexical personality score based on the input's characteristics. A set of responsive content is determined and includes a set of initial tokens representing an initial response. A set of synonym tokens associated with at least some of the initial tokens are identified, and at least one synonym token associated with a similar lexical personality score to the input is determined. At least one of the initial tokens are replaced with the determined synonym token to generate a modified version of the set of response content. The modified version of the response is then transmitted to a device in response to the input.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. A user is authenticated via one or more first criteria in response to a request to initiate a communication session with a voice assistant. Periodically during the communication session with the voice assistant, sensor data is acquired. The sensor data is processed to determine a number of persons present in an environment of the voice assistant via one or more second criteria. The communication of private data by the voice assistant is enabled when one person is in the environment and that person is the authenticated user. The communication of private data by the voice assistant is disabled when one person is in the environment and that person is not the authenticated user.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. In response to a determination that an environment of a first voice assistant device is not private, a first secure communication session between the first voice assistant device and an application server is suspended. In response a determination that one or more other voice assistant devices have been authorized for communication with the application server is made and input to transfer the first secure communication session, a second secure communication session between a second voice assistant device and the application server is initiated. The first secure communication session between the first voice assistant device and the application server is terminated in response to successful initiation of the second secure communication session.

Abstract: A method for regulating access to a protected resource is disclosed.

Abstract: A method for regulating access to a protected resource is disclosed. The method includes: receiving, via the communication interface from a client application executing on a first device, a first signal including a request to obtain an access token for accessing a protected resource, the request including: a client identifier uniquely identifying the client application; an authorization code for authorizing the client application's access of the protected resource; and a public key associated with the end user; and in response to validating the request: encrypting the authorization code using the public key to generate a first code; and transmitting, via the communication interface to the client application on the first device, a second signal including both an access token for accessing the protected resource and the first code.

Abstract: An electronic device is disclosed. The electronic device includes a memory, a camera module, a communications module, and a processor that is configured to: receive first credentials identifying a user; transmit, via the communications module to an authentication server, a first signal including a request to verify that the first credentials are authorized for accessing a protected resource; when the first credentials are authorized for accessing the protected resource, receive, via the communications module from the authentication server, a second signal including an access token for use in authenticating the user on requests to access the protected resource; receive, from the camera module, image data associated with a machine-readable optical label, the optical label encoding transaction details of a first transaction; and generate a request based on the transaction details to access the protected resource for initiating the first transaction, the request including the access token.

Abstract: A computer system and method for managing a data request interface. The system includes a memory associated with the data request interface and coupled to a processor. The memory includes processor-executable instructions of the method for managing the data request interface. The method includes: receiving, from a first client device, a first signal including a primary authorization credential associated with a data record and a second signal including a request to generate an alternate authorization credential for use by a software module. The alternate authorization credential is associated with data retrieval constraints. The method includes generating the alternate authorization credential and configuring the data request interface to impose the data retrieval constraints for constraining data operations on the data record upon receipt of the alternate authorization credential.