Abstract: There are provided systems and methods for a data access notification alert mechanism that monitors for any data access request at a user database of the service provider and sends an electronic notification message to the user when such data access request is detected. Specifically, the data access notification alert mechanism may be implemented with a server, which in turn provides an application programming interface (API) to be integrated with the service provider server, and the API may be called by the service provider database to send a message to the user when a database query to the user information is received at the database.

Abstract: There are provided systems and methods for a user-controlled session manager to provide remote disabling of session tokens. An online service provider, such as a user-controlled session manager, may provide service to manage sessions between user's devices and other online service provider platforms, such as login and use sessions that exchange messages and data. The session manager may receive hashed values of session IDs from the service providers hosting the sessions, which may be used to securely identify the sessions without compromising the session IDs to malicious parties. The session manager may provide a functionality to allow the user to view session statuses, as well as change their statuses to indicate that the sessions can be terminated. The session manager may update the status so that when the service provider pings the session manager for the status, the session's status is updated to be inactive.

Abstract: There are provided systems and methods for a data access notification alert mechanism that monitors for any data access request at a user database of the service provider and sends an electronic notification message to the user when such data access request is detected. Specifically, the data access notification alert mechanism may be implemented with a server, which in turn provides an application programming interface (API) to be integrated with the service provider server, and the API may be called by the service provider database to send a message to the user when a database query to the user information is received at the database.

Abstract: There are provided systems and methods for a user-controlled session manager to provide remote disabling of session tokens. An online service provider, such as a user-controlled session manager, may provide service to manage sessions between user's devices and other online service provider platforms, such as login and use sessions that exchange messages and data. The session manager may receive hashed values of session IDs from the service providers hosting the sessions, which may be used to securely identify the sessions without compromising the session IDs to malicious parties. The session manager may provide a functionality to allow the user to view session statuses, as well as change their statuses to indicate that the sessions can be terminated. The session manager may update the status so that when the service provider pings the session manager for the status, the session's status is updated to be inactive.

Abstract: There are provided systems and methods for a card storage handler for tracking of card data storage across service provider platforms. A transaction processor may provide a card storage handler that allows for tracking of data storage across different online platforms utilizing a public key of an asymmetric key pair. A user may utilize a device to generate and store the asymmetric key pair. The device may provide the transaction processor with the public key, and a card storage handler may be generated that tracks card data storage on the different online platforms. When the user enters their card data and public key to a service provider, the service provider may issue an API call using that data to the transaction processor. The transaction processor may generate a record of the storage and may allow for encrypted record retrieval by the device using the key pair.

Abstract: There are provided systems and methods for a user-controlled session manager to provide remote disabling of session tokens. An online service provider, such as a user-controlled session manager, may provide service to manage sessions between user's devices and other online service provider platforms, such as login and use sessions that exchange messages and data. The session manager may receive hashed values of session IDs from the service providers hosting the sessions, which may be used to securely identify the sessions without compromising the session IDs to malicious parties. The session manager may provide a functionality to allow the user to view session statuses, as well as change their statuses to indicate that the sessions can be terminated. The session manager may update the status so that when the service provider pings the session manager for the status, the session's status is updated to be inactive.

Abstract: Systems and methods for anti-phishing include determining that a user interface corresponding to a current web address has authentication input fields. A current hash value is generated based on a subset of a plurality of input characters that have been input into an authentication input field. The current hash value is compared to mapped hash values. If the current hash value matches one or more of the mapped hash values, a web address mapped to the matched, mapped hash value is identified. The mapped web address is compared to the current web address to determine whether they match. An alert is displayed in response to determining whether there is a match between the current web address and the mapped web address.

Abstract: Systems and methods for anti-phishing include determining that a user interface corresponding to a current web address has authentication input fields. A current hash value is generated based on a subset of a plurality of input characters that have been input into an authentication input field. The current hash value is compared to mapped hash values. If the current hash value matches one or more of the mapped hash values, a web address mapped to the matched, mapped hash value is identified. The mapped web address is compared to the current web address to determine whether they match. An alert is displayed in response to determining whether there is a match between the current web address and the mapped web address.

Abstract: There are provided systems and methods for a card storage handler for tracking of card data storage across service provider platforms. A transaction processor may provide a card storage handler that allows for tracking of data storage across different online platforms utilizing a public key of an asymmetric key pair. A user may utilize a device to generate and store the asymmetric key pair. The device may provide the transaction processor with the public key, and a card storage handler may be generated that tracks card data storage on the different online platforms. When the user enters their card data and public key to a service provider, the service provider may issue an API call using that data to the transaction processor. The transaction processor may generate a record of the storage and may allow for encrypted record retrieval by the device using the key pair.

Abstract: Systems and methods are provided for accessing a user account by a user with a first password, and then changing the first password to a second password in response to a request from the user without compromising the second password. The system may include a database in a server storing the first password and the second password. The server may provide the user access to the user account over a network connection in response to receiving the first password from the user. In response to the server receiving a request by the user, the server may disable the first password and activate the second password without requiring the user to provide the second password over the network connection at the time of the request.

Abstract: Systems and methods are provided for accessing a user account by a user with a first password, and then changing the first password to a second password in response to a request from the user without compromising the second password. The system may include a database in a server storing the first password and the second password. The server may provide the user access to the user account over a network connection in response to receiving the first password from the user. In response to the server receiving a request by the user, the server may disable the first password and activate the second password without requiring the user to provide the second password over the network connection at the time of the request.

Abstract: Systems and methods are disclosed for giving gifts in the form of secure tokens. A gift can be given from a user of a payment provider to a gift recipient. The recipient can be a member of the user's family, a friend, or any other person or entity. The recipient can use the token to purchase a product using a checkout though the payment provider. The purchase can be made without requiring the user to create the user's own payment provider account.