Privacy Rating is an early stage start-up in the privacy-tech SW domain. We solve the problem of private data management, specifically creating protected, unbiased browsing experience. Our patent pending unique architecture & technology, assembled in SW products suite called qprivacy
The solution enables the user to manage and control the traffic of her/his private data, based on preferences. This set of personal permissions & preferences is called consent policy. The consent policy gathers the global user’s willingness for sharing or blocking private data & information while browsing and with whom. It prevents private data traffic from reaching unconsented destinations
For the client, qprivacy is a utility, which is working in the back-ground with no special device privileges. The system identifies collection of private data and its communication pattern via open networks. This traffic than routed via communication privacy protocol, which is using Data Packet Prediction technology to identify the flow of private data packets and enables enforcement according to the user’s consent policy. It also identifies, biased UX, re-marketing interrupts and any other external A.I. logic application that is done on the device itself. qprivacy handles it by manage communication lines between the user and indirect collecting factors
After a brief registration (email & password), you will receive a download link. The utility Installation is simple & quick, does not require any configuration change nor special client’s privileges. The system features on/off button, safe mode, link to manage consent policy, statistics presentation and real-time view of its actions
Direct collection is the sharing of private data/information with the service provider (your targeted application or website) for the sole purpose of user benefit – thereby allow content exchange and full user experience (UX)
Indirect collection by external factors, is the most popular tool to build user profiling for commercial purposes without direct relations with user experience and content exchange (excluding targeted advertising). qprivacy solution can prevent indirect collection while maintaining full direct interaction, uninterrupted UX and without exposure for any service conditioning that may be presented by the site or application
The solution is unique because it enables real time protected privacy and browsing experience unlike DB based or identity management solutions, which are handling accumulated data off-line. It differ from devise solutions, as it activates dynamic centralized consent management while policy enforcement is decentralized over the web. This architecture allows efficient remote execution while UX and other mission critical applications are fully maintained. This architecture enables full front-end resistance against any cookies, social plug-ins and any possible service/UX conditioning. Other solutions usually reside around database on the hedge (either digital provider or user)
We are using big data technologies within cloud computing architecture.
The Data Packet Prediction (DPP) technology that we developed operates in 2 phases:
In the first phase, it learns in off-line mode by using analytical methodologies, mainly Artificial Intelligence (neural network), the methods of cookies and social collecting tools and its private data content types thereby how to identify its communication pattern over open networks.
In the second phase, using the DPP technology, the Privacy Communication Protocol that we developed, identifies the private data items/traffic and enable enforcement of the user’s consent policy.
Both, the client side and Privacy Communication Protocol architecture complies with ISO/IEC 27018:2014, use asymmetric encryption technology (TLS 1.2-128 bit), routing techniques and sophisticated synchronization tools
We expect the patent pending, Privacy Communication Protocol to become global standard for privacy management over open networks. Our integrated solution can handle consent management for individuals as well as for IoT based user entities such as connected/autonomous vehicles (cars, plains, ships etc.) smart cities, smart homes and any other hub/set of IOT devices that generates private data
The solution meets “Privacy by Design” standards, thereby nobody can read/archive the content items flow, also the traffic is fully secured, by using TLS 1.2 asymmetric encryption technology. The solution was designed based on “white-list”, i.e. if certain private data’s traffic is not defined, it will be blocked
The execution of the solution is remote, performed on the web, thus impact on UX and mission critical application is null, it also should not be subject to any possible service conditioning by the digital service provider
The solution allows dynamic centralized consent management, i.e. at any time and in one place, the user can define and modify the consent policy according to her / his preferences and this would apply globally for all internet interactions while using all devices grouped under that same user
qprivacy is a global decentralized solution over the net and as such can’t modify or control previously collected private data which usually resides in the provider’s local database. The underline assumption is that regulators and regulations, e.g. G.D.P.R. in Europe, and the applicable technologies to support it (e.g. identity management) will reconcile already collected private data in existing digital provider’s repositories. On the other hand, qprivacy prevents accumulation of unconsented new private data and information, according to the user’s consent policy
Not at all. While using the system, user and service provider maintain full direct http/s handshake. Thus, the user can benefit full UX and content exchange from the service provider (e.g. navigation applications like Waze) and on the other hand can deter and prevent any possible Man In The Middle attack (MITM)