Dataswift One: The Data Account Management System
Dataswift One is an Infrastructure Platform of Decentralized Data Servers and a Data Account Management System. The platform consist of a technology and policy stack that enable individuals and organisations to have the ability to store, control, process, and share their data through personal or organisation data accounts.
Supporting the functions to serve the individual customer/user is a set of progressive layers of abstraction: a Data Account-specific API; the transaction and payments layer; the data storage layer (the Data Account, itself); and the foundational terms of service and service level agreements.
Serving the needs of clients is a similar set of capabilities: an enterprise-facing API to provide access to subsequent layers that mirror traditional data architectures; a versatile collection of data manipulation tools that are called by the APIs; a data access layer to unify interaction with distributed PDAs; and the foundational terms of service and service level agreements.
In the center are a collection of capabilities that orchestrate, operate, and unify Individual and Enterprise data exchange – and, ultimately, data conduct. This includes a rating engine to govern the behavior of applications running on the exchange, as well as market-making and contract generation and settlement.
Provisioning Data Accounts to data subjects in real-time and on-demand from within an organisation’s application.
- Individuals explicitly agree to a first party read/write contract from any organisation that has been set up beforehand to be auto-generated on-demand within the organisation’s application.
- All first party contracts follow a standardised format, with a universal design and interface across all applications regardless of organisation. Applications are rated based on their data conduct, and individuals can see the rating before confirming the contract.
- Individuals must first confirm the contract if the organisation wishes to store their data in a namespace/folder within the individual’s PDA.
- PDAs are legally owned by individuals who are able to see the data of all applications they interact with from their PDA Dashboard.
- The PDA Dashboard is the central point of interaction and control for individuals in relation to their data, enabling access controls, processing and manipulation.
- Individuals can bring in more of their own data into PDAs through plugins
- Individuals can enable new tools to create insights from their data that can be shareable
Having direct data exchanges with individuals.
- These are the means by which organisations give and get data to/from customers directly.
- Data access occurs only in the context, duration, and purpose specified on the Personal API, enabling continuing relational engagement instead of transactional engagement.
- Flexible APIs allow organisations to create data combinations and bundles according to use cases.
- Tools installed in the PDA create insights from data that are shareable through APIs.
- Policies that enable optimal data orchestration where sensitive data can be stored by customers in their PDAs while other data can be used for analytics.
- Additional contracts for_ Third party write_ (eg to bring health data into PDA) and _Third party read _(to be able to access that health data) are available to be set up for PDAs between individuals and organisations.
- Contract maintenance and updates, together with clear details of the data attributes shared, the duration and purpose of use presented clearly to individuals on demand.
- Joint access rights and control of namespaces/folders within the PDA can be enabled for solutions that require PDAs for employee or student records.
Fully scalable Policy-driven data exchange.
- Enables scalable, on-demand provisioning of Data Accounts
- Enables scalable, on-demand generation of contracts for approval by individuals with a standardised rating for assurance and certification clearly labeled for individuals
- Enables individuals to securely authenticate their own identity without a need for a third-party identity service
- Enables the authentication of identity-based on any data attribute preferred by the organisation, whether email, a unique ID or private keys securely stored in the Data Account.
- Application management services for data account special features, such as children data accounts or health data.
- Data conduct and orchestration assessment for application review for optimal centre-edge arrangement and adoption of best practices
- Review of obligations, enforceability, consumer right protection for the contract between organisation and individuals
- Review of data architecture design, lexicon, terminologies, and impact of design based on threats, privacy leaks and overall integrity
- Impact assessment based on adherence to data source rules and other rules relating to specific constraints on the data (e.g. health)