JP2002222274A - Individual information management system and individual information management program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To solve the problem that we almost remember daily used personal information but tend to forget rarely used information by providing service for surely managing the rarely used personal information on the Internet. SOLUTION: In this system, the personal information (name, contents, bill number, name of insurance company of insurance) is stored on a server of the Internet, and a user can refer to the information at need. The information management system is provided with an authentication means for a person, a personal information input means and a personal information display means for storing the personal information, a means for informing the access information to a specified address for protecting the registered personal information from being illegally accessed by others than the registrant, and a double- protection means using a second password for protecting from an illegal access.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a storage and management function of personal information using the Internet, and more particularly, to registering personal information in a server established on the Internet from a general user using a personal computer or the like. ,
The present invention relates to a personal information management system that provides a service for storing and managing registered personal information exclusively.

[0002]

2. Description of the Related Art In modern society, there is a wide variety of information that individuals must remember and manage. For example, such personal information includes insurance information to which one or a family member has subscribed. It may also be necessary to remember the birthday of a close friend in order to give a present.

[0003] Personal information that is usually used is rarely forgotten, but personal information that is rarely used is easy to forget. Therefore, if there is a service that securely stores and manages personal information that is rarely used, it is possible to deal with the problem that it is easy to forget.

Normally, such information is recorded in a personal organizer, registered in a personal computer (hereinafter abbreviated as a personal computer), or stored in a personal safe of a bank such as paper or a floppy disk. Often stored as a medium.

[0005]

Conventionally, such information is handled by recording it on paper and carrying it as a notebook or the like or by registering it in a personal computer and referring to it as needed. There was a risk of getting lost. In addition, a situation has occurred in which personal computers cannot be referred to due to device failure.

[0006] In particular, information such as insurance has a problem that, in the case of a fire or the like, if a security or the like is destroyed, it is impossible to know what kind of insurance was applied, and a warranty claim may be lost. .

[0007] In addition, regarding a failure of a purchased product such as an electric product, it is not possible to determine whether the product is within the warranty period or is not covered by the warranty, and the warranty may be missed. Further, in some cases, the lottery player forgets to purchase the lottery itself, and even if the lottery is won, the winning amount may be invalidated.

[0008] Further, with the spread of the Internet, it has become common for a plurality of Web sites to be used by one individual. However, when using a Web site, user authentication is performed using a password. There is also a problem that it is troublesome to memorize a number of passwords required for this authentication.

Further, storing such personal information in a safe deposit box of a bank has a problem that it is troublesome to go to the bank every time even when it is desired to confirm a little personal information.

[0010] In order to solve these problems, by registering such information in a server having a personal information storage management function on the Internet using a personal computer or a portable terminal owned by an individual, the information can be obtained at any time. The service that information can be referenced anywhere is effective.

[0011] In addition, by purchasing lottery tickets and registering the lottery date in advance, it is possible to provide an e-mail notification when the lottery date approaches as part of such a service. Become. However, it is necessary to provide a service with sufficient security measures against unauthorized access of personal information from anyone other than the user who registered the information.

[0012]

A first personal information management system according to the present invention comprises a client terminal for registering and inquiring personal information held by a user from a user, and storing the personal information. It includes a server that manages and charges the user a usage fee as a price, and the Internet that connects the client terminal and the server.

[0013] The second personal information management system of the present invention comprises:
In the first invention, the server includes the server that sets a level of importance for the personal information when registering the personal information.

[0014] The third personal information management system of the present invention comprises:
In the first or second aspect of the present invention, the information processing apparatus further comprises the server which transmits the personal information set as important to a backup server at a remote place via the Internet when setting the importance level at the time of registration of the personal information.

[0015] The fourth personal information management system of the present invention comprises:
In the first invention, after permitting the inquiry of the registered personal information after the user is authenticated, the second user authentication is performed by the second password when the personal information is registered or the registered personal information is updated. The server is provided.

A fifth personal information management system according to the present invention comprises:
In the first or second invention, the server is provided, which calculates a usage fee according to the amount of registered personal information, a registration period, and the level of importance, and periodically charges the server.

[0017] The sixth personal information management system of the present invention comprises:
In the first invention, when the expiration date of the personal information is set at the time of registration of the personal information, an e-mail is sent to a user who registered the personal information one week before the expiration date of the registered personal information to the day before. And a server for performing notification by the server.

[0018] The seventh personal information management system of the present invention comprises:
In the first invention, the server is provided, which notifies an access history of a user who has accessed the personal information to a user holding the personal information by e-mail.

An eighth personal information management system according to the present invention comprises:
In the first aspect, the server is provided which notifies the user who has registered the memorandum information of an e-mail on a notification date of the registered memorandum information.

A first personal information management program according to the present invention is a means for registering and inquiring personal information owned by a user operating on the client terminal and a server at a client terminal and a server connected via the Internet, And a function for storing and managing the personal information, and functioning as means for charging the user with a usage fee as a consideration for storing and managing the personal information.

[0021]

Embodiment of the embodiment of the present invention will be described with reference to the drawings in detail.

The present invention is to centrally manage various kinds of personal information on a server on the Internet so that registered personal information can be confirmed at a necessary place when necessary.

FIG. 1 shows a configuration of an embodiment of the present invention.

A server 10 established by a personal information management service provider for storing and managing personal information registered by the user;
A backup server 15 for storing and managing highly important personal information transferred from the server 10 at a remote location from the server 10; a personal computer or a portable terminal used by a user to register personal information; And the Internet 30 connecting the server 10, the backup server 15 and the client terminal 20.

The server 10 and the backup server 15
An information processing apparatus comprising a workstation, a high-performance personal computer, and the like, connected to a magnetic disk device for storing personal information and a CD device for saving personal information on the magnetic disk device to a CD medium. .

In order to safely store the data registered by the user in the server 10, for example, the personal information registered by the user is temporarily written to two or more magnetic disk devices at the same time and stored. The entire contents of the magnetic disk drive, or only the changed parts since the last evacuation
Save to medium D. Further, in order to protect the CD medium from disasters such as fires and earthquakes, it may be stored in a heat-resistant and waterproof storage box and managed in a safe such as a basement.

Also, newly registered, updated or deleted personal information is transmitted in real time to a backup server 15 at a remote location connected to the server 10 via the Internet 30, and the backup server 15 also transmits the personal information.
It is assumed that personal information is stored and managed in the same manner as in the case of 0.

The server 10 stores and manages the personal information registered by the user, calculates the usage fee of the stored and managed personal information according to the amount of information, the storage and management period, the protection level indicating the importance, and the like. It also performs tasks such as billing users on a regular basis, such as every year or at the end of each year. The user of the personal information management service connects the client terminal 20 to the server 10 via the Internet 30 to register his / her personal information, refer to the registered personal information, update the personal information, and newly add information. Or can be added.

Next, the operation of the embodiment of the present invention will be described with reference to the drawings.

The operation of the embodiment of the present invention will be described with reference to the block diagram of FIG. 1 and the home page screen examples of FIGS.
Further, the processing contents of the server 10 described below are all performed by a software program operating on the server 10. It is also assumed that a browser program for accessing the homepage of the server 10 operates on the client terminal 20.

When the user intends to use the personal information management service of the server 10 for the first time, the user calls the user registration homepage screen opened by the server 10 using the client terminal 20. For this call request,
URL (Uniform) of personal information management service
Resource Locator).

In response to the call request, the server 10 transmits a user registration home page screen illustrated in FIG. 2 for registering a user to the client terminal 20. From this screen displayed on the client terminal 20, the user inputs the user ID, the password, the second password, the e-mail address to which the notification of the access history and the like is to be received, the user's name and address, and enters the user's name and address into the server 10. Send to Server 1
No. 0 stores this information in a magnetic disk device or the like and completes user registration.

The user ID on the user registration screen can be set in the server 10 in advance.
When the registration of this user is completed, the user
It is possible to register, refer to, etc. personal information.

As for payment of a usage fee when a user uses the personal information management system, for example, a form for application on a user registration homepage of the personal information management system is taken out, printed at the client terminal 20, and used. Enter the necessary information such as the account number of the bank or post office account of the person and the name of the credit company, and send it to the personal information management service provider separately by registered mail.

Next, the user tries to refer to the information registered as personal information through the client terminal 20 or registers personal information related to the added insurance in the server 10 because the user has newly purchased insurance. In this case, a connection is made to the user authentication homepage of the server 10. At this time,
The user authentication screen illustrated in FIG. 3 is transmitted from the server 10 to the client terminal 20 and displayed. The user inputs the user ID and the password set at the time of user registration and transmits the user ID to the server 10. The server 10 authenticates the user. In the case of a correct user ID and password registered in the magnetic disk device or the like of the server 10,
An access request for personal information will be accepted.
If an incorrect input of a user ID or a password is performed, the server 10 will not permit the use of the user.

When the authentication by the server 10 is successful, the server 10 displays a screen illustrated in FIG. 5 which is an inquiry homepage including a list of the personal information of the user, if any, already registered on the client terminal 20. At this time, only items for which the protection level relating to the importance as personal information is normally (B) are displayed in the list of registered personal information. When personal information is registered for the first time, 001 simple insurance... 004 illustrated in the inquiry screen of FIG.
Since there is no information such as a guarantee, the user inputs a title appropriate for personal information to be registered in the title field at the top of the inquiry screen, presses a new button, and subsequently registers detailed contents.

It should be noted that the protection level includes normal and important.
When storing the personal information, the personal information set to be important is stored in, for example, a backup server 15 of a remote computer system operated by a personal information management service provider.
Is transferred by a network such as the Internet 30 to take measures to reduce the probability of personal information being destroyed even in the event of an unexpected disaster such as an earthquake. Although many types of protection levels can be set, two types of protection levels, normal and important, will be described here. The user determines whether the personal information to be registered has a high or low protection level.

Incidentally, in order to simplify the processing in the server 10, 1
It is assumed that multiple protection levels cannot be set for personal information registered on the screen.

When the user selects information to be inquired from the list on the inquiry screen shown in FIG. 5, for example, selects simple insurance 001 and presses a reference button, the user is registered as shown in FIG. When the user selects the certificate of 005 on the screen shown in FIG. 5, the contents shown in FIG. 7 can be referred to.

In the case of new registration for registering new personal information, update of already registered personal information, or deletion of registered information, FIG.
Press the new button, update button or delete button on the inquiry screen of. At this time, a screen illustrated in FIG. 4, which is an example of a screen of the authentication homepage at the time of new update, is displayed.
When the user is required to enter the second password set at the time of user registration, enter the second password. If this is correct, the authentication is successful, new registration, update or deletion is permitted, and the client terminal 20 displays the inquiry screen of FIG. 5 which is the inquiry homepage again.

At this time, the list of registration information on the inquiry screen includes
High protection level (important), low protection level (normal)
Both items are displayed.

When the user selects an item to be updated from the list of registered information on the inquiry homepage, for example, selects 001 simple insurance, personal information already registered for simple insurance illustrated in FIG. 6 is displayed. The information can be updated on this screen.

When the user inputs “General Insurance” in the title box of “007” on the inquiry screen of FIG. 5 and presses the “New” button, a screen as shown in FIG. 8 is displayed. For example, the type of insurance (life insurance, non-life insurance) Etc.), insurance contents (sports disability insurance in non-life insurance, etc.), security number, insurance period, insurance company name, protection level (important, normal), etc. can be entered and registered.

Each time the user accesses the server 10, regardless of whether the user authentication has succeeded or failed, the server 10 sends the access content as an access history to an e-mail address specified at the time of registration of the user. hand,
A notification can be given in the event of unauthorized access. As a result, when a user receives an e-mail notification that he / she has never accessed, he / she can know that an unauthorized access has been made, and can immediately contact the personal information management service provider and take action. Become.

When new registration or updating of personal information is performed by the user, the server 10 sets the date of access for each user, the number of screens for which the protection level after access is normal and the number of screens for which protection level is important. Are written to a magnetic disk device or the like and are logged.

The parameters for calculating the charge when the server 10 charges the user for use include the registered amount of personal information, the storage period, and the protection level (usually important). The registration amount is calculated based on the number of screens (α) constituting personal information. The storage period is calculated based on the number of days and months (β) for storage. The protection level (γ) indicates the ratio of the usage fee to high or low by, for example, normal = 0.5, importance = 1, and the like. The server 10 sets the charge for the personal information of the user registered based on the logged information at the end of the month or the end of the year by αx
When calculated by totaling all personal information registered for a certain user, the charge is automatically deducted from the user's account.

FIG. 10 is a flowchart showing an e-mail transmission process for the access history in the user authentication process.

When the user calls the user authentication screen shown in FIG. 3 and inputs a user ID and a password and transmits the user ID and password to the server 10, it is assumed that as a result of the authentication check by the server 10, the password is incorrect. The server 10 prompts the user to re-enter the user ID and the password, but checks whether the result of the user's re-input is an incorrect input three times in a row (step S1). If an incorrect password is entered three times,
The authentication of the user has failed, and the server 10 sends the user's e-mail address specified by the user ID to the e-mail address of FIG.
Is transmitted (step S4).

In the case where the user authentication in (Step S1) succeeds and the second password is input to perform new registration and update of personal information, the server 10 fails in this authentication three times. Is checked (step S
2). If this fails three times in a row, the use of the new registration, update function, and delete function is refused, and in FIG.
An e-mail having the contents illustrated in (c) of FIG. 1 is transmitted to the user. Even if the user is successfully authenticated, if the user does not access for 30 minutes, the processing is considered to be completed, and the access history illustrated in FIG. 11A is transmitted to the user by e-mail.

The user who has received the e-mail can change the user ID, the password, the second password and the like in the event that there is a possibility of unauthorized access, thereby avoiding the risk.

It is also possible to set an expiration date of the personal information for each registered personal information. For example, a setting such as 10 years from the registration date or validity until December 31, 2010, etc. Can be. The server 10 extracts and stores the user ID, the title name attached to the personal information, and the expiration date, and notifies the user of the expiration date by e-mail on the day before the expiration date, one week before, or the like.
The user can delete the personal information or extend the expiration date based on this notification. The server 10
If the user has no access to the expired personal information even after the expiration, the e-mail may be continuously sent until the access is performed. Server 10
If the expiration date is not set, the user will keep the storage information permanently unless the user deletes the personal information.

Next, a memorandum function used when a user purchases a lottery ticket but does not forget that he / she purchased it, or borrows or lends money but does not forget to return the loan due, etc. I do. In the inquiry screen of FIG.
When the user selects the memorandum 06 and presses a new button, FIG.
Screen is displayed, and free personal information can be input. If the date before and after the lottery of the purchased lottery is registered on the e-mail transmission date on this screen, for example, the server 10 stores the information written in the e-mail address of the user in the free entry field on the registered date. To send a notification. When the server 10 completes the transmission of the e-mail, the server 10 deletes the memorandum information registered by the user and reflects the changed contents in the logging information.

In the above description, insurance information and guarantees that are rarely referred to on a daily basis are taken as examples. However, the present invention is not limited to this and, for example, registration of passwords and the like required when accessing a homepage having a WWW server. Can be performed, and arbitrary personal information can be freely stored by the server 10 as described above.

[0054]

As described above, when personal information is managed by a personal organizer or personal computer, personal information is not lost due to loss of personal organizer or personal computer failure. In addition to safe storage and management, the personal information can be freely accessed at any time.

[0055]

[Brief description of the drawings]

FIG. 1 is a block diagram illustrating a configuration of an embodiment of the present invention.

FIG. 2 is a display example of a screen for performing user registration of the present invention.

FIG. 3 is a display example of a screen for performing user authentication of the present invention.

FIG. 4 is a display example of a screen at the time of the second user authentication of the present invention.

FIG. 5 is a display example of a screen serving as a base for inquiring personal information according to the present invention.

FIG. 6 is a screen display example when referring to simplified insurance information registered as personal information of the present invention.

FIG. 7 is a screen display example when registering warranty information as personal information of the present invention.

FIG. 8 is a screen display example when insurance information is registered as personal information according to the present invention.

FIG. 9 is a display example of a setting screen for receiving a notification of a lottery lottery date as personal information of the present invention.

FIG. 10 is a flowchart illustrating access history notification by e-mail when user authentication fails according to the present invention.

FIG. 11 is an e-mail example for explaining the contents of an access history notification by e-mail according to the present invention.

[Explanation of symbols]

 10 server 15 backup server 20 client terminal 30 internet

Claims (9)

[Claims] 1. A client terminal for registering and inquiring of personal information held by a user from a user, and storing and managing the personal information and charging the user for a usage fee as a consideration. A personal information management system comprising: a server; and the Internet for connecting the client terminal and the server. 2. The personal information management system according to claim 1, further comprising the server for setting a level of importance for the personal information when registering the personal information. 3. The server according to claim 1, further comprising, when setting the importance level at the time of registration of the personal information, transmitting the personal information set as important to a remote backup server via the Internet. Or the personal information management system described in 2. 4. After permitting an inquiry of the registered personal information after authenticating the user, the second user authentication is performed by the second password when registering the personal information or updating the registered personal information. The personal information management system according to claim 1, further comprising a server. 5. The server according to claim 1, further comprising: a server for calculating a usage fee in accordance with the amount of registered personal information, a registration period, and the level of importance, and periodically charging the server.
Or the personal information management system described in 2. 6. When the expiration date of the personal information is set at the time of registration of the personal information, an e-mail is sent to the user who registered the personal information from one week before the expiration date of the registered personal information to the day before. The personal information management system according to claim 1, further comprising the server that performs notification. 7. The personal information according to claim 1, further comprising the server for notifying, by e-mail, of an access history of a user who has accessed the personal information to a user holding the personal information. Management system. 8. The personal information management system according to claim 1, further comprising the server for notifying the user who has registered the memorandum information of an e-mail on the date of notification of the registered memorandum information. 9. A means for registering and inquiring personal information possessed by a user operating at the client terminal at a client terminal and a server connected via the Internet, and operating at the server to store the personal information. A personal information management program for functioning as a means for charging the user for a usage fee as a consideration for managing, storing and managing.