NCR Corporation
Self-Sovereign Identity Verifiable Credentials for Consent Processing

Abstract:

A consumer obtains a consent credential for a given retailer. The consent credential identifies receipt data, which the consumer is authorizing the retailer to obtain. A consumer engages in a wallet-to-wallet transaction with a retailer utilizing Decentralized Identifiers (DIDs) for the wallets of the consumer and the retailer. Receipt data is produced by a payment service on behalf of the retailer, the receipt data is signed by an issuing authority associated with the retailer and delivered as a receipt credential to the consumer. The receipt data is not maintained by the payment service nor the retailer. The retailer requests the receipt data after from the consumer after payment is processed for the transaction by the payment service. The consumer authorizes the request or denies the request, when authorized the receipt credential and corresponding authorized portions of the receipt data are provided from the consumer to the retailer.