Fecha de publicación: 16/07/2014 Fuente: WIPO "beekeeper" A user device (110) encrypts data and corresponding privacy attributes. A processing device (140) receives (S202) the encrypted data and privacy attributes, as well as (S204) a signed script from a requester. If the signature is successfully verified, the private key is unsealed (S210) and used to decrypt (S212) the privacy attributes and (S214) script attributes, which are compared (S216) to determine if the script respects the privacy attributes. If so, the encrypted data are decrypted (S218), the script processes (S220) the private data to generate a result, the result is encrypted (S222) using a key of the requester and is then output (S224). The device is preferably configured to inhibit the output of any information while the data is unencrypted. This way, the user can be assured that the processing of the private data respects the privacy attributes set by the user.