What the Origination Moment Actually Is
In asset law, the moment of origination is not a metaphor. It is the precise instant at which a thing transitions from ambient existence into a legally cognizable property interest. A share of stock has a CUSIP number and an issuance timestamp. A parcel of land has a deed recorded at a county clerk's office. Before those acts of formalization, the underlying value existed. The legal claim did not.
Your data has the same problem. You generate it continuously. Location pings, purchase signals, search queries, biometric readings, browsing paths. All of it carries commercial value. None of it, under current default conditions, has been formally originated as yours. It floats in a kind of legal ether, available for capture by whoever gets there first with a terms-of-service agreement and a data center.
The origination moment is the act of changing that. It is when your scattered digital presence is converted into a scoped, dated, evidence-backed record that asserts provable ownership. This concept is the architectural spine of the PDAOS framework, detailed in the MyDataKey PDAOS white paper.
Scattered Digital Presence vs. Scoped Record
Most people exist online the way sediment exists in a river. You are everywhere and nowhere. Meta has fragments of you. Google has a different set of fragments. Your health insurer, your ISP, your grocery loyalty program each hold non-overlapping slices. No single entity has a complete picture, but no single entity needs one to monetize what they have.
The problem with fragmentation is not just that it is uncomfortable. It is that fragmentation is legally inert from an ownership standpoint. You cannot assert a property right in a thing you cannot define. Courts and administrative bodies require specificity. What data, created when, constituting what record, held by whom.
A scoped record changes the geometry of that situation. Scoping means defining the boundaries of the asset: what categories of data are included, what time window they cover, what identifiers anchor the record to you as the natural person. A scoped record is not a data dump. It is a structured assertion with edges. Dated means the record carries a verifiable timestamp that predates any third-party claim. Evidence-backed means the record can survive challenge because it contains cryptographic attestation, not just a self-declaration.
The delta between scattered and scoped is the origination moment. Before it, you have digital exhaust. After it, you have an asset with a legible provenance chain.

The Securities Issuance Analogy
Securities law is useful here precisely because it has spent a century solving the origination problem for intangible assets. A future cash flow, a fractional ownership interest in a corporation, an option contract. None of these are physical objects. All of them have been made legally tractable through formalization rituals: registration, disclosure, timestamped issuance, and a chain of custody that begins at a specific moment.
When a company files an S-1 with the SEC, it is not creating value that did not exist. The business was already operating. The filing is the act of scoping and dating that value so it can be traded, litigated over, and taxed. The SEC filing is the origination moment for that security.
Data assets need an analogous mechanism. The data itself pre-exists the origination act. Your browsing history from last Tuesday already happened. The origination moment does not manufacture new data. It converts existing data from ambient fact into a structured claim. Just as a CUSIP number does not create the underlying business, a PDAOS certificate does not create the underlying data. It establishes the provenance record that makes ownership assertable.
This is why the securities analogy is more precise than people might initially assume. The underlying value exists in both cases before formalization. The formalization is what creates the legally cognizable property interest. First in time, first in right is a foundational principle across property law. The origination moment is how you establish that you were first.
Property Titling and Data Ownership
The real estate analogy is slightly different from securities but equally instructive. When you purchase land, the deed is recorded in a public registry. That recording creates constructive notice. Any subsequent claimant is presumed to have known about your prior claim because the record was available. The recording system exists to prevent the same parcel from being sold twice, and to resolve disputes when interests conflict.
Data does not currently have a recording system. There is no equivalent of a county clerk's office where you can establish a prior claim to your own behavioral data. Data brokers operate in that vacuum. They collect, aggregate and sell data without any mechanism for a natural person to assert temporal priority. The data subject arrives at the dispute with nothing but their word. The broker arrives with servers full of structured records.
A formal origination record functions like a deed. It does not prevent others from collecting data about you. The Fourth Amendment does not protect information you voluntarily share, and neither does GDPR's lawful basis framework, when consent or legitimate interest applies. What a formal origination record does is give you a dated, independently verifiable claim that predates the broker's record. That asymmetry of evidence is the entire point.
Property titling also introduced the concept of chain of title, the documented sequence of ownership transfers that runs from the original grant to the present holder. Data provenance is the equivalent concept. A complete provenance chain starts at the origination moment and documents every transfer, license, or access event thereafter. Without an origination moment, there is no chain of title. There is only a collection history that belongs to whoever collected first.
How PDAOS Formalizes the Origination Moment
The Personal Data Asset Origination System, or PDAOS, is the technical and legal framework developed by Own Your Data Inc. to operationalize the origination moment for individual data subjects. The full specification is available at mydatakey.org/pdaos-white-paper/. The core mechanism is the issuance of a timestamped, cryptographically attested certificate that establishes a prior claim to a defined scope of personal data.
The certificate is not a storage system. It does not hold your data. It holds a structured assertion about your data: what categories it covers, when the assertion was made, and a hash-based attestation that ties the certificate to the originating record without exposing the underlying data. This architecture matters because it means the origination record can be presented in a dispute, a regulatory proceeding, or a data access request without requiring disclosure of the sensitive information it covers.
From a cryptographic standpoint, the certificate functions like a commitment scheme. You commit to a data scope at time T. The commitment is externally timestamped and recorded. At any future time T+n, you can prove that your commitment preceded any third-party record of the same data, without revealing the data itself. This is the technical mechanism that converts the philosophical concept of data ownership into an operational evidence layer.
Own Your Data Inc. operates as a 501(c)(3) nonprofit because the origination infrastructure itself should not be a product controlled by the same commercial interests it is designed to check. Neutral infrastructure is the point.

Where Current Legal Frameworks Fall Short
GDPR established a data subject rights framework that is genuinely powerful in some dimensions. The right of access under Article 15, the right to erasure under Article 17, portability under Article 20. These are real rights with real enforcement teeth, as demonstrated by the Data Protection Commission's decisions against Meta in 2023 and the cumulative fines issued under GDPR since its enforcement date.
CCPA and its amendment, the CPRA, created similar but narrower rights for California residents. The Virginia Consumer Data Protection Act, the Colorado Privacy Act, and the Connecticut Data Privacy Act have added state-level layers in the United States. As of 2026, over a dozen states have enacted comprehensive privacy legislation. The trend is clearly toward broader recognition of data subject interests.
What none of these frameworks does is establish data as property. They establish data as a subject of rights. The distinction is not semantic. A rights framework gives you remedies against specific actors for specific violations. A property framework gives you a prior claim that travels with the data regardless of who holds it. Under a rights framework, you can demand deletion from a specific controller. Under a property framework, you could theoretically assert your interest against any downstream holder. Current law does not recognize the property model. The origination moment is designed to position individuals to assert that model as it develops legally.
The Federal Trade Commission has taken action against data brokers under Section 5 of the FTC Act, treating certain data practices as unfair or deceptive. But FTC enforcement operates at the aggregate level. It does not create individual property interests. The gap between regulatory enforcement and individual asset standing is precisely where PDAOS operates.
What Evidence-Backed Actually Means
The phrase evidence-backed is doing real work in the PDAOS framework, not decorative work. In legal proceedings, the weight of evidence depends on its independence, its verifiability, and its resistance to post-hoc manipulation. A self-signed document claiming you owned certain data on a certain date carries almost no evidentiary weight. Anyone can create that document today and backdate it.
An evidence-backed origination record has three properties that distinguish it. First, it is externally timestamped by a source that is independent of the claimant. Trusted timestamping under RFC 3161, blockchain anchoring, or a combination of both are the technical mechanisms. The timestamp cannot be altered retroactively without breaking the cryptographic chain. Second, it contains a hash-based commitment to the data scope, meaning the record is bound to specific content at the time of creation. Third, it is issued through a system with its own integrity record, a system whose operational logs can themselves be audited.
This architecture is directly analogous to how a notarized document works in traditional property law. The notary does not verify the content of what you sign. The notary verifies your identity, witnesses the signature, and applies an independent attestation that the signing occurred at a specific time. The PDAOS certificate is a digital notarization layer applied to data ownership claims.
When a data broker claims to have collected your data, they have a server record with a timestamp. When you have a PDAOS certificate, you have an independently attested record with a prior timestamp. Evidence-backed means you can show up to that dispute with something other than your word against their log file.
From Concept to Legal Standing
The origination moment concept will face the same challenge every emerging property theory faces: judicial and legislative uptake. Courts do not immediately recognize new asset classes. Cryptocurrency took years of litigation before courts developed a working framework for treating digital tokens as property in bankruptcy proceedings. NFTs are still in the middle of that process.
Data-as-property is on a similar trajectory. The academic literature has been building since at least the work of scholars like Lothar Determann on data ownership in comparative law. The legislative signals in the European Union's Data Act, which came into force in 2024 and continued to develop through 2026, suggest that formal data ownership frameworks are approaching practical relevance faster than many predicted.
The strategic value of establishing an origination moment now is not that it resolves all legal questions. It is that it positions you on the right side of an evidence gap that will matter when those questions are resolved. The individual who has a dated, evidence-backed origination record when a court or legislature finally recognizes data property rights will have a fundamentally stronger position than the individual who did not.
You do not title your land after a boundary dispute starts. You title it before.
If the concept of owning your data with formal, evidence-backed proof is something you take seriously, the next practical step is straightforward. You can establish your origination record through MyDataKey and start building the provenance chain from today forward. The origination moment you create today is the timestamp that everything else measures against.
Written By
Dr. Patrick Fisher, PhD, NCC, BC-TMH, C-AAIS — Founder, Own Your Data Inc
Editorial Review
This article was reviewed by Ryan Gaughan on June 20, 2026 for accuracy, currency, and clarity. Content is updated when laws or guidance change.