摘要
个人信息因其蕴含的巨大商业与公益价值,被广泛运用于疫情防控等公共治理中,但也面临着巨大的非法获取、使用和泄露风险。对涉疫情个人信息的非法泄露事件一概施以行政处罚固然高效,但并非长远方案和最佳选择;公民主张隐私权之维护,亦因举证责任、损失难填或价值劣后而举步维艰。短期来看,不仅应将“知情同意”作为个人信息处理的基本原则,限缩并谨慎适用该原则外,同时应进一步细化、增加信息处理的法律规则和技术规范。长期来看,应遵循“私权-公益”的信息治理/救济理念,重新审视信息产权的定义,逐步对个人、企业和国家三者进行信息赋权,使得私权先行、救济渠成。在面对诸如数据泄露威胁、数据权力滥用时,则需国家及时完成角色转变,履行保护义务,集私权之赋权,还诉益于众益,以期个人信息共享善治远景。
Personal data,as a result of being extremely valuable both in business and public welfare,has been so far utilized widely in public governance such as pandemic prevention.However,personal data is at risk of illegal acquirement,using and disclosure.It is effective to handle illegal disclosure of pandemic related personal data with administrative penalties,but it is not the best choice as well as a long-term plan.Because the burden of proof,measure of harm and value of privacy are all unfavorable for citizens,it is also unrealistic for them to defend personal data by claiming privacy.In the short run,informed consent rule should be made the basic principle of data processing with rigorous restraint and discreet application on its exceptions.Meanwhile,data processing law rules and technical norms need to be more specified and enriched.In the long run,under the private right–public welfare mode of data governance and remedy,definition of data property should be reconsidered to entitle data rights to person,company and state until remedies are available and actual to all parties.Finally,in the face of threats such as data leakage and abuse of data power,it is necessary for the state to change its role in a timely manner,fulfill its obligation of protection,centralize the empowerment of private rights to benefit the public,so as to expect the open sharing and good governance of personal information in the future.
作者
刘承韪
赵文博
LIU Chengwei;ZHAO Wenbo
出处
《经贸法律评论》
2021年第4期98-114,共17页
Business and Economic Law Review
关键词
个人信息保护
信息治理与救济
隐私权
新冠肺炎疫情
Personal Data Protection
Data Governance and Remedy
Right To Privacy
COVID-19 Pandemic
作者简介
刘承韪,法学博士,中国政法大学比较法研究院教授;赵文博,中国政法大学比较法研究院硕士研究生。
