综合立法和差异化规制:个人生物识别信息保护研究

Comprehensive Legislation and Differentiation Regulation:A Research on the Protection of Personal Biometric Information

随着大数据和人工智能技术快速发展,大量个人生物识别信息不需要信息主体有意识配合,即可被他人直接获取和技术处理,滥用他人生物识别信息已成为严峻的社会问题。信息主体难以通过事后更改信息预防后续损害,风险隐患很大,因此需要得到法律严格保护。但现行法律及监管机制尚不完善,有效的保护路径,当是及时构建综合立法保护机制,兼顾保护与合理使用原则,设立数据安全标准,并以“区分保护,目的考量”策略为基础,差异化规制不同个人生物识别信息主体对生物识别信息的处理权限。

With the rapid development of big data and artificial intelligence technology,a large number of biometric information can be directly gained and processed by others without the conscious cooperation of information subjects,and the behavior of abusing biometric information is also increasingly serious.It is difficult for the information subject to change the information afterwards to prevent the subsequent damage,and there are great risks,so it needs to be strictly protected by law.However,the current law and regulatory mechanism is not perfect,it is necessary to adopt a uniform legislation and special legislation in a timely manner,build a comprehensive legal protection mechanism,juggle protection and rational use.And based on the theory of"distinguish protection,examine purpose",should establish differentiated regulations about the processing permissions of biometric information for different organizations.