数据认证:模式选择与应用规范

Data Certification: Model Selection and Applications Specifications

作为一种"软性"约束工具,数据认证可以快速评判不同企业的数据合规情况,实现数据保护质量的可视化评定。鉴于数据认证机制在数据治理中的重要作用,欧盟《通用数据保护条例》正式引入认证制度。传统数据认证模式涵盖国家认证、第三方认证和自我声明三种,形成"政府—社会—市场"的"三元"架构,但各有利弊。欧盟数据保护法律框架则在已有监督模式基础上创造性发展出政府监管下的数据认证模式,形成了国家与社会共管模式,彰显了多元合作治理精神。我国数据认证尚在初创期,可在已有认证机制基础上结合数据认证的特点从基本规范、法律责任以及行业自律等方面加以补充和完善。

As a"soft"constraint tool,data certification allows for a quick assessment of data compliance across enterprises and a visual assessment of data protection quality.Data certification has been included in the EU General Data Protection Regulation,highlighting its important role in data governance mechanisms.The traditional oversight model for data certification covers national certification,third-party certification and self-declaration,forming a"government-society-market"structure with advantages and disadvantages for each.The EU data protection legal framework is based on the existing supervision model of the creative development of the government supervision of the data certification model,forming a co-management model of state and society,highlighting the spirit of pluralistic cooperative governance.China’s data certification is still in its infancy and can be based on the existing certification mechanism combined with the characteristics of data certification from the basic norms,legal responsibilities and industry self-regulation and other aspects to be supplemented and improved.