《App违法违规收集使用个人信息行为认定方法》简析

The analysis on 《Identification Methods of App’s Illegal Collection and Use of Personal Information》

近年来,App强制授权、过度索权、超范围收集个人信息的现象大量存在,违法违规使用个人信息的问题十分突出,广大网民对此反映强烈。国家互联网信息办公室、工业和信息化部、公安部、市场监管总局根据《关于开展App违法违规收集使用个人信息专项治理的公告》,在近一年专项治理工作基础上,依据《中华人民共和国网络安全法》(本文简称《网络安全法》)等法律法规,制定发布了《App违法违规收集使用个人信息行为认定方法》,为App评估和处置提供参考,为App运营者自查自纠提供指引。文章分析了认定方法的制定背景、意义及主要规范内容,认为《认定方法》从源头根治个人信息安全问题,啃个人信息保护的"硬骨头",标志着个人信息保护工作进入更为深入阶段。

In recent years, there have been a large number of phenomena such as mandatory collection of personal information, excessive collection of personal information by Apps, and the illegal use of personal information is very prominent, which has aroused strong reactions from netizens.Cyberspace Administation of China, Ministry of Industry and Information Technology of People’s Republic of China, State Administration for market Regulation, The Ministry of Public Security of the People’s Republic of China based on the special governance work nearly a year, according to the network security law and other laws and regulations, formulate released 《Identification Methods of App’s Illegal Collection and Use of Personal Information》, provide a reference for assessment and treatment of App, provide guidance to operators of self-check App.This paper analyzes the background, significance and main contents of the identification method, and holds that the identification method can root out the problem of personal information security at the source, gnaw the "hard bone" of personal information protection, marking the work of personal information protection has entered a deeper stage.