互联网金融业务用户隐私数据安全保障理论与实践

Practice on security&privacy assurance of customer data of Internet financial business

互联网金融业务利用数字化技术,覆盖了传统金融难以覆盖的场景和人群,实现了普惠金融,在为用户带来高效、便捷服务的同时,数字化技术也带来了系统的复杂性风险和技术风险。用户的身份标识、业务属性、行为数据属于高度隐私数据,在采集、存储、分析、应用和交换的生命周期中,任何环节的疏漏均会带来隐私泄漏的安全风险。为此,建立全生命周期的数据安全保障体系,规避相关风险,是对互联网金融业务信息安全的基本要求。

Internet financial services use digital technology to cover scenes and groups that are difficult to be covered by traditional finance,realizing inclusive finance.While bringing efficient and convenient services to customers,digital technology also brings system complexity risks and technical risks.The identity,attributes,behavior,business data,of the customer,are highly privacy,leak in the collection,storage,analysis,application,exchange,in life cycle would bring privacy security risks.establish the whole life cycle of data security guarantee system,to avoid risks related,is a basic requirement of information security on the Internet financial business.