刑事司法中的数据安全保护问题研究

Research on Data Security Protection in Criminal Justice

刑事司法中海量收集使用数据必然带来数据安全保护的问题,现有法律对于此问题的规定存在不足,新出台的数据安全法对于刑事司法中的数据安全保护之规定亦过于粗疏,加之司法信息化加剧了刑事司法中的数据安全风险,有必要予以充分关注。刑事司法中应当以保障公民权利为数据安全保护的重要价值取向,确定国家承担数据安全保护的主要义务,进而对刑事诉讼全程进行数据安全监管。具体而言,应当通过建立数据分类和分级制度、尊重和发挥数据主体在数据安全保护中的作用、明确数据控制者和处理者的数据安全保护职责、将检察机关设置为专门的数据监管机构并赋予其相应职能,从而构建起相对完整的刑事司法领域数据安全保护制度。

The massive collection and use of data in criminal justice will inevitably bring about the problem of data security protection. Existing laws have insufficient provisions on this issue. The newly promulgated Data Security Law is also too rough in terms of data security protection in criminal justice. In addition, judicial informatization has exacerbated data security risks in criminal justice. It is necessary to pay full attention. Criminal justice should take the protection of citizens’ rights as an important value orientation for data security protection, determine the state’s main obligations for data security protection, and then conduct data security supervision over the entire process of criminal procedure. Specifically, it is necessary to establish a data classification and grading system, respect and exert data subjects’ influence in data security protection, clarify the data security protection responsibilities of data controllers and processors, set the Procuratorate as a special data supervision agency and give it corresponding functions, so to build a relatively complete data security protection system in the criminal justice.