北京市App个人信息专项治理行动中的标准应用实践

Standard Application Practice in The Special Governance Action of Personal Information by App in Beijing

围绕App强制授权、过度索权、超范围收集个人信息等乱象,遵循GB/T 35273—2020等网络安全国家标准,支撑北京市网信办开展了北京市App违法违规收集使用个人信息专项治理行动。对选取的39类256款头部App在个人信息的收集、存储、使用、传输、公开等方面进行了专项测试,对发现的App违法违规现象及时要求自查整改。通过专项行动,提高了北京市App开发运营者履行个人信息保护责任义务的能力和水平,改善了广大群众关心的个人信息安全状况。

Focusing on the chaos of compulsory authorization,excessive claims and over-scope collection of personal information of App,and following the national standards of network security such as GB/T 35273-2020,Cyberspace Administration of Beijing has carried out special governance actions for illegal collection and use of personal information of App in Beijing.A special test was carried out on the collection,storage,use,transmission and disclosure of personal information of 39 types of 256 head Apps.The illegal phenomenon of Apps found in time requires self-examination and rectification.Through special actions,the ability and level of App development operators in Beijing to fulfill their obligations of personal information protection are improved,and the situation of personal information security concerned by the masses is improved.