摘要
欧盟《通用数据保护条例》(GDPR)作为个人数据保护领域最具影响力的法律文本之一,目前已正式生效近四年,对欧盟各国的个人数据保护监管产生了深远影响。在此过程中所产生的问题与解决措施对我国具有很强的借鉴意义,特别是在《个人信息保护法》全面实施之际。本文以采取“先行先试,兼容并行”与“全面借鉴,毫分缕析”两种不同策略的法国与比利时为研究对象,从个人数据保护法律法规与监管体系两个方面分别对两国在GDPR实施后的个人数据保护监管的实践进行分析;随后借助信息生态系统理论对两国的个人数据保护生态进行建构与比较,发现在相同的GDPR框架下,基于不同的监管策略与实践,法国形成了大监管、并行制度、重处罚的个人数据保护生态,而比利时则形成了小监管、单一制度、轻处罚的个人数据保护生态;最后,基于两国监管发展中提炼出的有益经验,并结合我国的个人数据保护监管现状,提出相应的政策建议,以期为优化我国个人数据保护监管提供指导。
As one of the most influential legal texts in the field of personal data protection,the General Data Protection Regulation(GDPR)of the European Union has been officially in force for nearly four years,exerting a profound influence on the regulatory practice of personal data protection in EU countries.The problems and solutions emerging in this process can be good references for China,especially when the Personal Information Protection Law is now in full operation.France and Belgium herein are picked out to study,which adopted two different strategies in accordance with their own situation,and the regulatory practices of personal data protection of the two countries are analyzed under the implementation of GDPR from two aspects:personal data protection laws and supervision system.Then with the help of information ecosystem theory,the two countries’personal data protection ecology are constructed and compared,and the fact is found out in the same GDPR framework,that based on the different regulatory policies and practices,France has formed a ecology of big regulation,parallel institution,heavy punishment,while Belgium formed a ecology of small regulation,single institution,light punishment.Finally,based on the useful experience extracted from the regulatory practices of the two countries,and combined with the present situation of personal data protection in China,corresponding policy suggestions are put forward,in order to provide guidance for optimizing the regulatory practices of personal data protection in China.
作者
李卉
国佳宁
李前
Li Hui;Guo Jianing;Li Qian
出处
《国际经济法学刊》
2022年第3期17-27,共11页
Journal of International Economic Law
基金
科技创新2030——新一代人工智能重大项目:重点领域人工智能治理挑战及对策研究“人工智能的行业规制与法律需求研究”(2019AAA0105303)的阶段性成果。
关键词
个人数据保护
GDPR
个人信息保护法
信息生态系统
Personal Data Protection
GDPR
Personal Information Protection Law
Information Ecosystem