个人信息保护法背景下医疗大数据利用规制研究

Research on regulation of medical big data utilization under the background of Personal Information Protection Law

医疗大数据因具备财产属性,成为医疗机构、医药企业等相关数据处理者获取竞争优势的利用对象,但也因此会对个人的信息和数据安全在一定程度上造成影响。《个人信息保护法》通过完善以知情同意原则为核心的数据处理规则,赋予个人诸如知情权等一系列积极权利,为数据处理者设定一系列义务,划定信息保护的职责部门,初步构建起个人信息保护框架。在此基础上,结合医疗大数据的分类、权利属性、利用主体与利用中存在的问题,探讨如何在现有个人信息保护的框架之下,完善对于医疗大数据的利用规制。

Due to its property attribute,medical big data has become an object for medical institutions,pharmaceutical enterprises and other relevant data processors to obtain competitive advantages,but it will also have an impact on personal information and data security to a certain extent.By improving the data processing rules with the principle of informed consent as the core,the Personal Information Protection Law initially build a framework for personal information protection by granting a series of individuals’positive rights,such as the right to know,setting a series of obligations for data processors,delimiting the responsible departments for information protection.On this basis,this paper continued to explore how to improve the regulation of medical big data utilization under the framework of the existing personal information protection,in combination with the classification,right attributes,users and problems existing in the use of medical big data.