礼让视域下GDPR域外管辖的冲突及中国的因应

The conflict of extraterritorial jurisdiction of the GDPR in the context of comity and China′s response

在数字经济时代,数据已经成为了一种全新的资产类型,国家对数据的掌控能力成为其综合国力的外在体现,而当代国家对数据重视与保护加剧了数据管辖权冲突。在此情形下,欧盟《通用数据保护条例》(GDPR)通过“实体标准”“目的指向标准”“使领馆标准”三重管辖扩张实现对全球数据的“长臂管辖”,但其关于适用地域范围的规定与其他国家的属地管辖冲突,体现出欧盟在数据保护方面呈现出单边扩张的趋势,易诱发数据管辖权冲突。故此,基于优利克·胡伯提出解决管辖冲突的“国际礼让原则”,分析GDPR三个适用地域界定标准下存在的管辖权冲突,考察国际礼让原则在数据管辖权冲突中可用性与适用基础,并对不同礼让形式在数据管辖权冲突中的适用予以分析,并基于GDPR域外适用管辖权冲突提出补充数据管辖模式、对接国际跨域数据治理、坚持礼让互惠协作的中国因应,以期为我国畅通域外数据保护提供新思路。

In the era of digital economy,data has become a brand-new type of asset.A country′s ability to grasp and control data has become an external manifestation of its comprehensive national power,while the contemporary national emphasis on data and its protection has exacerbated the conflict of data jurisdiction.In this case,the EU General Data Protection Regulation(GDPR)realizes the expansion of jurisdiction over global data through the triple standards of"entity standard","purpose-directed standard"and"embassy and consulate standard".The GDPR realizes the"long arm jurisdiction"over global data,but its provisions on the applicable geographical scope are in conflict with the territorial jurisdiction,which reflects the trend of unilateral expansion of the EU′s data protection,which is prone to inducing data jurisdiction conflicts.Therefore,based on the"international comity principle"proposed by Ulrich Huber to resolve jurisdictional conflicts,this study analyzes the jurisdictional conflicts under the three applicable territorial definition standards of the GDPR,examines the availability and application basis of the international comity principle in data jurisdictional conflicts,and analyzes the application of different forms of comity in data jurisdictional conflicts,and analyzes the application of the GDPR based on its territorial scope of application.It also analyzes the application of different forms of comity in data jurisdiction conflicts,and puts forward China′s response based on the extraterritorial application of GDPR jurisdiction conflicts to supplement the data jurisdiction model,docking international cross-domain data governance,and insisting on reciprocal coordination of comity,with a view to providing new ideas for China′s smooth extraterritorial data protection.