涉生成式人工智能数据犯罪刑法规制新路径

A New Path of Criminal Law Regulation Concerning Generative Artificial Intelligence Data Crime

我国数据犯罪刑法规制的侧重点在于数据控制行为的规制以及数据分类分级的保护。生成式人工智能的应用导致数据控制行为合法性增强、数据利用行为风险攀升以及数据共享需求提升。生成式人工智能的应用可能会引发现行数据分类分级标准的功能性失灵并造成刑法在法益保护上的漏洞。应当确立“数据利用”行为规制观与“全类别+分类分级”数据治理观。现行数据犯罪刑法规制模式属于权利保护模式,应当采用“权利保护+集体法益保护”的复合模式。复合模式保护的集体法益应当是数据管理秩序而非数据安全。应当修改拒不履行信息网络安全管理义务罪的构成要件以应对生成式人工智能“自发”侵害数据法益的情形。应当增设非法分析数据罪、操纵数据罪以应对行为人利用生成式人工智能侵害数据法益的情形。

Data-based digital technology has become an important technical tool for the rapid development of politics,economy and society in the era of digital economy.In order to protect data in time,China's data crime charge system has been initially formed.At this stage,generative artificial intelligence has revolutionized the way of obtaining and utilizing data in the past,and the criminal regulation of data crime based on the current data crime charge system may not be able to achieve the expected effect.From the relevant provisions of the current criminal law and its advanced law,the emphasis of the criminal regulation of data crime lies in the regulation of data control behavior and the protection of data classification and grading.However,in the application of generative artificial intelligence,the data obtained by generative artificial intelligence is basically open data or self-analyzed data and does not involve data tampering and destruction,resulting in enhanced legitimacy of data control behavior.The scale and clustering of data utilized by generative artificial intelligence have also led to a sharp rise in the behavioral risk of data utilization.In addition,with the rapid development of the digital economy,the demand for data sharing has also increased.Therefore,criminal law focusing on the regulation of data control behavior can't meet the current data legal interest protection and data use needs and should establish the"data use"behavior regulation view.It should also be noted that the application of generative artificial intelligence may lead to the functional failure of the current data classification and cause legal interest protection loopholes,and a"full category+classification and grading"data governance concept should be established.From the perspective of the criminal law regulation mode of data crime,the current regulation mode adopted by the criminal law cannot realize the extensive protection of data in the application of generative artificial intelligence and will ignore the regulation of data utilization behavior,so the compound mode of"right protection+collective legal interest protection"should be adopted.In order to avoid unreasonable restrictions on the development and application of emerging technologies such as generative artificial intelligence,the collective legal interest of composite model protection should be data management order rather than data security.The constitutive elements of the crime of refusing to perform the information network security management obligation should be modified to deal with the situation of generating artificial intelligence"spontaneously"infringing on the legal interests of data,and the situation of refusing to perform the information network security management obligation in Article 286,Item 2 of the Criminal Law should be modified to"causing the disclosure of classified information,resulting in serious consequences".Moreover,add"illegal access to classified information,data""illegal analysis of information,data"""tampering with information,data""manipulation of information,data"four cases.In addition,the crime of illegal data analysis and data manipulation should be added to deal with the situation where the actor infringes on the legal interests of data by using generative artificial intelligence.When judging the"serious circumstances"in the crime of illegal data analysis and data manipulation,it may be judged by the number and frequency of illegal analysis and data manipulation by the perpetrator,as well as whether it involves state secrets,trade secrets,securities or futures trading and other information sensitive fields.