个人信息保护中知情同意原则的困境与出路

doi:10.13766/j.bhsk.1008-2204.2018.0121

北京航空航天大学学报（社会科学版） ›› 2018, Vol. 31 ›› Issue (3): 13-21.DOI: 10.13766/j.bhsk.1008-2204.2018.0121

个人信息保护中知情同意原则的困境与出路

林洹民

法兰克福大学法学院, 法兰克福 60323

收稿日期:2018-04-13 出版日期:2018-05-25 发布日期:2018-05-30
作者简介:林洹民(1989-),男,山东烟台人,博士研究生,研究方向为民商法和网络法.
基金资助:
国家社会科学基金重大项目（16ZDA075）

Plight and Outlet of Informed Consent Principle in Personal Information Protection

LIN Huanmin

School of Law, Goethe Frankfurt University, Frankfurt am Main 60323, France

Received:2018-04-13 Online:2018-05-25 Published:2018-05-30

摘要/Abstract

摘要：

在大数据的背景下，企业数据活动确实具有越来越重要的社会经济功用。个人信息保护的知情同意原则，不宜追求形式上的绝对化，而应转向更加具体的实质化，以期在真正有效保护个人信息的同时，也鼓励企业更加积极而有效地开展数据活动。一方面，数据活动应获得用户清晰和明确的同意，即使个人一般信息亦然；信息主体的同意应当符合可期待性要求。另一方面，为了实现与数据活动的平衡，应当为数据活动提供必要法律豁免。立法应规定，企业数据活动的正当基础应不限于信息主体的知情同意；此外，还可以通过引入个人信息匿名化可以获得知情同意豁免的方式，鼓励和促进企业在有效开发数据和保护个人信息上齐头并进。

关键词: 个人信息保护, 知情同意, 实质化要求, 法律豁免, 个人信息匿名化

Abstract:

In the context of big data, enterprise data activities do have more and more important socio-economic functions. Instead of pursuing the absolutization of form, informed consent principle of personal information protection should turn to more concrete substance to better protect the information and encourage enterprises to carry out data activities more actively and effectively at the same time. On the one hand, the data activities should obtain clear and explicit censent from the user, even if the general information of the individual is the same; but the consent of the information subject should be in accordance with the expectation. On the other hand, in order to balance the data activities, it is necessary to provide legal exemption for data activities. The legislation should stipulate that the legitimate basis of enterprise data activities should not be limited to the informed consent of the information subject; in addition, the way of obtaining the exemption of informed consent can be obtained by introducing the anonymity of personal information to encourage and promote the enterprise for the better development of data and personal information protection.

Key words: personal information protection, informed consent, materialization, legal immunity, anonymization of personal information

中图分类号:

D912.1

林洹民. 个人信息保护中知情同意原则的困境与出路[J]. 北京航空航天大学学报（社会科学版）, 2018, 31(3): 13-21.

LIN Huanmin. Plight and Outlet of Informed Consent Principle in Personal Information Protection[J]. JOURNAL OF BEIJING UNIVERSITY OF AERONAUTICS AND A, 2018, 31(3): 13-21.

参考文献

[1] 默认选项收集用户信息支付宝连夜道歉[EB/OL].(2018-01-04).https://www.zaobao.com.sg/realtime/china/story20180104-824146.
[2] 马志刚. 以数据权利计算推动信息资产变现.[EB/OL].(2016-03-22).http://www.sray.cn/keji/hulianwang/2016-03-22/50970.html.
[3] 刘梦. 中国Cookie隐私第一案终审:法院判网站不构成侵权[EB/OL].(2015-06-30).http://china.cnr.cn/xwwgf/20150630/t20150630_519018110.shtml.
[4] 维克托·迈尔·舍恩伯格. 大数据时代[M]. 杭州:浙江人民出版社, 2012:25-55.
[5] Jim gray on escience:A Transformed Scientific Method[EB/OL].[2018-04-10].https://www.immagic.com/eLibrary/ARCHIVES/EBOOKS/M091000H.pdf.
[6] OHRTMANN,SCHWIERING. Big data und datenschutz-rechtliche herausforderung und lösungsansätze[J].Neue Juristische Wochenschrift,2014(1):2987.
[7] JOSEF B. Der wert der wahrheit im schatten des rechts auf informationelle selbstbestimmung:Ein beitrag zum zivilrechtlichen ehren-,persönlichkeits-und datenschutz[M]. Berlin:Duncker & Humblot Verlag,1991:149.
[8] CHRISTOPH M.Datenschutz in verwaltungs-und informationssystemen:Zur verhältnismäβigkeit des austausches von individualinformationen in der normvollziehenden verwaltung[M]. München:Oldenbourg Verlag,1976:22.
[9] LUIZ C, YVES P. Privacy and the Regulation of 2012[J]. Computer Law & Security Review,2012(28):255.
[10] DANIEL J S. Understanding privacy[M]. Cambridge:Harvard University Press,2008:117-121.
[11] FTC. Protecting consumer privacy in an era of rapid change[EB/OL].[2018-04-10].https://www.ftc.gov/sites/default/files/documents/reports/federal-trade-commission-report-protecting-consumer-privacy-era-rapid-change-recommendations/120326privacyreport.pdf.
[12] PAUL O. Broken promises of privacy[J]. UCLA Law Review, 2010,57:1701.
[13] PAUL D H,VAGELIS P. The new general data protection regulation:Still asound system for the protection of individuals?[J]. Computer Law & Security Review,2016,32:183.
[14] Article 29 data protection working party,opinion 4/2007 on the concept of personal data,WP 136[EB/OL].(2007-06-20).https://www.clinicalstudydatarequest.com/Documents/Privacy-European-guidance.pdf.
[15] Article 29 data protection working party. Opinion 1/2008 on data protection issues related to search engines (00737/EN/WP 148)[EB/OL].(2008-04-08)http://ec.europa.eu/justice/article-29/documentation/opinion-recommendation/files/2008/wp148_en.pdf.
[16] PAUL S D Solove the PⅡ problem:Privacy and a new concept of personally identifiable information[J]. New York University Law Review,2011,86:1883.
[17] PAUL O. Broken promises of privacy:Responding to the surprising failure of anonymization[J].UCLA Law Review,2010,57:1701-1743.
[18] Michael W. Spheres of justice:A defense of pluralism & equality[M]. Oxford:Basil Blackwel,1983:17-320.
[19] HELEN N. Privacy as contextual integrity[J]. Washington Law Review,2004,79:127-141.
[20] JOHANNES M. Herausforderungen des datenschutzes[J].Neue Juristische Wochenschrift,2012(1):2309.
[21] JEROME H S. End-to-end arguments in system design in:Integrated broadband networks[M].Boston:Artech House,1991:30-41.
[22] JACK G,TIMOTHY W. Who controls the internet:Illusions of a borderless world?[M]. Oxford:Oxford University Press,2006:44-71.
[23] DANIEL B J. Balancing privacy protection with scientific accuracy:Challenges for de-identification practice[EB/OL].(2010-06-15). http://www.lewin.com/~/media/lewin/cer/resources/barth-jones_lewin_cer_symposium_6_15_10.pdf.
[24] IRA R,RONALD L,PAUL S. data mining and internet profiling:Emerging regulatory and technological approaches[J].University of Chicago Law Review,2008,75:268-269.
[25] LAWRENCE L. Code 2.0[M].New York:Basic Books,2006:1-8.
[26] SCHNEIDER,HÄRTING. Datenschutz in Europa-plädoyer für einen neubeginn[J]. Computer Und Recht,2014:306-310.
[27] MARTINI. Big data als herausforderung für den persönlichkeitsschutz und das datenschutzrecht[J]. Deutsches Verwaltungsblatt,2014(1):1481.
[28] PAUL M S,DANIEL J. Solove reconciling personal information in the United States and European Union[J]. California Law Review, 2014,102:87.

个人信息保护中知情同意原则的困境与出路

Plight and Outlet of Informed Consent Principle in Personal Information Protection

RichHTML

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 2

编辑推荐

Metrics

本文评价

[1]	邰江丽. 关于App收集个人信息实务及规范研究[J]. 北京航空航天大学学报（社会科学版）, 2019, 32(4): 7-12.
[2]	周友军. 论中国侵权法上的知情同意规则[J]. 北京航空航天大学学报（社会科学版）, 2011, 24(4): 62-66,93.