摘要
在企业数据流通场景下,三重授权原则面临诸多困境,其中个人与企业作为数据主体的利益冲突,以及企业数据客体范围模糊性问题尤为突出。在化解数据主体利益冲突方面,应依据不同情况赋予用户不同程度的个人数据携带权,明确该权利的适用对象,保障企业收益权,并形塑安全可信的数据传输协议,化解数据主体的利益冲突。在明确数据客体范围方面,要明确三重授权原则下不同类型的数据客体,并分别设定适用标准:对于“汇集+分析”得到的个人数据,应绝对适用三重授权原则;对于“收集+存储”得到的个人数据、“收集+存储”得到的非个人数据以及“汇集+分析”得到的非个人数据可相对适用三重授权原则,以此平衡个人与企业数据权益。
In enterprise data circulation scenarios,the principle of Triple Authorization faces many difficulties,especially in the conflict of interests between individuals and enterprises as data subjects,as well as ambiguities in the scope of data objects.To resolve the conflicts of interest among data subjects,varying degrees of data portability rights should be granted to users based on specific scenarios.This entails clarifying the applicable scope of such rights,safeguarding corporate revenue rights,and establishing secure and reliable data transmission protocols to reconcile competing interests.Regarding the clarification of data object boundaries,it is essential to define different types of data objects under the Triple Authorization principle and establish corresponding application criteria:for personal data derived from"aggregation+analysis",the Triple Authorization principle should absolutely apply;for personal data obtained through"collection+storage",non-personal data obtained via"collection+storage",and non-personal data derived from"aggregation+analysis",the Triple Authorization principle may relatively apply,thereby balancing the rights and interests of individuals and enterprises in data governance.
作者
程淑娟
彭天艺
CHENG Shu-juan;PENG Tian-yi(School of Civil and Commercial Law,Northwest University of Political Science and Law,Xi'an 710122,China)
出处
《海南开放大学学报》
2025年第1期136-143,共8页
Journal of Hainan Open University
关键词
三重授权
数据流通
数据抓取
反不正当竞争
triple authorization
data circulation
data scraping
anti-unfair competition
