摘 要:随着个人数据量的增多,公民对个人数据保护意识的不断增强,传统的基于“通知和同意”的个人数据保护方案已无法防范个人数据被恶意分析,售卖的风险,亦无法平衡数据所有者和数据使用者之间的利益。文章深入研究了GDPR 赋予数据主体的各项权利,个人数据确权的必要性以及用于支撑确权的个人数据生命周期理论。根据“自底向上”的个人数据确权方法和区块链技术,提出了可用于确权的个人数据生命周期模型。
关键词:区块链;个人数据;GDPR;数据确权
中图分类号:TP311.1 文献标识码:A 文章编号:2096-4706(2020)10-0154-03
Research on the Theory of Personal Data Right Confirmation and Management Life Cycle
YANG Jiarun
(School of Computer Science and Technology,Tiangong University,Tianjin 300387,China)
Abstract:With the increase of the amount of personal data and the increasing awareness of citizens on personal data protection,the traditional personal data protection scheme based on“notice and consent”can no longer prevent personal data from being maliciously analyzed and sold,nor can it balance the interests of data owners and data users. This paper made an in-depth study of the rights granted to data subjects by GDPR,the necessity of personal data determined and the life cycle theory of personal data used to support the right determined. According to the “bottom-up” method of personal data right determined and the blockchain technology,a life cycle model of personal data that can be used for right determined is proposed.
Keywords:blockchain;personal data;GDPR;data determined
参考文献:
[1] NEWMAN A L. What the“right to be forgotten”means forprivacy in a digital age [J].Science(New York,N.Y.),2015,347(6221):507-508.
[2] ALSHAMMARI M,SIMPSON A. Personal Data Managementfor Privacy Engineering:An Abstract Personal Data Lifecycle Model [EB/OL].[2020-04-02].http://www.cs.ox.ac.uk/files/8946/CS-RR-17-02.pdf.
[3] European Union. General Data Protection Regulation [S/OL].Hamburg:intersoft consulting services AG,2018(2018-05-23).https://gdpr-info.eu/.
[4] JANEČEK V. Ownership of personal data in the Internet ofThings [J].Computer Law & Security Review:The International Journalof Technology Law and Practice,2018,34(5):1039-1052.
[5] SIXT E. Bitcoins und andere dezentrale Transaktionssysteme [M].Wiesbaden:Springer Gabler,2017:189-194.
[6] BENET J. IPFS-Content Addressed,Versioned,P2P FileSystem(DRAFT 3) [J/OL].arXiv:1407.3561 [cs.NI]. (2014-07-14).https://arxiv.org/abs/1407.3561.
[7] ZYSKIND G,ZEKRIFA D M S ,Alex P,et al. DecentralizingPrivacy:Using Blockchain to Protect Personal Data [C]//IEEE Security& Privacy Workshops.IEEE,2015.
[8] TRUONG N B,SUN K,LEE G M,et al. GDPR-CompliantPersonal Data Management:A Blockchain-based Solution [J].IEEETransactions on Information Forensics and Security,2019,15:1746-1761.
[9] TRUONG N B,SUN K,GUO Y. Blockchain-based PersonalData Management: From Fiction to Solution [C]//InternationalSymposium on Network Computing and Applications (NCA 2019),2019.
[10] FABER B,MICHELET G,WEIDMANN N,et al.BPDIMS:A Blockchain-based Personal Data and Identity ManagementSystem [C]//Hawaii International Conference on System Sciences,2019:6855-6864.
作者简介:杨佳润(1996—),男,汉族,河北保定人,硕士研究生,研究方向:区块链技术、个人数据确权与交易。