《電子技術應用》
您所在的位置:首頁 > 其他 > 設計應用 > 數(shù)據(jù)要素下的數(shù)據(jù)安全合規(guī)風險與對策建議
數(shù)據(jù)要素下的數(shù)據(jù)安全合規(guī)風險與對策建議
網(wǎng)絡安全與數(shù)據(jù)治理
王冬梅1,譚睿1,魏偉2,李宏輝3,許朝1
1.徐州市大數(shù)據(jù)管理中心; 2.中電數(shù)創(chuàng)(北京)科技有限公司; 3.中電數(shù)據(jù)產(chǎn)業(yè)集團有限公司
摘要: 隨著數(shù)據(jù)流通交易市場活動日趨頻繁,數(shù)據(jù)安全合規(guī)的重要性日益突出。數(shù)據(jù)安全合規(guī)不僅是數(shù)字經(jīng)濟發(fā)展的關鍵所在,更與國家和地區(qū)的安全發(fā)展緊密相關。然而,受多重復雜因素的影響,當前數(shù)據(jù)安全合規(guī)管理仍然面臨著缺乏有效監(jiān)管機制的問題。分析總結(jié)國內(nèi)數(shù)據(jù)安全合規(guī)體系建設現(xiàn)狀和存在的問題,借鑒歐美在數(shù)據(jù)安全合規(guī)體系構(gòu)建的經(jīng)驗,提出構(gòu)建數(shù)據(jù)安全合規(guī)管理體系的建議,通過完善數(shù)據(jù)分類分級管理、建立監(jiān)督管理規(guī)則、強化數(shù)據(jù)流通管理要求、加強流通基礎設施建設和安全保障等多重機制,進一步完善數(shù)據(jù)安全合規(guī)管理,為經(jīng)濟社會的快速發(fā)展提供堅實的支撐。
中圖分類號:F49;G203文獻標識碼:ADOI:10.19358/j.issn.2097-1788.2024.12.010
引用格式:王冬梅,譚睿,魏偉,等. 數(shù)據(jù)要素下的數(shù)據(jù)安全合規(guī)風險與對策建議[J].網(wǎng)絡安全與數(shù)據(jù)治理,2024,43(12):67-73,87.
Data security compliance risks and countermeasures under the data elements
Wang Dongmei1,Tan Rui1,Wei Wei2,Li Honghui3,Xu Chao1
1.Xuzhou Big Data Management Center; 2.China Electronics Digital Innovation; 3.China Electronics Data Corporation
Abstract: In light of the growing prevalence of market activities in data circulation and trading, the importance of data security compliance becomes more prominent, which is not only a crucial factor in the advancement of the digital economy, but also closely intertwined with the security development of countries and regions. However, the current management of data security compliance still confronts with the challenge of ineffective regulatory mechanisms due to the multiple and complex factors. On this issue, this article presents an analysis and summary of the current status and problems in the construction of domestic data security compliance systems. Drawing on the experience of Europe and the United States in building data security compliance systems, this article proposes improvements to the data security compliance management system, including the multiple mechanisms of improving data classification and grading management, establishing supervision and management rules, strengthening data circulation management requirements, enhancing the construction of data circulation infrastructure, ensuring data security and so on. Through these mechanisms, we can further perfect the data security compliance management, and provide solid support for the rapid development of the economy and society.
Key words : data elements; data security compliance; data security compliance management

引言

當今數(shù)字化社會,數(shù)據(jù)已成為一種重要的戰(zhàn)略資源,數(shù)據(jù)相關技術快速發(fā)展,數(shù)據(jù)的采集、處理、分析和開發(fā)利用已成為推動數(shù)字經(jīng)濟發(fā)展的重要方式。與此同時,數(shù)據(jù)安全合規(guī)問題也日益凸顯,損害各方數(shù)據(jù)權(quán)益事件頻發(fā)[1]?!吨泄仓醒?國務院關于構(gòu)建數(shù)據(jù)基礎制度更好發(fā)揮數(shù)據(jù)要素作用的意見》明確,數(shù)據(jù)安全和合規(guī)是數(shù)據(jù)要素流通的基石,是開展數(shù)據(jù)流通利用的關鍵支撐。因此,加強數(shù)據(jù)安全合規(guī)管理已成為政府和企業(yè)面臨的重要任務。為保障數(shù)據(jù)安全,國家近年來一直致力于建立數(shù)據(jù)安全體系,加強對各類數(shù)據(jù)利用主體的管理[2]。同時,中央和地方制定出臺了多部涉及數(shù)據(jù)安全合規(guī)的法律法規(guī)和政策文件,規(guī)范數(shù)據(jù)的收集、存儲、處理、傳輸和利用等數(shù)據(jù)全生命周期行為,保護各類主體數(shù)據(jù)權(quán)益,加強對數(shù)據(jù)安全的監(jiān)管和執(zhí)法力度,對違反數(shù)據(jù)安全規(guī)定的行為進行嚴厲打擊和處罰[3]。這些措施的實施,為數(shù)據(jù)的安全合規(guī)和利用提供了有力保障。然而,數(shù)據(jù)要素與其他生產(chǎn)要素不斷融合,數(shù)據(jù)加速滲透各行各業(yè),部分企業(yè)和機構(gòu)為追求商業(yè)利益,往往忽視數(shù)據(jù)安全合規(guī)管理,導致數(shù)據(jù)侵權(quán)、數(shù)據(jù)違規(guī)開發(fā)利用、灰色數(shù)據(jù)交易、數(shù)據(jù)違法跨境傳輸?shù)仁录l發(fā),不僅損害了國家、企業(yè)和個人的權(quán)益,也可能會嚴重影響社會經(jīng)濟穩(wěn)定發(fā)展[4]。因此,各地亟待進一步落實國家法律法規(guī)要求,構(gòu)建完善政府、企業(yè)和社會多方協(xié)同參與的數(shù)據(jù)安全合規(guī)管理體系,加強對數(shù)據(jù)開發(fā)利用主體的監(jiān)管,確保數(shù)據(jù)的合規(guī)利用和安全可控。


本文詳細內(nèi)容請下載:

http://ihrv.cn/resource/share/2000006269


作者信息:

王冬梅1,譚睿1,魏偉2,李宏輝3,許朝1 

(1.徐州市大數(shù)據(jù)管理中心,江蘇徐州221018;

2.中電數(shù)創(chuàng)(北京)科技有限公司,北京100190;

3.中電數(shù)據(jù)產(chǎn)業(yè)集團有限公司,廣東深圳518057)


Magazine.Subscription.jpg

此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。