《電子技術(shù)應(yīng)用》
您所在的位置:首頁(yè) > 其他 > 设计应用 > 数据要素市场下的企业数据合规指引研究
数据要素市场下的企业数据合规指引研究
网络安全与数据治理
程广明1,赵增振2,孔德智1
1.工业和信息化部电子第五研究所; 2.国家信息中心
摘要: 数据是数字经济时代的关键生产要素,是国家基础性战略性资源,如何合规高效地利用数据成为企业打造核心竞争力的关键。数据合规指引不仅明确了数据合规的原则和要求,还提供了具体的实施步骤和最佳实践,帮助企业建立和完善数据合规管理体系。总结了我国各地制定的区域型数据合规指引、行业主管部门制定的行业型数据合规以及场景型数据合规指引的特征,分析了当前区域型数据合规指引发展趋势可能引发的区域割裂风险,以及法律法规之间的不一致给数据合规指引带来的难处,还有监督机制不健全带来的企业数据效果难保障等问题。指出要从全局视角加强统筹协调以构建企业数据合规指引,突出企业数据合规指引对能力建设的指导作用,重在指导企业建立数据合规管理体系,并提出建立合规评审机制促进企业数据合规管理体系建设。
中圖分類號(hào):F49文獻(xiàn)標(biāo)識(shí)碼:ADOI:10.19358/j.issn.2097-1788.2025.03.012
引用格式:程廣明,趙增振,孔德智. 數(shù)據(jù)要素市場(chǎng)下的企業(yè)數(shù)據(jù)合規(guī)指引研究[J].網(wǎng)絡(luò)安全與數(shù)據(jù)治理,2025,44(3):71-76.
Research on enterprise data compliance guidelines in the data factor market
Cheng Guangming1,Zhao Zengzhen2,Kong Dezhi2
1. China Electronic Product Reliability and Environmental Testing Research Institute; 2. State Information Center
Abstract: Data serves as a pivotal production factor in the digital economy era and constitutes a fundamental and strategic resource. Efficient and compliant utilization of data has become crucial for enterprises to build core competitiveness. Data compliance guidelines not only delineate the principles and requirements of data compliance but also provide specific implementation steps and best practices, thereby assisting enterprises in establishing and improving their data compliance management systems. The characteristics of regional, industry-specific, and scenario-specific data compliance guidelines formulated by various regions in China and industry authorities are summarized. It further analyzes potential risks such as regional fragmentation caused by the current development trend of regional data compliance guidelines, difficulties arising from inconsistencies between laws and regulations in formulating these guidelines, and challenges in ensuring effective enterprise data compliance due to an imperfect supervision mechanism. The necessity of strengthening overall coordination from a global perspective is emphasized. This effort aims to construct enterprise data compliance guidelines which should guide capacity building effectively. They must focus on guiding enterprises to establish robust data compliance management systems. A compliance review mechanism should also be established. Together, these measures will promote better enterprise data compliance management systems.
Key words : data factor market; data compliance; compliance guideline; data security

引言

數(shù)據(jù)作為新型生產(chǎn)要素,已快速融入生產(chǎn)、分配、流通、消費(fèi)和社會(huì)服務(wù)管理等各環(huán)節(jié),深刻改變著生產(chǎn)方式、生活方式和社會(huì)治理方式。與此同時(shí),數(shù)據(jù)合規(guī)問題日益凸顯,加強(qiáng)數(shù)據(jù)安全管理已成為政府和企業(yè)面臨的重要任務(wù)。中央和地方制定出臺(tái)了多部涉及數(shù)據(jù)安全合規(guī)的法律法規(guī)和政策文件,規(guī)范數(shù)據(jù)采集、處理、傳輸和利用等數(shù)據(jù)全生命周期行為,為涉及數(shù)據(jù)處理的企業(yè)和個(gè)人等主體設(shè)定了底線[1]。我國(guó)數(shù)據(jù)合規(guī)監(jiān)管目前仍呈現(xiàn)出多頭監(jiān)管的現(xiàn)狀[2-3],國(guó)家互聯(lián)網(wǎng)信息辦公室、公安部、市場(chǎng)監(jiān)管總局等部門開展的跨行業(yè)監(jiān)管,以及工業(yè)和信息化部、中國(guó)銀行保險(xiǎn)監(jiān)督管理委員會(huì)等行業(yè)主管部門在各自監(jiān)管領(lǐng)域內(nèi)開展的數(shù)據(jù)合規(guī)行為監(jiān)管。數(shù)據(jù)合規(guī)指引旨在指導(dǎo)企業(yè)、機(jī)構(gòu)和個(gè)人在進(jìn)行數(shù)據(jù)處理和使用時(shí),遵循國(guó)家法律法規(guī)、行業(yè)規(guī)范以及國(guó)際公約等,確保數(shù)據(jù)的合法性、合規(guī)性和安全性。數(shù)據(jù)合規(guī)指引不僅明確了數(shù)據(jù)合規(guī)的原則和要求,還提供了具體的實(shí)施步驟和最佳實(shí)踐,幫助企業(yè)建立和完善數(shù)據(jù)合規(guī)管理體系,降低法律風(fēng)險(xiǎn),保護(hù)個(gè)人隱私和數(shù)據(jù)安全,提升企業(yè)競(jìng)爭(zhēng)力。


本文詳細(xì)內(nèi)容請(qǐng)下載:

http://ihrv.cn/resource/share/2000006381


作者信息:

程廣明1,趙增振2,孔德智1

(1.工業(yè)和信息化部電子第五研究所,廣東廣州511300;

2.國(guó)家信息中心,北京100045)


Magazine.Subscription.jpg

此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。

相關(guān)內(nèi)容