| 摘要: |
| 同意原则的适用是区块链个人信息保护的难题。区块链技术去中心化、智能合约、共识验证的技术特点,使链上信息权益人的“同意”失之于笼统和概括,为此需要探索链上同意的进程化实现。进程化的同意将区块链处理个人信息区分为上链前与上链后的阶段。“上链前同意”框定了区块链处理个人信息的主要依据,“上链后同意”在权限设定、数据加工、数据审计等不同阶段,赋予权益人给出或者撤回同意的主体资格和行为能力。保障“同意进程”的实现,可以按照个人隐私信息、个人重点信息与个人一般信息的差异,为“拒绝同意”“单独同意”与“同意”提供类型化的支持。“同意”的进程与类型,为链上个人信息保护的实现减轻后顾之忧,使区块链技术迈向更趋人性化的规则治理。 |
| 关键词: 区块链 个人信息 同意原则 进程化 |
| DOI: |
| 分类号: |
| 基金项目:教育部人文社会科学研究青年基金项目“数据分类保护制度的立法优化研究”、北京航空航天大学中央高校基本科研业务经费 |
|
| Problems and Processes of Consent for Personal Information Protection on Blockchain |
|
Kang Ning
|
|
|
| Abstract: |
| The application of the principle of consent is a difficult problem in the protection of personal information on the blockchain. The technical characteristics of decentralization, smart contracts, and consensus verification of blockchain make the “consent” of the information stakeholders on the chain into generalization and obscurity. To solve the problem, the consent “in process” divides the handling of the personal information into the stages of “before on-chain” and “after on-chain”. The “before on-chain” consent defines the main basis for the blockchain to process the personal information, while the “after on-chain” consent gives stakeholders the subject qualification and capacity, in different stages such as permission setting, data processing, and data auditing, to intervene in the technological operation. Besides, the categorization of personal data as privacy, identifier, and generic on the chain, may refine the differences in methods as “disagree”, “timely agree” and “agree”. In view of this, the “processization” and “categorization” of consent will improve the data protections on blockchain by moving towards more humanized rule governance. |
| Key words: Blockchain, Personal Information, Consent, Process |
