信息通信技术与政策

信息通信技术与政策

信息通信技术与政策 ›› 2018, Vol. 44 ›› Issue (9): 74-77.

上一篇    

GDPR实施之后我国应该如何应对

Chinese companies respond after GDPR implementation

  

  • 出版日期:2018-09-15 发布日期:2020-12-15

  • Online:2018-09-15 Published:2020-12-15

摘要: 历经两年过渡期后,被称为欧盟有史以来最严厉的个人信息保护立法《通用数据保护条例》(以下简称GDPR)于2018 年5 月25 日直接在欧盟全体成员国正式生效。2016 年4 月,GDPR经欧盟立法机构通过,对欧盟1995 年制定的《保护个人享有的与个人数据处理有关的权利以及个人数据自由流动的指令》(以下简称95 指令)进行了全面升级,标志着欧盟对个人数据的保护掀开了新篇章。GDPR对我国的企业合规、数据管理、相关立法、对外贸易谈判等都可能产生直接和深远的影响。针对GDPR的相关规定和可能影响,应尽快采取措施,完善企业合规,强化数据安全监管,制定个人信息保护相关立法,并处理好对外贸易谈判等事宜。

关键词: 个人数据, 权利, 合规

Abstract: After two years of transition, the“General Data Protection Regulations”, known as the most stringent personal information protection legislation in the history of the European Union, came into force directly on all members of the European Union on May 25. In April 2016, GDPR was approved by the EU legislature, and the EU's 1995 Directive on the Protection of Individuals' Rights and Personal Data Processing and the Free Flow of Personal Data (hereinafter referred to as the“95 Directive”) was fully upgraded. The European Union has opened a new chapter in the protection of personal data. GDPR may have direct and far-reaching impact on China's corporate compliance, data management, related legislation, and foreign trade negotiations. In response to the relevant regulations and possible impacts of GDPR, measures should be taken as soon as possible to improve corporate compliance, strengthen data security supervision, formulate legislation on personal information protection, and handle foreign trade negotiations.

Key words: personal data, rights, compliance