《電子技術(shù)應(yīng)用》
您所在的位置:首頁(yè) > 其他 > 設(shè)計(jì)應(yīng)用 > 數(shù)據(jù)要素下的數(shù)據(jù)安全合規(guī)風(fēng)險(xiǎn)與對(duì)策建議
數(shù)據(jù)要素下的數(shù)據(jù)安全合規(guī)風(fēng)險(xiǎn)與對(duì)策建議
網(wǎng)絡(luò)安全與數(shù)據(jù)治理
王冬梅1,譚睿1,魏偉2,李宏輝3,許朝1
1.徐州市大數(shù)據(jù)管理中心; 2.中電數(shù)創(chuàng)(北京)科技有限公司; 3.中電數(shù)據(jù)產(chǎn)業(yè)集團(tuán)有限公司
摘要: 隨著數(shù)據(jù)流通交易市場(chǎng)活動(dòng)日趨頻繁,數(shù)據(jù)安全合規(guī)的重要性日益突出。數(shù)據(jù)安全合規(guī)不僅是數(shù)字經(jīng)濟(jì)發(fā)展的關(guān)鍵所在,更與國(guó)家和地區(qū)的安全發(fā)展緊密相關(guān)。然而,受多重復(fù)雜因素的影響,當(dāng)前數(shù)據(jù)安全合規(guī)管理仍然面臨著缺乏有效監(jiān)管機(jī)制的問(wèn)題。分析總結(jié)國(guó)內(nèi)數(shù)據(jù)安全合規(guī)體系建設(shè)現(xiàn)狀和存在的問(wèn)題,借鑒歐美在數(shù)據(jù)安全合規(guī)體系構(gòu)建的經(jīng)驗(yàn),提出構(gòu)建數(shù)據(jù)安全合規(guī)管理體系的建議,通過(guò)完善數(shù)據(jù)分類分級(jí)管理、建立監(jiān)督管理規(guī)則、強(qiáng)化數(shù)據(jù)流通管理要求、加強(qiáng)流通基礎(chǔ)設(shè)施建設(shè)和安全保障等多重機(jī)制,進(jìn)一步完善數(shù)據(jù)安全合規(guī)管理,為經(jīng)濟(jì)社會(huì)的快速發(fā)展提供堅(jiān)實(shí)的支撐。
中圖分類號(hào):F49;G203文獻(xiàn)標(biāo)識(shí)碼:ADOI:10.19358/j.issn.2097-1788.2024.12.010
引用格式:王冬梅,譚睿,魏偉,等. 數(shù)據(jù)要素下的數(shù)據(jù)安全合規(guī)風(fēng)險(xiǎn)與對(duì)策建議[J].網(wǎng)絡(luò)安全與數(shù)據(jù)治理,2024,43(12):67-73,87.
Data security compliance risks and countermeasures under the data elements
Wang Dongmei1,Tan Rui1,Wei Wei2,Li Honghui3,Xu Chao1
1.Xuzhou Big Data Management Center; 2.China Electronics Digital Innovation; 3.China Electronics Data Corporation
Abstract: In light of the growing prevalence of market activities in data circulation and trading, the importance of data security compliance becomes more prominent, which is not only a crucial factor in the advancement of the digital economy, but also closely intertwined with the security development of countries and regions. However, the current management of data security compliance still confronts with the challenge of ineffective regulatory mechanisms due to the multiple and complex factors. On this issue, this article presents an analysis and summary of the current status and problems in the construction of domestic data security compliance systems. Drawing on the experience of Europe and the United States in building data security compliance systems, this article proposes improvements to the data security compliance management system, including the multiple mechanisms of improving data classification and grading management, establishing supervision and management rules, strengthening data circulation management requirements, enhancing the construction of data circulation infrastructure, ensuring data security and so on. Through these mechanisms, we can further perfect the data security compliance management, and provide solid support for the rapid development of the economy and society.
Key words : data elements; data security compliance; data security compliance management

引言

當(dāng)今數(shù)字化社會(huì),數(shù)據(jù)已成為一種重要的戰(zhàn)略資源,數(shù)據(jù)相關(guān)技術(shù)快速發(fā)展,數(shù)據(jù)的采集、處理、分析和開(kāi)發(fā)利用已成為推動(dòng)數(shù)字經(jīng)濟(jì)發(fā)展的重要方式。與此同時(shí),數(shù)據(jù)安全合規(guī)問(wèn)題也日益凸顯,損害各方數(shù)據(jù)權(quán)益事件頻發(fā)[1]?!吨泄仓醒?國(guó)務(wù)院關(guān)于構(gòu)建數(shù)據(jù)基礎(chǔ)制度更好發(fā)揮數(shù)據(jù)要素作用的意見(jiàn)》明確,數(shù)據(jù)安全和合規(guī)是數(shù)據(jù)要素流通的基石,是開(kāi)展數(shù)據(jù)流通利用的關(guān)鍵支撐。因此,加強(qiáng)數(shù)據(jù)安全合規(guī)管理已成為政府和企業(yè)面臨的重要任務(wù)。為保障數(shù)據(jù)安全,國(guó)家近年來(lái)一直致力于建立數(shù)據(jù)安全體系,加強(qiáng)對(duì)各類數(shù)據(jù)利用主體的管理[2]。同時(shí),中央和地方制定出臺(tái)了多部涉及數(shù)據(jù)安全合規(guī)的法律法規(guī)和政策文件,規(guī)范數(shù)據(jù)的收集、存儲(chǔ)、處理、傳輸和利用等數(shù)據(jù)全生命周期行為,保護(hù)各類主體數(shù)據(jù)權(quán)益,加強(qiáng)對(duì)數(shù)據(jù)安全的監(jiān)管和執(zhí)法力度,對(duì)違反數(shù)據(jù)安全規(guī)定的行為進(jìn)行嚴(yán)厲打擊和處罰[3]。這些措施的實(shí)施,為數(shù)據(jù)的安全合規(guī)和利用提供了有力保障。然而,數(shù)據(jù)要素與其他生產(chǎn)要素不斷融合,數(shù)據(jù)加速滲透各行各業(yè),部分企業(yè)和機(jī)構(gòu)為追求商業(yè)利益,往往忽視數(shù)據(jù)安全合規(guī)管理,導(dǎo)致數(shù)據(jù)侵權(quán)、數(shù)據(jù)違規(guī)開(kāi)發(fā)利用、灰色數(shù)據(jù)交易、數(shù)據(jù)違法跨境傳輸?shù)仁录l發(fā),不僅損害了國(guó)家、企業(yè)和個(gè)人的權(quán)益,也可能會(huì)嚴(yán)重影響社會(huì)經(jīng)濟(jì)穩(wěn)定發(fā)展[4]。因此,各地亟待進(jìn)一步落實(shí)國(guó)家法律法規(guī)要求,構(gòu)建完善政府、企業(yè)和社會(huì)多方協(xié)同參與的數(shù)據(jù)安全合規(guī)管理體系,加強(qiáng)對(duì)數(shù)據(jù)開(kāi)發(fā)利用主體的監(jiān)管,確保數(shù)據(jù)的合規(guī)利用和安全可控。


本文詳細(xì)內(nèi)容請(qǐng)下載:

http://theprogrammingfactory.com/resource/share/2000006269


作者信息:

王冬梅1,譚睿1,魏偉2,李宏輝3,許朝1 

(1.徐州市大數(shù)據(jù)管理中心,江蘇徐州221018;

2.中電數(shù)創(chuàng)(北京)科技有限公司,北京100190;

3.中電數(shù)據(jù)產(chǎn)業(yè)集團(tuán)有限公司,廣東深圳518057)


Magazine.Subscription.jpg

此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。