摘要
隐私保护政策是应对移动健康市场中个人信息滥用及泄露问题的核心举措,现有研究对健康APP中隐私保护政策的关注较少,缺乏面向健康APP隐私保护政策文本的专门解读。文章以5类代表性健康APP为例,以《信息安全技术个人信息安全规范》为框架,对其隐私保护政策进行内容分析。研究发现:我国个人信息保护政策未明确违规处罚措施;健康APP的隐私保护政策多数未达到个人信息安全的规范标准;健康APP企业较少设立单独的用户隐私团队或部门;未成年信息保护是国内健康APP隐私保护政策中的薄弱环节。应制定面向隐私权保护的系统性法律法规,确保隐私保护政策法律法规的底层实施,构建企事业单位隐私保护组织与制度,细化未成年隐私保护政策。
Privacy protection policy is the core measure to deal with abuses and disclosure of personal information.However,existing studies do not pay sufficient attention to privacy protection in health apps and there is a lack of research on related policies.Taking representative health apps as examples,this study analyzes the contents of privacy protection policies based on Information Security Technology—Personal Information Security Specification.It is found that privacy protection policies in China do not specify the penalties for violation.Most policies do not meet the personal information security standards.Health app companies rarely have separated data privacy teams or departments.Protection of underage personal information is also weak today.In addressing these problems,there are needs to formulate systemic laws for privacy protection,ensure related policies and regulations be implemented,facilitate setting up privacy protection departments and systems in enterprises and institutions,and strengthen privacy protection policies for the underage.
作者
付少雄
赵安琪
FU Shaoxiong;ZHAO Anqi
出处
《图书馆论坛》
CSSCI
北大核心
2019年第12期109-118,共10页
Library Tribune
关键词
健康APP
隐私保护
隐私政策
个人信息
未成年保护
health apps
data protection
privacy protection policies
personal information
underage protection