数据安全认证机构的法律规制
Legal Regulation of Data Security Certification Bodies
朱涵1
作者信息
摘要
数字时代,以数据安全认证机构为代表的第三方规制主体,充分利用市场的力量,弥补了政府规制互联网企业、保护数据安全的缺陷.然而,数据安全认证机构作为分享了公权力的非国家之权力组织,面临着第三方规制的正当性缺失、容易被互联网企业"俘获"等规制失灵的理论与实践困境.在"规制空间"的制度范式中,通过对第三方规制主体的程序性再规制,发挥行业组织的社会性治理能力,引入多元主体的力量,补强第三方规制机构的可问责性,形成政府与私人主体的合作规制治理,发挥"硬法"与"软法"兼施的协调配合作用,达到良好社会性规制的效果,助力实现数据安全风险的整体可控和合规保障.
Abstract
In the Digital Age,the third-party regulatory body,represented by the data security certifi-cation body,makes full use of the market power to make up for the defects of the government regulation of Internet Enterprises and the protection of data security.However,as a non-state authority that shares public power,third-party regulation is facing the lack of legitimacy,easy to be"Captured"by internet enterprises and other regulatory failures of the theory and practice of the predicament.In the system paradigm of"Regu-lation space"through the procedural re-regulation of the third party regulation subject,the social govern-ance ability of trade organizations is brought into play,and the power of multi-subjects is introduced,strengthen the accountability of the third-party regulatory agencies,form the government and private subjects of cooperative regulatory governance,play a role of"Hard law"and"Soft Law"coordination and coopera-tion,achieve good social regulation effect,and help realize the overall control of data security risks and com-pliance assurance.
关键词
数据安全认证/第三方规制/再规制/程序法治Key words
Data Security Authentication/Third Party Regulation/Re-regulation/Rule of Law Proce-dure引用本文复制引用
出版年
2024
NETL
NSTL
万方数据