以“最小必要原则”弥合电商语境下知情同意规则的漏洞——基于隐私政策的实证研究
Bridging the Loopholes of the Informed Consent Rule in the E‑Commerce Context Via the “Minimum Necessary Principle”—An Empirical Study Based on Privacy Policies
摘要: 随着数字经济快速发展,电商平台在处理用户个人信息过程中面临的合规性问题日益突出。基于知情同意规则构建的隐私政策是企业保护个人信息的核心文本,但目前面临巨大的隐患和风险。最小必要原则作为兜底性条款和个人信息处理的基本原则可有效弥补知情同意规则的不足,完善平台的信息保护体系。本研究以最小必要原则为核心视角,采用BERTopic等自然语言处理技术对179份隐私政策文本进行系统性实证分析,旨在揭示电商平台隐私政策的文本特征、主题分布及情感倾向,并探索其与非电商平台的差异性表现。基于实证研究,提出规范最小必要内涵、改良隐私政策文本、强化用户自主权利、完善监督管理体系的优化进路。
Abstract: With the rapid development of the digital economy, compliance issues encountered by e‑commerce platforms in the processing of users’ personal information have become increasingly prominent. Privacy policies, established on the basis of the rule of informed consent, serve as the core legal instrument for enterprises to protect personal information, yet they currently face significant barriers and risks. As a catch‑all provision and a fundamental principle governing personal information processing, the Minimum Necessary Principle can effectively remedy the deficiencies of the informed consent rule and improve the information protection system of platforms. Taking the minimum necessary principle as the core perspective, this study adopts natural language processing technologies such as BERTopic model to conduct a systematic empirical analysis of 179 privacy policy texts. It aims to reveal the textual characteristics, topic distribution and sentiment tendencies of privacy policies on e‑commerce platforms, and further explore their differences compared with non‑e‑commerce platforms. Based on the empirical findings, this paper proposes that platforms and regulators clarify the connotation of the Minimum Necessary Principle, improve the drafting of privacy policy texts, strengthen users’ autonomous rights, and perfect the supervision and management system.
参考文献
|
[1]
|
齐爱民. 信息法原论[M]. 武汉: 武汉大学出版社, 2010: 58.
|
|
[2]
|
田野. 大数据时代知情同意原则的困境与出路——以生物资料库的个人信息保护为例[J]. 法制与社会发展, 2018, 24(6): 111-136.
|
|
[3]
|
Cranor, L.F. (2012) Necessary but Not Sufficient: Standardized Mechanisms for Privacy Notice and Choice. Journal on Telecommunications and High Technology Law, 10, 273-274.
|
|
[4]
|
程啸. 个人信息范围的界定与要件判断[J]. 武汉大学学报(哲学社会科学版), 2024, 77(4): 128-140.
|
|
[5]
|
吕炳斌. 个人信息保护的“同意”困境及其出路[J]. 法商研究, 2021(2): 87-101.
|
|
[6]
|
王井怀, 刘惟真. “我已阅读并同意”? 你没读过的App用户协议有哪些“坑”? [EB/OL]. 新华网.
https://www.xinhuanet.com/tech/20220315/f80afab47172488bb12445d5016135e4/c.html, 2022-03-15.
|
|
[7]
|
张新宝. 个人信息收集: 告知同意原则适用的限制[J]. 比较法研究, 2019(6): 1-20.
|
|
[8]
|
刘洋, 柳卓心, 金昊, 等. 基于BERTopic模型的用户层次化需求及动机分析——以抖音平台为例[J]. 情报杂志, 2023, 42(12): 159-167.
|
|
[9]
|
徐淑高, 王纤阳, 蒋卫威, 等. 基于UMAP与HDBSCAN的北京市极端暴雨时空动态分布规律研究[J]. 北京师范大学学报(自然科学版), 2023, 59(2): 269-279.
|
|
[10]
|
妍妍, 秦兵, 刘挺. 文本情感分析[J]. 软件学报, 2010(8): 1834-1848.
|
|
[11]
|
周毅, 陈必坤, 马江华, 等. 基于文本量化分析的我国公共数据治理政策发展研究[J]. 情报学报, 2023, 42(4): 436-452.
|
|
[12]
|
徐绪堪, 李溢, 唐津. 基于LDA主题模型的社交媒体隐私政策合规性评价研究[J]. 科技情报研究, 2024, 6(2): 42-57.
|
|
[13]
|
李延舜. 我国移动应用软件隐私政策的合规审查及完善——基于49例隐私政策的文本考察[J]. 法商研究, 2019, 36(5): 26-39.
|
|
[14]
|
武腾. 最小必要原则在平台处理个人信息实践中的适用[J]. 法学研究, 2021, 43(6): 71-89.
|