论个人信息保护负责人——以《个人信息保护法》第52条为中心  被引量：1

作　　者：刘权[1] LIU Quan(Law School of Central University of Finance and Economics,Beijing 100081)

机构地区：[1]中央财经大学法学院,北京100081

出　　处：《行政法学研究》2024年第5期116-131,共16页Administrative Law Review

摘　　要：数字时代新兴的个人信息保护负责人制度,是强化个人信息处理者自我规制以弥补政府规制缺陷的现实需要。通过对个人信息处理活动以及采取的保护措施等进行监督,个人信息保护负责人制度可以促进个人信息处理合规,推动个人信息保护的公私合作治理。应区分个人信息的类型和级别,设置不同的个人信息处理数量标准,并明确公共机构必须设立个人信息保护负责人。个人信息保护负责人的资质不明,且职位名称存在缺陷,易导致监督职责和非监督职责的合一。为了能够独立有效地监督个人信息处理者,应充分保障个人信息保护负责人的知情权、提供必要的履职资源、使其能够便利地向最高管理层报告、禁止兼任与监督职责相冲突的职位。个人信息保护负责人不是个人信息保护的直接责任人,只应承担监督责任。The emergence of emerging person in charge of personal information protection in the digital age is a realistic need to strengthen the self-regulation of personal information processors to make up for the lack of government supervision.By supervising personal information processing activities and the protection measures taken,the system of person in charge of personal information protection can promote the compliance of personal information processing and promote the coordinated governance of personal information protection.Different standards for the amount of personal information processed should be set according to the type and level of personal information,and it should be clarified that public institutions must appoint a person in charge of personal information protection.The qualifications of the person in charge of personal information protection are unclear,and the title has defects,which may easily lead to the integration of supervisory and non-supervisory duties.In order to be able to independently and effectively supervise personal information processors,the right to know of the person in charge of personal information protection should be fully guaranteed,necessary resources to perform duties should be provided,and they should be able to report to the top management conveniently,and concurrent positions that conflict with supervisory duties should be prohibited.The person in charge of personal information protection is not directly responsible for personal information protection,and should only assume supervisory responsibility.

关 键 词：个人信息保护负责人 自我规制 数据保护官 个人信息处理合规 

分 类 号：D922.16[政治法律—宪法学与行政法学]