人脸数据非应然性扩散危机的控源型法律应对  

作　　者：曾梦 杨希 Zeng Meng;Yang Xi

机构地区：[1]中国人民大学法学院 [2]华威大学 [3]浙江大学教育学院 [4]伦敦大学学院

出　　处：《兰州学刊》2025年第2期126-147,共22页

基　　金：中国国家留学基金项目“数据及人工智能的法律规制研究”(项目编号:202306360095);最高人民检察院检察理论研究重点课题“民事强制执行法与民事执行监督制度完善”(项目编号:GJ2023B08)的阶段性研究成果。

摘　　要：在人工智能革命及数据要素市场高速发展的加持下,我国人脸数据的扩散问题已经升级为同时侵害公民人身与财产权益、各经济行业信用基础和整个社会敏感信息安全等的链式综合危机。我国人工智能法及数据私权法的缺位、案件纠纷的频发皆凸显了改善法律规制方法、转换风险防控成本主要承担者的必要性和紧迫性。广泛利用人脸数据的现状既不是人工智能及数据规范的立法原意,亦不是数字时代的应有发展方向。从纵向分析,这是因为人脸数据滥采、滥用的症结是商业资本在营利目的下对相关产业链的加注,而非民商事或教育领域遭遇了必须借助人脸识别技术才能解决的难题;从横向分析,则是因为“技术中立”理念具有局限性、众多人脸数据采集行为违反现行法、保障人脸数据安全的组织准备不足、世界各发达国家普遍限制人脸数据的利用等。鉴于数据泄露结果的难以逆转性,须将当前“治标不治本”的法律规制路径朝“控源型”调整,重新平衡人脸数据利用的“便利性”与“必要性、风险性”之间的关系。具体方案包括确定人脸数据的司法规制基调,否定人脸数据的市场流通性,重构人脸数据授权许可的认定标准,搭建监管人脸数据的组织框架,改善既有人脸数据库的管理,重视个人信息检察公益诉讼的应用等。从而使得人工智能及数据规范不再停留在被动的行政监管与行政救济、司法救济环节,而是主动嵌合于信息技术的实务操作流程中。Under the rapid development of the artificial intelligence(AI)revolution and the data-driven market,the issue of facial data diffusion in China has escalated into a complex chain crisis,impacting citizens’personal and property rights,the credit foundations of various economic sectors,and the security of sensitive societal information.The absence of AI law and data privacy law,coupled with the frequent occurrence of disputes,underscores the necessity and urgency of improving legal regulatory methods and shifting the primary burden of risk prevention costs.The current widespread use of facial data neither aligns with the original legislative intent of AI and data regulations nor represents the appropriate developmental direction in the digital age.A longitudinal analysis reveals that the crux of the issue lies in the overexploitation and misuse of facial data driven by commercial capital’s investment in the relevant industrial chain for profit,rather than in the resolution of indispensable challenges in civil,commercial,or educational fields that can only be addressed by facial recognition technology.A cross-sectional analysis shows that this is due to the limitations of the"technology neutrality"concept,the widespread violations of existing laws by numerous facial data collection activities,the insufficient organizational preparedness for facial data security,and the universal restrictions on the use of facial data in developed countries worldwide.Given the irreversibility of data breaches,it is imperative to adjust the current“symptomatic treatment”legal regulatory approach towards a“traceability”approach and to rebalance the relationship between the“convenience”of facial data use and its“necessity and risk.”The corresponding solutions include establishing the judicial regulatory tone for facial data,negating the market circulation of facial data,reconstructing the standards for recognizing facial data authorization and licensing,establishing a framework for a facial data regulatory organizati

关 键 词：人脸数据 人脸识别 人工智能 数据法 人工智能法 数据市场 

分 类 号：TP18[自动化与计算机技术—控制理论与控制工程] D922.17[自动化与计算机技术—控制科学与工程]