| 摘要: | 科技日新月異為人類生活帶來創新與改變,舉例來說,立基於區塊鏈技術之虛擬貨幣對於傳統交易而言,帶來不同思維方式,現今區塊鏈之運用已不限於金融領域,而係以更為全面方式影響人類各生活層面。區塊鏈技術以共識運算機制為核心,該運作模式賦予區塊鏈技術去中心化、難以篡改且高度透明等特質,有利於各種資料之紀錄,同時也與資料保護產生衝擊與矛盾,例如當事人有權利針對其不正確或不完整之個資,要求資料控管者進行更正或刪除,然區塊鏈之不可篡改性恐有礙於資料更正權與刪除權之行使。
有關個人資料保護法制,歐盟於 1995 年所制定之個人資料保護指令,及 2016 年通過之一般資料保護規則(GDPR)不僅加強當事人對其個人資料之控制權,更具備高度監理性質及域外效力,深刻影響其他國家對個人資料保護之立法趨勢。
本研究將以歐盟、美國、德國、日本、中國與我國之法規進行分析,並試圖從區塊鏈本質及其與現行法規範間之矛盾與衝擊為分析主軸,以區塊鏈技術層面可能帶來之爭議,提供法律修正建議,技術層面則以「脫鏈儲存」為解套方式,暫時緩解區塊鏈技術與個資保護法制所產生之衝突,以確保運用新興技術保護個人資料的同時,亦不損及資料當事人之權利。
The rapid development of science and technology has brought innovation and changes to human beings. For example, the virtual currency based on blockchain technology has brought a different way of thinking to traditional transactions. At present, the application of blockchain is not limited to the financial field , but affects all aspects of human life in a more comprehensive way. The blockchain technology takes the consensus computing mechanism as the core, and endows the blockchain technology with the characteristics of decentralization, non-tampering and high transparency. For its incorrect or incomplete personal information, the data controller is required to correct or delete it. However, the immutability of the blockchain may hinder the exercise of the right of data rectification and deletion.
Regarding the legal system of personal data protection, the Personal Data Protection Directive formulated by the European Union in 1995 and the General Data Protection Regulation (GDPR) passed in 2016 not only strengthen the control of the parties over their personal data, but also have a high degree of supervision and extraterritorial effect, which profoundly affects the legislative trend of personal data protection in other countries.
This study will analyze the regulations of the European Union, the United States, Germany, Japan, China and Taiwan, and try to analyze the nature of the blockchain and its contradictions and impacts with existing laws and regulations as the main axis of the analysis. At the technical level, "off-chain storage" is used as a solution to temporarily alleviate the conflict between blockchain technology and personal data protection legal system, so as to ensure the use of emerging technologies to protect personal data at the same time, but also to safeguard the rights of the data subject. |
