| ISO/IEC 27032 states that application security is a process performed to control application itself,its data,and actors involved in the application's life cycle to manage the risk of using them.According to essence of application security,collecting,obtaining,using of application data cause various legal disputes,but the legal protection of the data rights of application users and providers in our laws is not yet complete.The article clarifies that personal data has the quality of property and personal,application users identified by the personal data have privacy rights to undisclosed personal data,also have data rights to personal data.Application providers who fail to comply with the rules of collection and usage of personal data and fail to fulfill the obligations of personal data protection,may infringe the aforementioned rights of application users.Application providers have data rights to the user data that it legally collects and uses.The source of the data right is limited to the data rights enjoyed by the application user.The illegal capture of application providers' user data by others violates their legal rights.The article proposes to strengthen the protection of network data and personal data through legislation,construction of application security standardization systems and other measures,and then ensure application security. |
PDF Full Text Request