| With the rapid development of information technology,it is easier for websites to obtain user information,and their collection data is more and more detailed.However,in recent years,the problem of personal information leakage caused by inadequate protection of websites has become more and more serious.In order to ensure the security of users’ network information,China has promulgated the "Network Security Law of the People’s Republic of China" as the first basic law on network security in China.It has made a principled principle on how network operators collect,process and protect users’ personal information.In order to highlight the operability of the principle requirements in the law,China has also launched a special standard "Information Security Technology Personal Information Security Specification" to explain its relevant provisions.Has the website of our country fulfilled the requirements of relevant laws and regulations at present?Through the research of personal information protection,it is found that most websites in China use privacy policy as an important tool to express their personal information processing and protection attitudes.Therefore,this study takes privacy policy as the observation point of personal information protection level of website,and reflects the status quo of personal information protection of website by investigating the situation that privacy policy meets the specific requirements of the above-mentioned laws and national standards.Based on the specific rules of the "Network Security Law of the People’s Republic of China" and "Information Security Technology Personal Information Security Specification",this study constructs a privacy policy evaluation scale.Fifty-five measurement questions were used to evaluate the compliance of privacy policy from eight dimensions: general provisions of privacy policy,collection,use of personal information,external provision,storage and security,user rights,protection of personal information for minors,cookies and related technical descriptions.Through a survey of the privacy policies of a total of 97 websites in 8 categories,it is found that the current website does not meet the requirements of the legal norms of network information security.The privacy policy of the website has a low degree of compliance with the legal norms.The rate is less than half;and there are big differences in the privacy policies of different types of websites,among which online shopping websites have the best compliance;some websites have richer privacy policies,but in practice,personal information violations frequently occur.The survey also found that China’s website privacy policy has the following problems: First,the design is not user-friendly,affecting the user experience;Second,the privacy policy has become a means of transferring risks to the website,diluting the responsibility of personal information protection;Third,there is deliberate neglect User rights,the issue of placing platform benefits first.The research results reflect that China’s website has a long way to go to protect the user’s personal information.As a personal information controller’s website,the user’s personal information protection attitude needs to change from “passive coping task” to “active responsibility”.More importantly,in the business practice,the relevant commitments in the privacy policy are effectively fulfilled,rather than empty slogans. |
PDF Full Text Request