大數據時代下被遺忘權之發展與權利面向-建構資料主體之個人資料保護模式

Abstract

於現今數位時代，大數據科技早已廣泛應用於我們生活中。我們享受大數據科技所帶來之便利生活時，此科技同時也對我們生活產生極大的影響。大數據科技所產生之最嚴重之問題，便是隱私方面的衝擊。尤其於數位時代下，資訊永不消逝，更成為大數據科技最大之隱憂。大數據科技著實已侵蝕與違背我國個人資料保護法中許多重要原則。 歐盟在2018年正式施行之一般個人資料保護規則(簡稱GDPR)，正是特別針對數位時代下所制定之隱私權保護。尤其於此規則中，正式納入歐盟法院所承認之被遺忘權，藉此強化個人資料之保護。本文首先將以歐盟法院過去曾處理資料是否具識別性之法規與判決出發，因為是否具識別性係該資料是否受GDPR保護之關鍵。本文透過整理歐盟相關法規及歐盟法院判決，藉此梳理出現可供操作之判斷標準，以玆我國法院借鏡。又被遺忘權於歐盟會員國之發展上，歐盟法院、歐洲人權法院、英國國內法院已先後於不同案例中，加以闡述被遺忘權之適用範圍及如何審酌適用被遺忘權，為被遺忘權增添許多可資研究之案例，因此被遺忘權未來的發展，實值得關注。 在台灣法制上，應如何看待被遺忘權?本文經分析後認為，於我國憲法下，被遺忘權實為憲法上之概括基本權之一環，並與憲法上人性尊嚴、隱私權等憲法上已承認之基本權具有密切關係。本文進一步討論我國法院是否承認遺忘權之見解，本文經整理我國相關法院判決後認為，我國法院對於資料是否具識別性定義非常不清，亦否定被遺忘權為我國憲法上基本權利，此種法律解釋方向皆不利於資料主體之個人資料保護。 因此，本文於第五章，將提出建構我國資料主體保護之三種模式，希冀能強化我國資料主體於大數據時代下之個人隱私保護。並且於第六章結論得出本文研究心得，進而供立法者參酌未來個人資料保護修法之方向，以求完善資料主體之個人資料保護。

Nowadays, Big Data technology has been applied to our life in every aspect. Despie of its great convinence, Big Data technology also has a huge impact on our daily life, especially on our privacy. Information can be stored for good, which is the biggest concern in digital era. Big Data technology has indeed eroded and violated the crucial principle of Data Protection Act in our coutry. In 2018, GDPR has finally applied in European Union and it focused on the protection of privacy in digital age. Furthermore, the Right to be Forgotten was enacted in GDPR to fully secure the personal data. There is the applicable standard of CJEU judgement to determine data identificaiton so that we can make sure what personal data is protected by GDPR. As to the developments of the right to be forgotten, there are many cases in CJEU, ECHR, and also the domestic court in UK. Those cases are worth being studied to find out the developments of the right to be forgotten in EU. We can continuously concern the right to be forgotten in the future. In Taiwan, how should we evaluate the right to be forgotten? After analysis, the right to be forgotten is the fundamental right in Constitution. The right to be forgotten is closely connected with the human dignity, the right to privacy but an independent right. This thesis further discusss the court’s view to data identification in Taiwan. According to the previous judgements, there is no clear definition of data identification. Also, the court in Taiwan doesn`t acknowledge the right to be forgotten as the fundamental right in Constitution. Therefore, the personal data lacks full protection under this kind of situation. As a result, in the chapter 5 , this thesis is trying to establish three ways of protection models of data subject in Big Data era. In conclusion, this thesis also points out the ways to improve the security of the personal data in the future.