全球数据安全倡议
Global Initiative on Data Security
信息技术革命日新月异,数字经济蓬勃发展,深刻改变着人类生产生活方式,对各国经济社会发展、全球治理体系、人类文明进程影响深远。
The phenomenal development of information technology revolution and digital economy is transforming the way of production and life, exerting far-reaching influence over social and economic development of States, global governance system and human civilization.
作为数字技术的关键要素,全球数据爆发增长,海量集聚,成为实现创新发展、重塑人们生活的重要力量,事关各国安全与经济社会发展。
The explosive growth and aggregation of data, as a key element of digital technology, has played a crucial role in facilitating innovative development and reshaping people’s lives, bearing on security and economic and social development of States.
在全球分工合作日益密切的背景下,确保信息技术产品和服务的供应链安全对于提升用户信心、保护数据安全、促进数字经济发展至关重要。
In the context of closer global cooperation and new development of international division of labor, maintaining supply chain security of ICT products and services has never become more important for boosting users’ confidence, ensuring data security and promoting digital economy.
我们呼吁各国秉持发展和安全并重的原则,平衡处理技术进步、经济发展与保护国家安全和社会公共利益的关系。
We call on all States to put equal emphasis on development and security, and take a balanced approach to technological progress, economic development and protection of national security and public interests.
我们重申,各国应致力于维护开放、公正、非歧视性的营商环境,推动实现互利共赢、共同发展。与此同时,各国有责任和权利保护涉及本国国家安全、公共安全、经济安全和社会稳定的重要数据及个人信息安全。
We reaffirm that States should foster an open, fair and non-discriminatory business environment for mutual benefit, win-win outcomes and common development. At the same time, States have the responsibility and right to ensure the security of important data and personal information bearing on their national security, public security, economic security and social stability.
我们欢迎政府、国际组织、信息技术企业、技术社群、民间机构和公民个人等各主体秉持共商共建共享理念,齐心协力促进数据安全。
We welcome governments, international organizations, ICT companies, technology communities, civil organizations, individuals and all other actors to make concerted efforts to promote data security under the principle of extensive consultation, joint contribution and shared benefits.
我们强调,各方应在相互尊重基础上,加强沟通交流,深化对话与合作,共同构建和平、安全、开放、合作、有序的网络空间命运共同体。为此,我们倡议:
We underscore that all parties should step up dialogue and cooperation on the basis of mutual respect, and join hands to forge a community with a shared future in cyberspace featuring peace, security, openness, cooperation and order. To make this happen, we would like to suggest the following:
——各国应以事实为依据全面客观看待数据安全问题,积极维护全球信息技术产品和服务的供应链开放、安全、稳定。
– States should handle data security in a comprehensive, objective and evidence-based manner, and maintain an open, secure and stable supply chain of global ICT products and services.
——各国反对利用信息技术破坏他国关键基础设施或窃取重要数据,以及利用其从事危害他国国家安全和社会公共利益的行为。
– States should stand against ICT activities that impair or steal important data of other States’ critical infrastructure, or use the data to conduct activities that undermine other States’ national security and public interests.
——各国承诺采取措施防范、制止利用网络侵害个人信息的行为,反对滥用信息技术从事针对他国的大规模监控、非法采集他国公民个人信息。
– States should take actions to prevent and put an end to activities that jeopardize personal information through the use of ICTs, and oppose mass surveillance against other States and unauthorized collection of personal information of other States with ICTs as a tool.
——各国应要求企业严格遵守所在国法律,不得要求本国企业将境外产生、获取的数据存储在境内。
– States should encourage companies to abide by laws and regulations of the State where they operate. States should not request domestic companies to store data generated and obtained overseas in their own territory.
——各国应尊重他国主权、司法管辖权和对数据的安全管理权,未经他国法律允许不得直接向企业或个人调取位于他国的数据。
– States should respect the sovereignty, jurisdiction and governance of data of other States, and shall not obtain data located in other States through companies or individuals without other States’ permission.
——各国如因打击犯罪等执法需要跨境调取数据,应通过司法协助渠道或其他相关多双边协议解决。国家间缔结跨境调取数据双边协议,不得侵犯第三国司法主权和数据安全。
– Should States need to obtain overseas data out of law enforcement requirement such as combating crimes, they should do it through judicial assistance or other relevant multilateral and bilateral agreements. Any bilateral data access agreement between two States should not infringe upon the judicial sovereignty and data security of a third State.
——信息技术产品和服务供应企业不得在产品和服务中设置后门,非法获取用户数据、控制或操纵用户系统和设备。
– ICT products and services providers should not install backdoors in their products and services to illegally obtain users’ data, control or manipulate users’ systems and devices.
——信息技术企业不得利用用户对产品依赖性谋取不正当利益,强迫用户升级系统或更新换代。产品供应方承诺及时向合作伙伴及用户告知产品的安全缺陷或漏洞,并提出补救措施。
– ICT companies should not seek illegitimate interests by taking advantage of users’ dependence on their products, nor force users to upgrade their systems and devices. Products providers should make a commitment to notifying their cooperation partners and users of serious vulnerabilities in their products in a timely fashion and offering remedies.
我们呼吁各国支持并通过双边或地区协议等形式确认上述承诺,呼吁国际社会在普遍参与的基础上就此达成国际协议。欢迎全球信息技术企业支持本倡议。
We call on all States to support this initiative, and confirm the aforementioned commitments through bilateral, regional and international agreements. We also welcome global ICT companies to support this initiative.