| 英文摘要 |
The dossier files of confirmed criminal cases include personal data, for example, characteristics of litigants, or even sensitive ones, like medical records, genetic information, sex life, and criminal records. Through systematic processing in the investigation and trial procedures of judicial authorities, these data may link with other dossiers, and thus constitute personal data files, which are sufficient to identify specific individuals, possible to outline the life images of the data subjects, thereby intervene their rights to information self-determination. This paper focuses on the authorization regulations regarding the activities of criminal courts and argues that current Code of Criminal Procedure lacks appropriate ones, while general regulations, such as the Personal Data Protection Act, are relatively too broad to rely on interpretation. After comparing the EU General Data Protection Regulation (GDPR), EU Directive 2016/680, and relevant provisions of the German Code of Criminal Procedure, this paper proposes solutions: under current regime, judicial authorities can incorporate the Data Protection Impact Assessments (DPIA) framework into their decisions on personal data processing to achieve transparency and facilitate post hoc judicial review. In terms of legislation, this paper suggests that the Eighth Book of the German Code of Criminal Procedure can serve as a reference, with the possibility of adding a Tenth Book to our country's Code of Criminal Procedure and implement safeguards to enhance the the protection of personal data in criminal dossiers. |
本站僅提供期刊文獻檢索。
