Core Viewpoint - The frequent disputes over password code sharing reflect a competition for user relationship data among platforms, highlighting the importance of data protection and utilization in the digital economy [1] Group 1: Password Code Sharing and User Relationship Data - Password codes serve as temporary, one-time strings used for identity verification and access, and can facilitate the transfer of user relationship data between platforms [2][3] - Platforms can induce users to share password codes, which contain special identification information, allowing them to map relationships between users and expand their user networks [3] Group 2: Definition of Personal Information - Personal information is defined as data that can identify a specific individual, including names, contact details, and relationship data [4] - User relationship chains, as a reflection of personal contacts, qualify as personal information under legal definitions [4] Group 3: User Consent and Data Sharing - User sharing of password codes does not equate to informed consent for personal data processing, especially when users are incentivized without clear disclosure of data collection practices [5][6] - The practice of "induced sharing" obscures the true nature of data sharing, leading users to believe they are only sharing activity information rather than personal relationship data [6] Group 4: Competitive Interests in User Relationship Data - Platforms invest significant resources in developing and maintaining user relationship data, which should be recognized as a competitive asset [7] - Induced sharing practices can undermine the economic interests of platforms by allowing competitors to access valuable user relationship data without consent [7] Group 5: Importance of User Relationship Data for New Apps - The necessity for new apps to rely on user relationship data from established platforms raises questions about competitive fairness and the obligation to share such data [8] - User relationship data is a competitive resource that platforms are not obligated to share without user consent [8] Group 6: Industry Practices and Business Ethics - Industry norms do not equate to established business ethics, particularly in emerging sectors where practices are still evolving [9] - The prevalence of password code sharing among platforms may reflect a chaotic phase rather than an accepted ethical standard [9] Group 7: Legal Boundaries of Data Acquisition - The legal framework for data acquisition emphasizes the need for compliance with ethical standards and the protection of proprietary data [10][11] - Unauthorized data scraping can constitute unfair competition, necessitating regulatory oversight to protect data rights [11] Group 8: Tolerance Obligations Among Platforms - While platforms may have a tolerance obligation for link-sharing, this does not permit unrestricted access to user relationship data [12] - Unauthorized sharing of user relationship data through incentivized password code sharing harms both the data-holding platform and user privacy, warranting regulatory intervention [12]

Group 1 - Jiangsu Provincial Communication Administration recently released a notice regarding APPs that infringe on user rights, indicating that seven APPs have not completed the required rectifications and must do so by September 29 [1] - The notice includes a list of APPs with issues related to the illegal collection and use of personal information, highlighting the need for compliance with regulations [2] - Among the listed APPs, Donghai Tong, operated by Donghai Securities Co., Ltd., is specifically noted for violating personal information collection regulations [2] Group 2 - Donghai Securities Co., Ltd. was established in 1993 and is a member of the Changzhou Investment Group, primarily engaged in capital market services [3] - The company has a registered capital of approximately 1.86 billion RMB and a paid-in capital of 1.59 billion RMB, indicating a solid financial foundation [3] - Donghai Securities is recognized as one of the earliest comprehensive securities firms in China and has expanded its operations to include 19 branches and over 60 business offices, serving more than one million clients [4]

Core Viewpoint - The case highlights the legal implications of personal information leakage through marketing calls, emphasizing the responsibility of information processors to protect user data and privacy rights [1][4]. Group 1: Case Background - The plaintiff, a broadband user, received a marketing call from someone claiming to be a company employee, which was later found to be from a contractor using a personal phone number [2]. - The plaintiff alleged that the caller had access to sensitive information, such as their phone number and service details, which should only be held by the communication company [2]. Group 2: Court Ruling - The court determined that the communication company failed to implement adequate encryption measures, allowing unauthorized access to user information by contractor staff, constituting an infringement of the plaintiff's privacy rights [3]. - The ruling mandated the communication company to issue a written apology and pay 500 yuan in compensation for emotional distress, while rejecting other claims from the plaintiff [3]. Group 3: Legal Implications - The judge emphasized that information processors must ensure data security and are liable for any infringement caused by unauthorized use of personal information, particularly in marketing contexts [4]. - The ruling reflects a broader trend of increasing scrutiny on how companies manage and protect personal data, especially in light of the Personal Information Protection Law [4][5]. Group 4: Recommendations - Information processors are advised to enhance compliance management and supervision of third-party contractors to prevent unauthorized use of personal data [5]. - Citizens are encouraged to document any instances of harassment or data breaches to protect their rights and contribute to a safer social environment [5].

广发银行南京分行提醒您： 4.免费WiFi易泄露隐私：使用无线WiFi登录网银或者支付宝时，可以通过专门的APP客户端访问。为了 保护自己的个人信息，最好把WiFi连接设置为手动。 1.妥善处置包含个人信息的单据：对于已经废弃包含个人信息的资料，例如快递单、车票、购物小票等 一定要妥善处理好。 2.身份证复印件上要写明用途：在提供身份证复印件时，要在含有身份信息区域注明"本复印件仅供XX 用于XX用途，他用无效"和日期。复印完成后要清除复印机缓存。 小张接到法院的来电，通知其因50万元银行贷款逾期未还被起诉，需立即应诉，小张坚称从未办理过该 贷款。在庭审中，小张发现自己因参与商场"办卡送礼"活动时，被不法分子利用活动流程非法采集人脸 信息、身份证及手机号等敏感数据，由此遭遇"被贷款"。经查证，犯罪团伙通过掌握的个人信息，冒用 小张身份办理信用贷款并转移资金。 3.慎重参加网上调查活动：参与此类活动前，要选择信誉可靠的网站认真核验对方的真实情况，不要贸 然填写导致个人信息泄露。 风险小贴士：保护个人信息安全，就是保护钱袋子！ ...

Core Viewpoint - Jiangsu Provincial Communication Administration emphasizes the protection of user rights and has initiated actions against APPs that violate personal information protection laws [1] Group 1: Regulatory Actions - Jiangsu Provincial Communication Administration has released a report on APPs that infringe on user rights, as part of a series of actions for personal information protection in 2025 [1] - The administration is conducting inspections on financial and utility APPs to address illegal collection and use of personal information [1] Group 2: Compliance Status - As of now, seven APPs have not completed the required rectifications, including three financial software applications [1] - The non-compliant financial APPs include "Shan Yong Hua" from Nanjing Mantanghong Information Technology Co., "Xiao Cheng Borrowing" from Nanjing Lezai Technology Microloan Co., and "Donghai Tong" from Donghai Securities Co. [1]

▲戳蓝色字关注蓝色柳林财税室 欢迎扫描下方二维码关注： 2025年9月15日至21日是国家网络安全宣传周，今年的主题是 "网络安全为人民，网络安全靠人民——以高水平安全守护高质量发展"。数字 时代浪潮下，便利与风险共存，没有网络安全就没有国家安全，让我们同心守好网络家园、共筑安全屏障。 今天我们来看： 读懂《个人信息保护法》，给信息安全加道「法律防护墙」 国家网 读懂《个人信息保护法》 给信息安全加道「法律防护墙」 哪些信息受到法律保护? 个人信息指以电子或其他方式记录 的、能够识别特定自然人的各类信 息（经隐藏个人身份处理后的信息 除外）。常见类型包括但不限于: 基本身份信息 姓名、身份证号码、电话号码等 生物识别信息 \ 指纹、人脸、虹膜等 敏感个人信息 \ 健康生理状态、行踪轨迹、金融账 户等 税务机关在税费征收管理、服务过程 中收集的您的个人信息，如身份信 息、纳税申报 数 据 、 缴 费 记 录 等，均属于《个人信息保护法》保 护范畴。 信息处理必须遵循五大原则 在收集、使用、存储个人信息过程 中，相关组织或机构必须严格遵循下 列原则: 合法正当必要诚信 不得欺骗、误导或强迫个人提供信 息,一切处理 ...

9月18日，工信部通报29款存在侵害用户权益行为的APP。 | 29 | IIZI. 自 \1 \ | 不元ドロリコイツ | ×11 ±4, | 0.0.28 | 违规收集个人信息 | | --- | --- | --- | --- | --- | --- | | | 舰店 | 有限公司 | 程序 | | | 记者注意到，29款APP包括：甜果美甲、pstyle派斯造型、京体通、SIP Cafe咪咪咖啡、江门市中心医院、窝窝外卖、檀力寄存、骑乐时代、童虎旧衣服回 收、Tims天好咖啡、巨好租、西掌勺的小程序、新天地（301277）超市小程序、第一大药房医保购药小程序、索易养生小程序、桂芳推拿、筋斗云外卖 点餐、喜味到外卖、快哒校园|校内外卖、追尚外卖、途简单|行李寄存、订生日蛋糕同城配送-圣思町、金点驿充、松木山自行车俱乐部、心卓零食、果粉 之家手机专营店、猫知己、美佳辰、iKF官方旗舰店。 根据中央网信办、工业和信息化部、公安部、市场监管总局等四部门联合发布的《关于开展2025年个人信息保护系列专项行动的公告》，依据《个人信息 保护法》《网络安全法》《电信条例》《电信和互联网用户个人信息保护规定》等法律法规 ...

在金融消费者服务与保护工作持续强化的背景下，作为数字经济时代消费者获得金融服务的重要渠道， 金融App的合规发展受到关注。 《中国经营报》记者注意到，今年以来，已有多款金融类App因为存在个人信息处理不当的情况被有关 部门通报。 9月初，中国互联网金融协会（以下简称"中互金协会"）发布《关于进一步加强金融领域App自律检查 的通知》表示，依据国家相关法律法规和金融管理部门相关要求，决定进一步加强金融领域App自律检 查工作。 此外，还有一些用户对移动金融App的困惑在于同意收集个人信息，但却不知道如何终止收集。 一位法律人士表示，当前法律框架内的保护手段主要是规定个人信息处理者的义务，以及赋予个人信息 主体权利，相关法定义务包括但不限于：处理个人信息前的告知和获取同意，制定内部管理制度和操作 规程，采取相应的加密、去标识化等安全技术措施，响应个人信息主体的权利请求等。同时，法律也赋 予了个人信息主体知情、决定、查阅、复制、更正、删除、要求解释说明等权利，个人信息主体可随时 行使这些法定权利，以保护其个人合法权益。 记者注意到，在中互金协会第6期通报中，发现有App未向用户提供撤回同意收集个人信息的途径、方 式 ...

个人隐私是重要权益，一旦泄露易引发财产损失。以下案例为大家敲响警钟。 2.接到业务相关来电，务必通过保单上的官方客服电话、官方APP核实，不相信陌生渠道信息。 3.妥善保管保单、身份证等资料，避免随意丢弃含个人信息的单据，防止信息被非法收集。 案例详情： 张先生曾为家人投保意外险。某天，他接到"保险公司客服"来电，对方准确报出其姓名、投保险种及家 庭住址，称可升级保单并返还部分保费，需提供银行卡号和短信验证码确认身份。因信息吻合，张先生 放松警惕，按要求提供了信息。半小时后，他收到银行扣款短信，卡内5000元被转走。联系保险公司官 方客服后，才知是诈骗分子通过非法渠道获取其投保信息，伪造身份实施诈骗。 案例分析： 诈骗分子先通过非法途径收集个人投保信息，利用信息准确性降低受害者防备心，再以"福利升级"为诱 饵，骗取银行卡号、验证码等关键信息，最终完成盗刷。此行为违反《个人信息保护法》，既侵犯隐 私，又涉嫌诈骗犯罪。 风险提示： 1.官方机构不会通过电话、短信索要银行卡验证码、密码等敏感信息，切勿轻易透露。 ...

如今，扫码点餐确实省去了招手喊服务员的麻烦，不少人偏爱这种无需等待、自主选择的便捷方式。然而，伴随而来的却是"点份米线需授权十几项权 限""喝杯奶茶先填手机号"等层出不穷的隐私困扰。事实上，商家宣称的"必要权限"中，绝大部分都并非完成点餐所必需。 此前，齐鲁晚报·齐鲁壹点报道的《扫码点餐狂要十几项手机权限，合理吗？》一文，引发了不少消费者共鸣。事实上，这类问题早已被媒体多次曝光， 行业也发出自律呼吁，监管层面也曾点名批评——今年6月通报的64款问题应用中，喜茶、霸王茶姬、星巴克等品牌赫然在列，其小程序普遍存在2至4项 违规索权行为。中国消费者协会也曾明确指出，仅提供扫码点餐不仅侵害消费者的公平交易权与知情权，还对老年人等群体造成实际点餐障碍。 然而，尽管监管持续关注、消费者质疑不断，但扫码点餐过度索取个人信息现象为何屡禁不止？不少消费者感到困惑：过度索取隐私该如何维权？这事儿 到底该谁管？到底该如何让扫码点餐回归便捷本质，而非成为"索权隐私工具"？ 投诉易解决难 违规成本低成商家"护身符" 从消费者实际维权经历来看，经常遭遇"投诉易、解决难"。事实上，绝大多数人即便对过度索权感到不满，也往往因过程繁琐而放弃维 ...