Observing Recent Foreign Developments upon Bio-medicine、 Marketing Medical Devices、Technology Development Project and the Newest Litigation Trend Concerning the Joint Infringement of Method/Process Patents

Preface Considering that, many countries and regional international organizations already set up ABS system, such as Andean Community, African Union, Association of Southeast Asia Nations (ASEAN), Australia, South Africa, and India, all are enthusiastic with the establishment of the regulations regarding the access management of biological resources and genetic resources. On the other hand, there are still many countries only use traditional and existing conservation-related regulations to manage the access of biological resources. Can Taiwan's regulations comply with the purposes and objects of CBD? Is there a need for Taiwan to set up specific regulations for the management of these access activities? This article plans to present Taiwan's regulations and review the effectiveness of the existing regulations from the aspect of enabling the legal and effective access to biological resources. A recommendation will be made on whether Taiwan should reinforce the management of the bio-resources access activities. Review and Recommendation of the Regulations on the Legal and Effective Access to Taiwan's Biological Rersearch Resources （1）Evaluate the Needs and Benefits before Establishing the Regulation of Access Rights When taking a look at the current development of the regulations on the access of biological resources internationally, we discover that some countries aggressively develop designated law for access, while some countries still adopt existing regulations to explain the access rights. Whether to choose a designated law or to adopt the existing law should depend on the needs of establishing access and benefit sharing system. Can the access and benefit sharing system benefit the functioning of bio-technological research and development activities that link closely to the biological resources? Can the system protect the interests of Taiwan's bio-research results? In Taiwan, in the bio-technology industry, Agri-biotech, Medical, or Chinese Herb Research & Development are the key fields of development. However, the biological resources they use for the researches are mainly supplied from abroad. Hence, the likelihood of violating international bio-piracy is higher. On the contrary, the incidence of international research houses searching for the biological resources from Taiwan is comparatively lower, so the possibility for them to violate Taiwan's bio-piracy is very low. To look at this issue from a different angle, if Taiwan establishes a separate management system for the access of biological resources, it is likely to add more restrictions to Taiwan's bio-tech R&D activities and impact the development of bio-industry. Also, under the new management system, international R&D teams will also be confined, if they wish to explore the biological resources, or conduct R&D and seek for co-operation activities in Taiwan. Not to mention that it is not a usual practice for international R&D teams to look for Taiwan's biological resources. A new management system will further reduce their level of interest in doing so. In the end, the international teams will then shift their focus of obtaining resources from other countries where the regulation on access is relatively less strict. Before Taiwan establishes the regulations on the legal and effective access to bio-research resources, the government should consider not only the practical elements of the principal on the fair and impartial sharing of the derived interests from bio-research resources, but also take account of its positive and negative impacts on the development of related bio-technological industries. Even if a country's regulation on the access and benefit sharing is thorough and comprehensive enough to protect the interests of bio-resource provider, it will, on the contrary, reduce the industry's interest in accessing the bio-resources. As a result, the development of bio-tech industry will be impacted and the resource provider will then be unable to receive any benefits. By then, the goal of establishing the regulation to benefit both the industry and resource provider will not be realized. To sum up, it is suggested to evaluate the suitability of establishing the management system for the access to biological resources through the cost-effect analysis first. And, further consider the necessity of setting up regulations by the access the economic benefits derived from the regulation for both resource provider and bio-tech industry. （2）The Feasibility of Managing the access to Bio-research Resources from existing Regulations As analysed in the previous paragraphs, the original intention of setting up the Wildlife Conservation Act, National Park Law, Forestry Act, Cultural Heritage Preservation Act, and Aboriginal Basic Act is to protect the environment and to conserve the ecology. However, if we utilize these traditional regulations properly, it can also partially help to manage the access to biological resources. When Taiwan's citizens wish to enter specific area, or to collect the biological resources within the area, they need to receive the permit from management authority, according to current regulations. Since these national parks, protection areas, preserved areas, or other controlled areas usually have the most comprehensive collections of valuable biological resources in a wide range of varieties, it is suggested to include the agreements of access and benefit sharing as the mandatory conditions when applying for the entrance permit. Therefore, the principal of benefit sharing from the access to biological resources can be assured. Furthermore, the current regulations already favour activities of accessing biological resources for academic research purpose. This practice also ties in with the international trend of separating the access application into two categories - academic and business. Australia's practice of access management can be a very good example of utilizing the existing regulations to control the access of resources. The management authority defines the guidelines of managing the entrance of control areas, research of resources, and the collection and access of resources. The authority also adds related agreements, such as PIC (Prior Informed Consent), MTA (Material Transfer Agreement), and benefit sharing into the existing guidelines of research permission. In terms of scope of management, the existing regulation does not cover all of Taiwan's bio-research resources. Luckily, the current environmental protection law regulates areas with the most resourceful resources or with the most distinctive and rare species. These are often the areas where the access management system is required. Therefore, to add new regulation for access management on top of the existing regulation is efficient method that utilizes the least administrative resources. This could be a feasible way for Taiwan to manage the access to biological resources. （3）Establish Specific Regulations to Cover the Details of the Scope of Derived Interests and the Items and Percentage of Funding Allocation In addition to the utilization of current regulations to control the access to biological resources, many countries establish specific regulations to manage the biological resources. If, after the robust economic analysis had been done, the country has come to an conclusion that it is only by establishing new regulations of access management the resources and derived interests of biological resources can be impartially shared, the CBD (Convention of Bio Diversity), the Bonn Guidelines, or the real implementation experiences of many countries can be an important guidance when establishing regulations. Taiwan has come up with the preliminary draft of Genetic Resources Act that covers the important aspects of international access guidelines. The draft indicates the definition and the scope of access activities, the process of access applications (for both business and academic purpose), the establishment of standardized or model MTA, the obligation of disclosing the sources of property rights (patents), and the establishment of bio-diversity fund. However, if we observe the regulation or drafts to the access management of the international agreements or each specific country, we can find that the degree of strictness varies and depends on the needs and situations. Generally speaking, these regulations usually do not cover some detailed but important aspects such as the scope of derived interests from biological resources, or the items and percentage of the allocation of bio-diversity fund. Under the regulation to the access to biological resources, in addition to the access fee charge, the impartial sharing of the derived interests is also an important issue. Therefore, to define the scope of interests is extremely important. Any interest that is out of the defined scope cannot be shared. The interest stated in the existing regulation generally refers to the biological resources or the derived business interests from genetic resources. Apart from describing the forms of interest such as money, non-money, or intellectual property rights, the description of actual contents or scope of the interests is minimal in the regulations. However, after realizing the importance of bio-diversity and the huge business potential, many countries have started to investigate the national and international bio-resources and develop a database system to systematically collect related bio-research information. The database comprised of bio-resources is extremely useful to the activities related to bio-tech developments. If the international bio-tech companies can access Taiwan's bio-resource database, it will save their travelling time to Taiwan. Also, the database might as well become a product that generates revenues. The only issue that needs further clarification is whether the revenue generated from the access of database should be classified as business interests, as defined in the regulations. As far as the bio-diversity fund is concerned, many countries only describe the need of setting up bio-diversity funds in a general manner in the regulations. But the definition of which kind of interests should be put into funds, the percentage of the funds, and the related details are not described. As a result, the applicants to the access of bio-resources or the owner of bio-resources cannot predict the amount of interests to be put into bio-diversity fund before they actually use the resources. This issue will definitely affect the development of access activities. To sum up, if Taiwan's government wishes to develop the specific regulations for the access of biological resources, it is advised to take the above mentioned issues into considerations for a more thoroughly described, and more effective regulations and related framework. Conclusion In recent years, it has been a global trend to establish the regulations of the access to and benefit sharing of bio-resources. The concept of benefit sharing is especially treated as a useful weapon for the developing countries to protect the interests of their abundant bio-research resources. However, as we are in the transition period of changing from free access to biological resources to controlled access, we are facing different regulations within one country as well as internationally. It will be a little bit disappointing for the academic research institution and the industry who relies on the biological resources to conduct bio-tech development if they do not see a clear principal direction to follow. The worse case is the violation of the regulation of the country who owns the bio-resources when the research institutions try to access, exchange, or prospect the biological resources without thorough understanding of related regulations. For some of Taiwan's leading fields in the bio-tech industry, such as Chinese and herbal medicine related products, agricultural products, horticultural products, and bio-tech products, since many resources are obtained from abroad, the incidence of violation of international regulation will increase, and the costs from complying the regulations will also increase. Therefore, not only the researcher but also the government have the responsibility to understand and educate the related people in Taiwan's bio-tech fields the status of international access management regulations and the methods of legally access the international bio-research resources. Currently in Taiwan, we did not establish specific law to manage the access to and benefit sharing of bio-resources. Comparing with the international standard, there is still room of improvement for Taiwan's regulatory protection to the provider of biological resources. However, we have to consider the necessity of doing so, and how to do the improvement. And Taiwan's government should resolve this issue. When we consider whether we should follow international trend to establish a specific law for access management, we should always go back to check the potential state interests we will receive and take this point into consideration. To define the interests, we should always cover the protection of biological resources, the development of bio-tech industry, and the administrative costs of government. Also the conservation of biological resources and the encouragement of bio-tech development should be also taken into consideration when the government is making decisions. In terms of establishing regulations for the access to biological resources and the benefit sharing, there are two possible solutions. The first solution is to utilize the existing regulations and add the key elements of access management into the scope of administrative management. The work is planned through the revision of related current procedures such as entrance control of controlled areas and the access of specific resources. The second solution is to establish new regulations for the access to biological resources. The first solution is relatively easier and quicker; while the second solution is considered to have a more comprehensive control of the issue. The government has the final judgement on which solution to take to generate a more effective management of Taiwan's biological resources.

Impact of Government Organizational Reform to Research Legal System and Response Thereto (2) – Observation of the Swiss Research Innovation System I. Foreword 　　Switzerland is a landlocked country situated in Central Europe, spanning an area of 41,000 km2, where the Alps occupy 60% of the territory, while it owns little cultivated land and poor natural resources. In 2011, its population was about 7,950,000 persons[1]. Since the Swiss Federal was founded, it has been adhering to a diplomatic policy claiming neutrality and peace, and therefore, it is one of the safest and most stable countries in the world. Switzerland is famous for its high-quality education and high-level technological development and is very competitive in biomedicine, chemical engineering, electronics and metal industries in the international market. As a small country with poor resources, the Swiss have learnt to drive their economic and social development through education, R&D and innovation a very long time ago. Some renowned enterprises, including Nestle, Novartis and Roche, are all based in Switzerland. Meanwhile, a lot of creative small-sized and medium-sized enterprises based in Switzerland are dedicated to supporting the export-orientation economy in Switzerland. 　　Switzerland has the strongest economic strength and plentiful innovation energy. Its patent applications, publication of essay, frequencies of quotation and private enterprises’ innovation performance are remarkable all over the world. According to the Global Competitiveness Report released by the World Economic Forum (WEF), Switzerland has ranked first among the most competitive countries in the world for four years consecutively since 2009[2]. Meanwhile, according to the Global Innovation Index (GII) released by INSEAD and the World Intellectual Property Organization (WIPO) jointly, Switzerland has also ranked first in 2011 and 2012 consecutively[3]. Obviously, Switzerland has led the other countries in the world in innovation development and economic strength. Therefore, when studying the R&D incentives and boosting the industrial innovation, we might benefit from the experience of Switzerland to help boost the relevant mechanism in Taiwan. 　　Taiwan’s government organization reform has been launched officially and boosted step by step since 2012. In the future, the National Science Council will be reformed into the “Ministry of Science and Technology”, and the Ministry of Economic Affairs into the “Ministry of Economy and Energy”, and the Department of Industrial Development into the “Department of Industry and Technology”. Therefore, Taiwan’s technology administrative system will be changed materially. Under the new government organizational framework, how Taiwan’s technology R&D and industrial innovation system divide work and coordinate operations to boost the continuous economic growth in Taiwan will be the first priority without doubt. Support of innovation policies is critical to promotion of continuous economic growth. The Swiss Government supports technological research and innovation via various organizations and institutions effectively. In recent years, it has achieved outstanding performance in economy, education and innovation. Therefore, we herein study the functions and orientation of the competent authorities dedicated to boosting research and innovation in Switzerland, and observe its policies and legal system applied to boost the national R&D in order to provide the reference for the functions and orientation of the competent authorities dedicated to boosting R&D and industrial innovation in Taiwan. II. Overview of Swiss Federal Technology Laws and Technology Administrative System 　　Swiss national administrative organization is subject to the council system. The Swiss Federal Council is the national supreme administrative authority, consisting of 7 members elected from the Federal Assembly and dedicated to governing a Federal Government department respectively. Switzerland is a federal country consisting of various cantons that have their own constitutions, councils and governments, respectively, entitled to a high degree of independence. 　　Article 64 of the Swiss Federal Constitution[4] requires that the federal government support research and innovation. The “Research and Innovation Promotion Act” (RIPA)[5] is dedicated to fulfilling the requirements provided in Article 64 of the Constitution. Article 1 of the RIPA[6] expressly states that the Act is enacted for the following three purposes: 1. Promoting the scientific research and science-based innovation and supporting evaluation, promotion and utilization of research results; 2. Overseeing the cooperation between research institutions, and intervening when necessary; 3. Ensuring that the government funding in research and innovation is utilized effectively. Article 4 of the RIPA provides that the Act shall apply to the research institutions dedicated to innovation R&D and higher education institutions which accept the government funding, and may serve to be the merit for establishment of various institutions dedicated to boosting scientific research, e.g., the National Science Foundation and Commission of Technology & Innovation (CTI). Meanwhile, the Act also provides detailed requirements about the method, mode and restriction of the government funding. 　　According to the RIPA amended in 2011, the Swiss Federal Government’s responsibility for promoting innovation policies has been extended from “promotion of technology R&D” to “unification of education, research and innovation management”, making the Swiss national industrial innovation framework more well-founded and consistent[8] . Therefore, upon the government organization reform of Switzerland in 2013, most of the competent authorities dedicated to technology in Swiss have been consolidated into the Federal Department of Economic Affairs, Education and Research. 　　Under the framework, the Swiss Federal Government assigned higher education, job training, basic scientific research and innovation to the State Secretariat for Education, Research and Innovation (SERI), while the Commission of Technology & Innovation (CTI) was responsible for boosting the R&D of application scientific technology and industrial technology and cooperation between the industries and academy. The two authorities are directly subordinate to the Federal Department of Economic Affairs, Education and Research (EAER). The Swiss Science and Technology Council (SSTC), subordinate to the SERI is an advisory entity dedicated to Swiss technology policies and responsible for providing the Swiss Federal Government and canton governments with the advice and suggestion on scientific, education and technology innovation policies. The Swiss National Science Foundation (SNSF) is an entity dedicated to boosting the basic scientific R&D, known as the two major funding entities together with CTI for Swiss technology R&D. The organizations, duties, functions and operations of certain important entities in the Swiss innovation system are introduced as following. Date source: Swiss Federal Department of Economic Affairs, Education and Research official website Fig. 1　Swiss Innovation Framework Dedicated to Boosting Industries－Swiss Federal Economic, Education and Research Organizational Chart 1. State Secretariat of Education, Research and Innovation (SERI) 　　SERI is subordinate to the Department of Economic Affairs, Education and Research, and is a department of the Swiss Federal Government dedicated to managing research and innovation. Upon enforcement of the new governmental organization act as of January 1, 2013, SERI was established after the merger of the State Secretariat for Education and Research, initially subordinate to Ministry of Interior, and the Federal Office for Professional Education and Technology (OEPT), initially subordinated to Ministry of Economic Affairs. For the time being, it governs the education, research and innovation (ERI). The transformation not only integrated the management of Swiss innovation system but also unified the orientations toward which the research and innovation policy should be boosted. 　　SERI’s core missions include “enactment of national technology policies”, “coordination of research activities conducted by higher education institutions, ETH, and other entities of the Federal Government in charge of various areas as energy, environment, traffic and health, and integration of research activities conducted by various government entities and allocation of education, research and innovation resources. Its functions also extend to funding the Swiss National Science Foundation (SNSF) to enable SNSF to subsidize the basic scientific research. Meanwhile, the international cooperation projects for promotion of or participation in research & innovation activities are also handled by SERI to ensure that Switzerland maintains its innovation strength in Europe and the world. 　　The Swiss Science and Technology Council (SSTC) is subordinate to SERI, and also the advisory unit dedicated to Swiss technology policies, according to Article 5a of RIPA[9]. The SSTC is responsible for providing the Swiss Federal Government and canton governments with advice and suggestion about science, education and innovation policies. It consists of the members elected from the Swiss Federal Council, and a chairman is elected among the members. 2. Swiss National Science Foundation (SNSF) 　　The Swiss National Science Foundation (SNSF) is one of the most important institutions dedicated to funding research, responsible for promoting the academic research related to basic science. It supports about 8,500 scientists each year. Its core missions cover funding as incentives for basic scientific research. It grants more than CHF70 million each year. Nevertheless, the application science R&D, in principle, does not fall in the scope of funding by the SNSF. The Foundation allocates the public research fund under the competitive funding system and thereby maintains its irreplaceable identity, contributing to continuous output of high quality in Switzerland. 　　With the support from the Swiss Federal Government, the SNSF was established in 1952. In order to ensure independence of research, it was planned as a private institution when it was established[10]. Though the funding is provided by SERI, the SNSF still has a high degree of independence when performing its functions. The R&D funding granted by the SNSF may be categorized into the funding to free basic research, specific theme-oriented research, and international cooperative technology R&D, and the free basic research is granted the largest funding. The SNSF consists of Foundation Council, National Research Council and Research Commission[11]. Data source: prepared by the Study Fig. 2 　Swiss National Science Foundation Organizational Chart (1) Foundation Council 　　The Foundation Council is the supreme body of the SNSF[12], which is primarily responsible for making important decisions, deciding the role to be played by the SNSF in the Swiss research system, and ensuring SNSF’s compliance with the purpose for which it was founded. The Foundation Council consists of the members elected from the representatives from important research institutions, universities and industries in Swiss, as well as the government representatives nominated by the Swiss Federal Council. According to the articles of association of the SNSF[13], each member’s term of office should be 4 years, and the members shall be no more than 50 persons. The Foundation Council also governs the Executive Committee of the Foundation Council consisting of 15 Foundation members. The Committee carries out the mission including selection of National Research Council members and review of the Foundation budget. (2) National Research Council 　　The National Research Council is responsible for reviewing the applications for funding and deciding whether the funding should be granted. It consists of no more than 100 members, mostly researchers in universities and categorized, in four groups by major[14], namely, 1. Humanities and Social Sciences; 2. Math, Natural Science and Engineering; 3. Biology and Medical Science; and 4. National Research Programs (NRPs）and National Centers of Competence in Research (NCCRs). The NRPs and NCCRs are both limited to specific theme-oriented research plans. The funding will continue for 4~5years, amounting to CHF5 million~CHF20 million[15]. The specific theme-oriented research is applicable to non-academic entities, aiming at knowledge and technology transfer, and promotion and application of research results. The four groups evaluate and review the applications and authorize the funding amount. 　　Meanwhile, the representative members from each group form the Presiding Board dedicated to supervising and coordinating the operations of the National Research Council, and advising the Foundation Council about scientific policies, reviewing defined funding policies, funding model and funding plan, and allocating funding by major. (3) Research Commissions 　　Research Commissions are established in various higher education research institutions. They serve as the contact bridge between higher education academic institutions and the SNSF. The research commission of a university is responsible for evaluating the application submitted by any researcher in the university in terms of the school conditions, e.g., the school’s basic research facilities and human resource policies, and providing advice in the process of application. Meanwhile, in order to encourage young scholars to attend research activities, the research committee may grant scholarships to PhD students and post-doctor research[16]. ~to be continued~ [1] SWISS FEDERAL STATISTICS OFFICE, Switzerland's population 2011 (2012), http://www.bfs.admin.ch/bfs/portal/en/index/news/publikationen.Document.163772.pdf (last visited Jun. 1, 2013). [2] WORLD ECONOMIC FORUM [WEF], The Global Competiveness Report 2012-2013 (2012), http://www3.weforum.org/docs/WEF_GlobalCompetitivenessReport_2012-13.pdf (last visited Jun. 1, 2013); WEF, The Global Competiveness Report 2011-2012 (2011), http://www3.weforum.org/docs/WEF_GCR_Report_2011-12.pdf (last visited Jun. 1, 2013); WEF, The Global Competiveness Report 2010-2011 (2010), http://www3.weforum.org/docs/WEF_GlobalCompetitivenessReport_2010-11.pdf (last visited Jun. 1, 2013); WEF, The Global Competiveness Report 2009-2010 (2009),. http://www3.weforum.org/docs/WEF_GlobalCompetitivenessReport_2009-10.pdf (last visited Jun. 1, 2013). [3] INSEAD, The Global Innovation Index 2012 Report (2012), http://www.globalinnovationindex.org/gii/GII%202012%20Report.pdf (last visited Jun. 1, 2013); INSEAD, The Global Innovation Index 2011 Report (2011), http://www.wipo.int/freepublications/en/economics/gii/gii_2011.pdf (last visited Jun. 1, 2013). [4] SR 101 Art. 64: “Der Bund fördert die wissenschaftliche Forschung und die Innovation.” [5] Forschungs- und Innovationsförderungsgesetz, vom 7. Oktober 1983 (Stand am 1. Januar 2013). For the full text, please see www.admin.ch/ch/d/sr/4/420.1.de.pdf (last visited Jun. 3, 2013). [6] Id. [7] Id. [8] CTI, CTI Multi-year Program 2013-2016 7(2012), available at http://www.kti.admin.ch/?lang=en&download=NHzLpZeg7t,lnp6I0NTU042l2Z6ln1ad1IZn4Z2qZpnO2Yuq2Z6gpJCDeYR,hGym162epYbg2c_JjKbNoKSn6A-- (last visited Jun. 3, 2013). [9] Supra note 5. [10] Swiss National Science Foundation, http://www.snf.ch/E/about-us/organisation/Pages/default.aspx (last visited Jun. 3, 2013). [11] Id. [12] Foundation Council, Swiss National Science Foundation, http://www.snf.ch/E/about-us/organisation/Pages/foundationcouncil.aspx (last visited Jun. 3, 2013). [13] See Statutes of Swiss National Science Foundation Art.8 & Art. 9, available at http://www.snf.ch/SiteCollectionDocuments/statuten_08_e.pdf (last visited Jun. 3, 2013). [14] National Research Council, Swiss National Science Foundation, http://www.snf.ch/E/about-us/organisation/researchcouncil/Pages/default.aspx (last visted Jun.3, 2013). [15] Theres Paulsen, VISION RD4SD Country Case Study Switzerland (2011), http://www.visionrd4sd.eu/documents/doc_download/109-case-study-switzerland (last visited Jun.6, 2013). [16] Research Commissions, Swiss National Science Foundation, http://www.snf.ch/E/about-us/organisation/Pages/researchcommissions.aspx (last visted Jun. 6, 2013).

Blockchain and General Data Protection Regulation (GDPR) compliance issues (2019) I. Brief 　　Blockchain technology can solve the problem of trust between data demanders and data providers. In other words, in a centralized mode, data demanders can only choose to believe that the centralized platform will not contain the false information. However, in the decentralized mode, data isn’t controlled by one individual group or organization[1], data demanders can directly verify information such as data source, time, and authorization on the blockchain without worrying about the correctness and authenticity of the data. 　　Take the “immutable” for example, it is conflict with the right to erase (also known as the right to be forgotten) in the GDPR.With encryption and one-time pad (OTP) technology, data subjects can make data off-chain storaged or modified at any time in a decentralized platform, so the problem that data on blockchain not meet the GDPR regulation has gradually faded away. II. What is GDPR? 　　The purpose of the EU GDPR is to protect user’s data and to prevent large-scale online platforms or large enterprises from collecting or using user’s data without their permission. Violators will be punished by the EU with up to 20 million Euros (equal to 700 million NT dollars) or 4% of the worldwide annual revenue of the prior financial year. 　　The aim is to promote free movement of personal data within the European Union, while maintaining adequate level of data protection. It is a technology-neutral law, any type of technology which is for processing personal data is applicable. 　　So problem about whether the data on blockchain fits GDPR regulation has raise. Since the blockchain is decentralized, one of the original design goals is to avoid a large amount of centralized data being abused. 　　Blockchain can be divided into permissioned blockchains and permissionless blockchains. The former can also be called “private chains” or “alliance chains” or “enterprise chains”, that means no one can join the blockchain without consent. The latter can also be called “public chains”, which means that anyone can participate on chain without obtaining consent. 　　Sometimes, private chain is not completely decentralized. The demand for the use of blockchain has developed a hybrid of two types of blockchain, called “alliance chain”, which not only maintains the privacy of the private chain, but also maintains the characteristics of public chains. The information on the alliance chain will be open and transparent, and it is in conflict with the application of GDPR. III. How to GDPR apply to blockchain ? 　　First, it should be determined whether the data on the blockchain is personal data protected by GDPR. Second, what is the relationship and respective responsibilities of the data subject, data controller, and data processor? Finally, we discuss the common technical characteristics of blockchain and how it is applicable to GDPR. 1. Data on the blockchain is personal data protected by GDPR? 　　First of all, starting from the technical characteristics of the blockchain, blockchain technology is commonly decentralized, anonymous, immutable, trackable and encrypted. The other five major characteristics are immutability, authenticity, transparency, uniqueness, and collective consensus. 　　Further, the blockchain is an open, decentralized ledger technology that can effectively verify and permanently store transactions between two parties, and can be proved. 　　It is a distributed database, all users on the chain can access to the database and the history record, also can directly verify transaction records. Each nodes use peer-to-peer transmission for upload or transfer information without third-party intermediation, which is the unique “decentralization” feature of the blockchain. 　　In addition, the node or any user on the chain has a unique and identifiable set of more than 30 alphanumeric addresses, but the user may choose to be anonymous or provide identification, which is also a feature of transparency with pseudonymity[2]; Data on blockchain is irreversibility of records. Once the transaction is recorded and updated on the chain, it is difficult to change and is permanently stored in the database, that is to say, it has the characteristics of “tamper-resistance”[3]. 　　According to Article 4 (1) of the GDPR, “personal data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. 　　Therefore, if data subject cannot be identified by the personal data on the blockchain, that is an anonymous data, excluding the application of GDPR. (1) What is Anonymization? 　　According to Opinion 05/2014 on Anonymization Techniques by Article 29 Data Protection Working Party of the European Union, “anonymization” is a technique applied to personal data in order to achieve irreversible de-identification[4]. 　　And it also said the “Hash function” of blockchain is a pseudonymization technology, the personal data is possible to be re-identified. Therefore it’s not an “anonymization”, the data on the blockchain may still be the personal data stipulated by the GDPR. 　　As the blockchain evolves, it will be possible to develop technologies that are not regulated by GDPR, such as part of the encryption process, which will be able to pass the court or European data protection authorities requirement of anonymization. There are also many compliance solutions which use technical in the industry, such as avoiding transaction data stored directly on the chain. 2. International data transmission 　　Furthermore, in accordance with Article 3 of the GDPR, “This Regulation applies to the processing of personal data in the context of the activities of an establishment of a controller or a processor in the Union, regardless of whether the processing takes place in the Union or not. This Regulation applies to the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to: (a) the offering of goods or services, irrespective of whether a payment of the data subject is required, to such data subjects in the Union; or (b) the monitoring of their behaviour as far as their behaviour takes place within the Union”.[5] 　　In other words, GDPR applies only when the data on the blockchain is not anonymized, and involves the processing of personal data of EU citizens. 3. Identification of data controllers and data processors 　　Therefore, if the encryption technology involves the public storage of EU citizens' personal data and passes it to a third-party controller, it may be identified as the “data controller” under Article 4 of GDPR, and all nodes and miners of the platform may be deemed as the “co-controller” of the data, and be assumed joint responsibility with the data controller by GDPR. For example, the parties can claim the right to delete data from the data controller. 　　In addition, a blockchain operator may be identified as a “processor”, for example, Backend as a Service (BaaS) products, the third parties provide network infrastructure for users, and let users manage and store personal data. Such Cloud Services Companies provide online services on behalf of customers, do not act as “data controllers”. Some commentators believe that in the case of private chains or alliance chains, such as land records transmission, inter-bank customer information sharing, etc., compared to public chain applications: such as cryptocurrencies (Bitcoin for example), is not completely decentralized, and more likely to meet GDPR requirements[6]. For example, in the case of a private chain or alliance chain, it is a closed platform, which contains only a small number of trusted nodes, is more effective in complying with the GDPR rules. 4. Data subject claims 　　In accordance with Article 17 of the GDPR, The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay under some grounds. 　　Off-chain storage technology can help the blockchain industry comply with GDPR rules, allowing offline storage of personal data, or allow trusted nodes to delete the private key of encrypted information, which leaving data that cannot be read and identified on the chain. If the data is in accordance with the definition of anonymization by GDPR, there is no room for GDPR to be applied. IV. Conclusion 　　In summary, it’s seem that the application of blockchain to GDPR may include: (a) being difficulty to identified the data controllers and data processors after the data subject upload their data. (b) the nature of decentralized storage is transnational storage, and Whether the country where the node is located, is meets the “adequacy decision” of Article 45 of the GDPR. 　　If it cannot be met, then it needs to consider whether it conforms to the transfers subject to appropriate safeguards of Article 46, or the derogations for specific situations of Article 49 of the GDPR. Reference: [1] How to Trade Cryptocurrency: A Guide for (Future) Millionaires, https://wikijob.com/trading/cryptocurrency/how-to-trade-cryptocurrency [2] DONNA K. HAMMAKER, HEALTH RECORDS AND THE LAW 392 (5TH ED. 2018). [3] Iansiti, Marco, and Karim R. Lakhani, The Truth about Blockchain, Harvard Business Review 95, no. 1 (January-February 2017): 118-125, available at https://hbr.org/2017/01/the-truth-about-blockchain [4] Article 29 Data Protection Working Party, Opinion 05/2014 on Anonymisation Techniques (2014), https://www.pdpjournals.com/docs/88197.pdf [5] Directive 95/46/EC (General Data Protection Regulation), https://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32016R0679&from=EN [6] Queen Mary University of London, Are blockchains compatible with data privacy law? https://www.qmul.ac.uk/media/news/2018/hss/are-blockchains-compatible-with-data-privacy-law.html

The opening and sharing of scientific data- The Data Policy of the U.S. National Institutes of Health Li-Ting Tsai 　　Scientific research improves the well-being of all mankind, the data sharing on medical and health promote the overall amount of energy in research field. For promoting the access of scientific data and research findings which was supported by the government, the U.S. government affirmed in principle that the development of science was related to the retention and accesses of data. The disclosure of information should comply with legal restrictions, and the limitation by time as well. For government-sponsored research, the data produced was based on the principle of free access, and government policies should also consider the actual situation of international cooperation[1]Furthermore, the access of scientific research data would help to promote scientific development, therefore while formulating a sharing policy, the government should also consider the situation of international cooperation, and discuss the strategy of data disclosure based on the principle of free access. 　　In order to increase the effectiveness of scientific data, the U.S. National Institutes of Health (NIH) set up the Office of Science Policy (OSP) to formulate a policy which included a wide range of issues, such as biosafety (biosecurity), genetic testing, genomic data sharing, human subjects protections, the organization and management of the NIH, and the outputs and value of NIH-funded research. Through extensive analysis and reports, proposed emerging policy recommendations.[2] At the level of scientific data sharing, NIH focused on "genes and health" and "scientific data management". The progress of biomedical research depended on the access of scientific data; sharing scientific data was helpful to verify research results. Researchers integrated data to strengthen analysis, promoted the reuse of difficult-generated data, and accelerated research progress.[3] NIH promoted the use of scientific data through data management to verify and share research results. 　　For assisting data sharing, NIH had issued a data management and sharing policy (DMS Policy), which aimed to promote the sharing of scientific data funded or conducted by NIH.[4] DMS Policy defines “scientific data.” as “The recorded factual material commonly accepted in the scientific community as of sufficient quality to validate and replicate research findings, regardless of whether the data are used to support scholarly publications. Scientific data do not include laboratory notebooks, preliminary analyses, completed case report forms, drafts of scientific papers, plans for future research, peer reviews, communications with colleagues, or physical objects, such as laboratory specimens.”[5] In other words, for determining scientific data, it is not only based on whether the data can support academic publications, but also based on whether the scientific data is a record of facts and whether the research results can be repeatedly verified. 　　In addition, NIH, NIH research institutes, centers, and offices have had expected sharing of data, such as: scientific data sharing, related standards, database selection, time limitation, applicable and presented in the plan; if not applicable, the researcher should propose the data sharing and management methods in the plan. NIH also recommended that the management and sharing of data should implement the FAIR (Findable, Accessible, Interoperable and Reusable) principles. The types of data to be shared should first in general descriptions and estimates, the second was to list meta-data and other documents that would help to explain scientific data. NIH encouraged the sharing of scientific data as soon as possible, no later than the publication or implementation period.[6] It was said that even each research project was not suitable for the existing sharing strategy, when planning a proposal, the research team should still develop a suitable method for sharing and management, and follow the FAIR principles. 　　The scientific research data which was provided by the research team would be stored in a database which was designated by the policy or funder. NIH proposed a list of recommended databases lists[7], and described the characteristics of ideal storage databases as “have unique and persistent identifiers, a long-term and sustainable data management plan, set up metadata, organizing data and quality assurance, free and easy access, broad and measured reuse, clear use guidance, security and integrity, confidentiality, common format, provenance and data retention policy”[8]. That is to say, the design of the database should be easy to search scientific data, and should maintain the security, integrity and confidentiality and so on of the data while accessing them. 　　In the practical application of NIH shared data, in order to share genetic research data, NIH proposed a Genomic Data Sharing (GDS) Policy in 2014, including NIH funding guidelines and contracts; NIH’s GDS policy applied to all NIHs Funded research, the generated large-scale human or non-human genetic data would be used in subsequent research. [9] This can effectively promote genetic research forward. 　　The GDS policy obliged researchers to provide genomic data; researchers who access genomic data should also abide by the terms that they used the Controlled-Access Data for research.[10] After NIH approved, researchers could use the NIH Controlled-Access Data for secondary research.[11] Reviewed by NIH Data Access Committee, while researchers accessed data must follow the terms which was using Controlled-Access Data for research reason.[12] The Genomic Summary Results (GSR) was belong to NIH policy,[13] and according to the purpose of GDS policy, GSR was defined as summary statistics which was provided by researchers, and non-sensitive data was included to the database that was designated by NIH.[14] Namely. NIH used the application and approval of control access data to strike a balance between the data of limitation access and scientific development. 　　For responding the COVID-19 and accelerating the development of treatments and vaccines, NIH's data sharing and management policy alleviated the global scientific community’s need for opening and sharing scientific data. This policy established data sharing as a basic component in the research process.[15] In conclusion, internalizing data sharing in the research process will help to update the research process globally and face the scientific challenges of all mankind together. [1]NATIONAL SCIENCE AND TECHNOLOGY COUNCIL, COMMITTEE ON SCIENCE, SUBCOMMITEE ON INTERNATIONAL ISSUES, INTERAGENCY WORKING GROUP ON OPEN DATA SHARING POLICY, Principles For Promoting Access To Federal Government-Supported Scientific Data And Research Findings Through International Scientific Cooperation (2016), 1, organized from Principles, at 5-8, https://obamawhitehouse.archives.gov/sites/default/files/microsites/ostp/NSTC/iwgodsp_principles_0.pdf (last visited December 14, 2020). [2]About Us, Welcome to NIH Office of Science Policy, NIH National Institutes of Health Office of Science Policy, https://osp.od.nih.gov/about-us/ (last visited December 7, 2020). [3]NIH Data Management and Sharing Activities Related to Public Access and Open Science, NIH National Institutes of Health Office of Science Policy, https://osp.od.nih.gov/scientific-sharing/nih-data-management-and-sharing-activities-related-to-public-access-and-open-science/ (last visited December 10, 2020). [4]Final NIH Policy for Data Management and Sharing, NIH National Institutes of Health Office of Extramural Research, Office of The Director, National Institutes of Health (OD), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-21-013.html (last visited December 11, 2020). [5]Final NIH Policy for Data Management and Sharing, NIH National Institutes of Health Office of Extramural Research, Office of The Director, National Institutes of Health (OD), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-21-013.html (last visited December 12, 2020). [6]Supplemental Information to the NIH Policy for Data Management and Sharing: Elements of an NIH Data Management and Sharing Plan, Office of The Director, National Institutes of Health (OD), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-21-014.html (last visited December 13, 2020). [7]The list of databases in details please see：Open Domain-Specific Data Sharing Repositories, NIH National Library of Medicine, https://www.nlm.nih.gov/NIHbmic/domain_specific_repositories.html (last visited December 24, 2020). [8]Supplemental Information to the NIH Policy for Data Management and Sharing: Selecting a Repository for Data Resulting from NIH-Supported Research, Office of The Director, National Institutes of Health (OD), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-21-016.html (last visited December 13, 2020). [9]NIH Genomic Data Sharing, National Institutes of Health Office of Science Policy, https://osp.od.nih.gov/scientific-sharing/genomic-data-sharing/ (last visited December 15, 2020). [10]NIH Genomic Data Sharing Policy, National Institutes of Health (NIH), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-14-124.html (last visited December 17, 2020). [11]NIH Genomic Data Sharing Policy, National Institutes of Health (NIH), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-14-124.html (last visited December 17, 2020). [12]id. [13]NIH National Institutes of Health Turning Discovery into Health, Responsible Use of Human Genomic Data An Informational Resource, 1, at 6, https://osp.od.nih.gov/wp-content/uploads/Responsible_Use_of_Human_Genomic_Data_Informational_Resource.pdf (last visited December 17, 2020). [14]Update to NIH Management of Genomic Summary Results Access, National Institutes of Health (NIH), https://grants.nih.gov/grants/guide/notice-files/NOT-OD-19-023.html (last visited December 17, 2020). [15]Francis S. Collins, Statement on Final NIH Policy for Data Management and Sharing, National Institutes of Health Turning Discovery Into Health, https://www.nih.gov/about-nih/who-we-are/nih-director/statements/statement-final-nih-policy-data-management-sharing (last visited December 14, 2020).