The Institutionalization of the Taiwan Personal Data Protection Committee - Triumph of Digital Constitutionalism: A Legal Positivism Analysis
2023/07/13
The Legislative Yuan recently passed an amendment to the Taiwan Personal Data Protection Act, which resulted in the institutionalization of the Taiwan Personal Data Protection Commission (hereunder the “PDPC”)[1]. This article aims to analyze the significance of this institutionalization from three different perspectives: legal positivism, digital constitutionalism, and Millian liberalism. By examining these frameworks, we can better understand the constitutional essence of sovereignty, the power dynamics among individuals, businesses, and governments, and the paradox of freedom that the PDPC addresses through governance and trust.
I.Three Layers of Significance
1.Legal Positivism
The institutionalization of the PDPC fully demonstrates the constitutional essence of sovereignty in the hands of citizens. Legal positivism emphasizes the importance of recognizing and obeying (the sovereign, of which it is obeyed by all but does not itself obey to anyone else, as Austin claims) laws that are enacted by legitimate authorities[2]. In this context, the institutionalization of the PDPC signifies the recognition of citizens' rights to control their personal data and the acknowledgment of the sovereign in protecting their privacy. It underscores the idea that the power to govern personal data rests with the individuals themselves, reinforcing the principles of legal positivism regarding sovereign
Moreover, legal positivism recognizes the authority of the state in creating and enforcing laws. The institutionalization of the PDPC as a specialized commission with the power to regulate and enforce personal data protection laws represents the state's recognition of the need to address the challenges posed by the digital age. By investing the PDPC with the authority to oversee the proper handling and use of personal data, the state acknowledges its responsibility to protect the rights and interests of its citizens.
2.Digital Constitutionalism
The institutionalization of the PDPC also rebalances the power structure among individuals, businesses, and governments in the digital realm[3]. Digital constitutionalism refers to the principles and norms that govern the relationship between individuals and the digital sphere, ensuring the protection of rights and liberties[4]. With the rise of technology and the increasing collection and use of personal data, individuals often find themselves at a disadvantage compared to powerful entities such as corporations and governments[5].
However, the PDPC acts as a regulatory body that safeguards individuals' interests, rectifying the power imbalances and promoting digital constitutionalism. By establishing clear rules and regulations regarding the collection, use, and transfer of personal data, the PDPC may set a framework that ensures the protection of individuals' privacy and data rights. It may enforce accountability among businesses and governments, holding them responsible for their data practices and creating a level playing field where individuals have a say in how their personal data is handled.
3.Millian Liberalism
The need for the institutionalization of the PDPC embodies the paradox of freedom, as raised in John Stuart Mill’s “On Liberty”[6], where Mill recognizes that absolute freedom can lead to the infringement of others' rights and well-being. In this context, the institutionalization of the PDPC acknowledges the necessity of governance to mitigate the risks associated with personal data protection.
In the digital age, the vast amount of personal data collected and processed by various entities raises concerns about privacy, security, and potential misuse. The institutionalization of the PDPC represents a commitment to address these concerns through responsible governance. By setting up rules, regulations, and enforcement mechanisms, the PDPC ensures that individuals' freedoms are preserved without compromising the rights and privacy of others. It strikes a delicate balance between individual autonomy and the broader social interest, shedding light on the paradox of freedom.
II.Legal Positivism: Function and Authority of the PDPC
1.John Austin's Concept of Legal Positivism: Sovereignty, Punishment, Order
To understand the function and authority of the PDPC, we turn to John Austin's concept of legal positivism. Austin posited that laws are commands issued by a sovereign authority and backed by sanctions[7]. Sovereignty entails the power to make and enforce laws within a given jurisdiction.
In the case of the PDPC, its institutionalization by the Legislative Yuan reflects the recognition of its authority to create and enforce regulations concerning personal data protection. The PDPC, as an independent and specialized committee, possesses the necessary jurisdiction and competence to ensure compliance with the law, administer punishments for violations, and maintain order in the realm of personal data protection.
2.Dire Need for the Institutionalization of the PDPC
There has been a dire need for the establishment of the PDPC following the Constitutional Court's decision in August 2022, holding that the government needed to establish a specific agency in charge of personal data-related issues[8]. This need reflects John Austin's concept of legal positivism, as it highlights the demand for a legitimate and authoritative body to regulate and oversee personal data protection. The PDPC's institutionalization serves as a response to the growing concerns surrounding data privacy, security breaches, and the increasing reliance on digital platforms. It signifies the de facto recognition of the need for a dedicated institution to safeguard the individual’s personal data rights, reinforcing the principles of legal positivism.
Furthermore, the institutionalization of the PDPC demonstrates the responsiveness of the legislative branch to the evolving challenges posed by the digital age. The amendment to the Taiwan Personal Data Protection Act and the subsequent institutionalization of the PDPC are the outcomes of a democratic process, reflecting the will of the people and their desire for enhanced data protection measures. It signifies a commitment to uphold the rule of law and ensure the protection of citizens' rights in the face of emerging technologies and their impact on privacy.
3.Authority to Define Cross-Border Transfer of Personal Data
Upon the establishment of the PDPC, it's authority to define what constitutes a cross-border transfer of personal data under Article 21 of the Personal Data Protection Act will then align with John Austin's theory on order. According to Austin, laws bring about order by regulating behavior and ensuring predictability in society.
By granting the PDPC the power to determine cross-border data transfers, the legal framework brings clarity and consistency to the process. This promotes order by establishing clear guidelines and standards, reducing uncertainty, and enhancing the protection of personal data in the context of international data transfers.
The PDPC's authority in this regard reflects the recognition of the need to regulate and monitor the cross-border transfer of personal data to protect individuals' privacy and prevent unauthorized use or abuse of their information. It ensures that the transfer of personal data across borders adheres to legal and ethical standards, contributing to the institutionalization of a comprehensive framework for cross-border data transfer.
III.Conclusion
In conclusion, the institutionalization of the Taiwan Personal Data Protection Committee represents the convergence of legal positivism, digital constitutionalism, and Millian liberalism. It signifies the recognition of citizens' sovereignty over their personal data, rebalances power dynamics in the digital realm, and addresses the paradox of freedom through responsible governance. By analyzing the PDPC's function and authority in the context of legal positivism, we understand its role as a regulatory body to maintain order and uphold the principles of legal positivism. The institutionalization of the PDPC serves as a milestone in Taiwan's commitment to protect individuals' personal data and safeguard the digital rights. In essence, the institutionalization of the Taiwan Personal Data Protection Committee represents a triumph of digital constitutionalism, where individuals' rights and interests are safeguarded, and power imbalances are rectified. It also embodies the recognition of the paradox of freedom and the need for responsible governance in the digital age in Taiwan.
Reference:
[1] Lin Ching-yin & Evelyn Yang, Bill to establish data protection agency clears legislative floor, CNA English News, FOCUS TAIWAN, May 16, 2023, https://focustaiwan.tw/society/202305160014 (last visited, July 13, 2023).
[2] Legal positivism, Stanford Encyclopedia of Philosophy, https://plato.stanford.edu/entries/legal-positivism/?utm_source=fbia (last visited July 13, 2023).
[3] Edoardo Celeste, Digital constitutionalism: how fundamental rights are turning digital, (2023): 13-36, https://doras.dcu.ie/28151/1/2023_Celeste_DIGITAL%20CONSTITUTIONALISM_%20HOW%20FUNDAMENTAL%20RIGHTS%20ARE%20TURNING%20DIGITAL.pdf (last visited July 3, 2023).
[4] GIOVANNI DE GREGORIO, DIGITAL CONSTITUTIONALISM IN EUROPE: REFRAMING RIGHTS AND POWERS IN THE ALGORITHMIC SOCIETY 218 (2022).
[5] Celeste Edoardo, Digital constitutionalism: how fundamental rights are turning digital (2023), https://doras.dcu.ie/28151/1/2023_Celeste_DIGITAL%20CONSTITUTIONALISM_%20HOW%20FUNDAMENTAL%20RIGHTS%20ARE%20TURNING%20DIGITAL.pdf (last visited July 13, 2023).
[6] JOHN STUART MILL, On Liberty (1859), https://openlibrary-repo.ecampusontario.ca/jspui/bitstream/123456789/1310/1/On-Liberty-1645644599.pdf (last visited July 13, 2023).
[7] Legal positivism, Stanford Encyclopedia of Philosophy, https://plato.stanford.edu/entries/legal-positivism/?utm_source=fbia (last visited July 13, 2023).
[8] Lin Ching-yin & Evelyn Yang, Bill to establish data protection agency clears legislative floor, CNA English News, FOCUS TAIWAN, May 16, 2023, https://focustaiwan.tw/society/202305160014 (last visited, July 13, 2023).
Impact of Government Organizational Reform to Scientific Research Legal System and Response Thereto (2) – For Example, The Finnish Innovation Fund (“SITRA”) III. Comparison of Strength and Weakness of Sitra Projects 1. Sitra Venture Capital Investment Model In order to comprehend how to boost innovation business development to upgrade innovation ability, we analyze and compare the innovation systems applied in Sweden, France and Finland[1] . We analyze and compare the characteristics, strength and weakness of innovation promotion models in terms of funding, networking and professional guidance. Generally, the first difficulty which a start-up needs to deal with when it is founded initially is the funding. Particularly, a technology company usually requires tremendous funding when it is founded initially. Some potentially adequate investors, e.g., venture capitals, seldom invest in small-sized start-up (because such overhead as supervision and management fees will account for a high percentage of the investment due to the small total investment amount). Networking means how a start-up integrates such human resources as the management, investors, technical advisors and IP professionals when it is founded initially. Control over such human resources is critical to a new company’s survival and growth. Professional guidance means how professional knowledge and human resource support the start-up’s operation. In order to make its product required by the market, an enterprise usually needs to integrate special professional knowledge. Notwithstanding, the professional knowledge and talents which are available from an open market theoretically often cannot be accessed, due to market failure[2]. Assuming that Sitra’s funding is prioritized as Pre-seed-Initiation stage, Seed-Development stage and Follow-up – Growth stage, under Finland model, at the Pre-seed-Initiation stage, Sitra will provide the fund amounting to EUR20,000 when Tekes will also provide the equivalent fund, provided that the latter purely provides subsidy, while the fund provided by Sitra means a loan to be repaid (without interest) after some time (usually after commercialization), or a loan convertible to shares. Then, the loan would be replaced by soft or convertible (to shares) investment and the source of funding would turn to be angel investors or local seed capital at the Seed-Development stage. At this stage, the angel investors, local seed capital and Sitra will act as the source of funding jointly in Finland, while Tekes will not be involved at this stage. At the Follow-up-Growth stage, like the Sweden model, Sitra will utilize its own investment fund to help mitigate the gap between local small-sized funding and large-sized international venture capital[3]. How to recruit professional human resources is critical to a start-up’s success. Many enterprises usually lack sufficient professional human resources or some expertise. DIILI service network set up by Sitra is able to provide the relevant solutions. DILLI is a network formed by product managers. Its members actively participate in starts-up and seek innovation. They also participate in investment of starts-up independently sometimes. Therefore, they are different from angel investors, because they devote themselves to the starts-up on a full-time basis[4]. In other words, they manage the starts-up as if the starts-up were their own business. 2. Key to Public Sector’s Success in Boosting Development of Innovation Activity Business In terms of professional guidance, voluntary guidance means the direct supply of such professional resources as financing, human resource and technology to starts-up, while involuntary guidance means the supply of strategic planning in lieu of direct assistance to help the enterprises make routine decisions[5]. The fractured and incomplete professional service attendant market generates low marginal effect. Therefore, it is impossible for the traditional consultation service to mitigate such gap and the investment at the pre-seed initiation stage will be excessive because of the acquisition of the professional services. Meanwhile, professional advisors seldom are involved in consultation services at the pre-seed initiation stage of a start-up because of the low potential added value. Therefore, at such stage, only involuntary professional guidance will be available usually. Under Sitra model, such role is played by an angel investor. Upon analysis and comparison, we propose six suggested policies to boost innovation activities successfully as the reference when observing Sitra operation. First of all, compared with the French model, Finland Sitra and Sweden model set more specific objectives to meet a start-up’s needs (but there is some defect, e.g., Sitra model lacks voluntary professional guidance). Second, structural budget is a key to the successful model. Sitra will receive the funds in the amount of EUR235,000,000 from the Finnish Government, but its operating expenditure is covered by its own operating revenue in whole. Third, it is necessary to provide working fund in installments and provide fund at the pre-seed-initiation stage. Under both of Finland model and Sweden model, funds will be provided at the pre-seed-initiation stage (Tekes is responsible for providing the fund in Finland). Fourth, the difficulty in networking must be solved. In Sitra, the large-sized talent network set up by it will be dedicated to recruiting human resources. Fifth, the voluntary professional guidance is indispensable at the pre-seed-initiation stage, while the same is unavailable at such stage under Sitra model. Instead, the Sweden model is held as the optimal one, as it has a dedicated unit responsible for solving the difficulty to seek profit. Sixth, soft loan[6] will be successfully only when the loan cannot be convertible to shares. At the pre-seed initiation stage or seed-development stage, a start-up is usually funded by traditional loan. Assuming that the start-up is not expected to gain profit, whether the loan may be convertible to shares will also be taken into consideration when the granting of loan is considered (therefore, the fund provider will not be changed to the “capital” provider). Besides, the government authorities mostly lack the relevant experience or knowledge, or are in no position to negotiate with international large-sized venture capital companies. For example, under the French model, the government takes advantage of its power to restrict the venture capital investment and thereby renders adverse impact to starts-up which seek venture capital. Finally, the supply of own fund to meet the enterprises’ needs at seed-development stage and follow-up-growth stage to mitigate the gap with large-sized venture capital[7] is also required by a successful funding model. IV. Conclusion-Deliberation of Finnish Sitra Experience As the leading national industrial innovation ability promoter in Finland, Sitra appears to be very characteristic in its organizational framework or operating mechanism. We hereby conclude six major characteristics of Sitra and propose the potential orientation toward deliberation of Taiwan’s industrial innovation policies and instruments. 1. Particularity of Organizational Standing In consideration of the particularity of Sitra organizational standing, it has two characteristics observable. First, Sitra is under supervision of the Finnish Parliament directly, not subordinated to the administrative organizational system and, therefore, it possesses such strength as flexibility and compliance with the Parliament’s requirements. Such organization design which acts independently of the administrative system but still aims to implement policies has been derived in various forms in the world, e.g., the agency model[8] in the United Kingdom, or the independent apparatus in the U.S.A. Nevertheless, to act independently of the administrative system, it has to deal with the deliberation of responsible political principles at first, which arouses the difficulty in taking care of flexibility at the same time. In Taiwan, the intermediary organizations include independent agencies and administrative corporations, etc., while the former still involves the participation of the supreme administrative head in the right of personnel administration and is subordinated to the ministries/departments of the Executive Yuan and the latter aims to enforce the public missions in the capacity of “public welfare” organization. Though such design as reporting to the Parliament directly is not against the responsible political principles, how the Parliament owns the authority to supervise is the point (otherwise, theoretically, the administrative authorities are all empowered by the parliament in the country which applies the cabinet system). Additionally, why some special authorities are chosen to report to the parliament directly while other policy subjects are not is also disputable. The existence of Sitra also refers to a circumstantial evidence substantiating that Finland includes the innovation policy as one of the important government policies, and also the objective fact that Finland’s innovation ability heads the first in the world. Second, Sitra is a self-sufficient independent fund, which aims to promote technical R&D and also seeks profit for itself, irrelevant with selection of adequate investment subjects or areas. Instead, for this purpose, the various decisions made by it will deal with the utility and mitigate the gap between R&D and market. Such entity is responsible for public welfare or policy projects and also oriented toward gain from investment to feed the same back to the individuals in the organization. In the administrative system, Sitra is not directed by the administrative system but reports to the Parliament directly. Sitra aims to upgrade the national R&D innovation ability as its long-term goal mission and utilizes the promotion of innovation business and development of venture capital market. The mission makes the profit-orientation compatible with the selection of investment subjects, as an enterprise unlikely to gain profit in the future usually is excluded from the national development view. For example, such industries as green energy, which is not likely to gain profit in a short term, is still worth investing as long as it meets the national development trend and also feasible (in other words, selection of marketable green technology R&D, instead of comparison of the strength and weakness in investment value of green energy and other high-polluted energy). 2. Expressly Distinguished From Missions of Other Ministries/Departments For the time being, Sitra primarily invests in starts-up, including indirect investment and direct investment, because it relies on successful new technology R&D which may contribute to production and marketability. Starts-up have always been one of the best options, as large-sized enterprises are able to do R&D on their own without the outsourcing needs. Further, from the point of view of an inventor, if the new technology is marketable, it will be more favorable to him if he chooses to start business on his own or make investment in the form of partnership, instead of transfer or license of the ownership to large-sized enterprises (as large-sized enterprises are more capable of negotiation). However, note that Sitra aims to boost innovation activities and only targets at start-up business development, instead of boosting and promoting the start-up per se. Under the requirement that Sitra needs to seek profit for itself, only the business with positive development view will be targeted by Sitra. Further, Sitra will not fund any business other than innovation R&D or some specific industries. Apparently, Sitra only focuses on the connection between innovation activities and start-up, but does not act as the competent authority in charge of small-sized and medium-sized enterprises. Meanwhile, Sitra highlights that it will not fund academic research activities and, therefore, appears to be distinguished from the competent authority in charge of national scientific research. Though scientific research and technology innovation business, to some extent, are distinguished from each other in quantity instead of quality, abstract and meaningless research is existent but only far away from the commercialization market. Notwithstanding, a lot of countries tend to distinguish basic scientific research from industrial technology R&D in the administration organization's mission, or it has to be. In term of the way in which Sitra carries out its mission, such distinguishing ability is proven directly. 3. Well-Founded Technology Foresight-Based Investment Business The corporate investments, fund investments and project funding launched by Sitra are all available to the pre-designated subjects only, e.g. ecological sustainable development, energy utilization efficiency, and social structural changes, etc. Such way to promote policies as defining development area as the first priority and then promoting the investment innovation might have some strength and weakness at the same time. First of all, the selection of development areas might meet the higher level national development orientation more therefor, free from objective environmental restrictions, e.g. technical level, leading national technology industries and properties of natural resources. Notwithstanding, an enterprise’s orientation toward innovation R&D might miss the opportunity for other development because of the pre-defined framework. Therefore, such way to promote policies as defining development areas or subjects as the first priority will be inevitably based on well-founded technology foresight-based projects[9], in order to take various subjective and objective conditions into consideration and to forecast the technology development orientation and impact to be faced by the home country’s national and social economies. That is, said strength and weakness will be taken into consideration beforehand for foresight, while following R&D funding will be launched into the technology areas pre-designated after thorough analysis. 4. Self-Interested Investment with the Same High Efficiency as General Enterprises Sitra aims to gain profit generally, and its individual investment model, e.g., DIILI, also permits marketing managers to involve business operation. The profit-sharing model enables Sitra to seek the same high efficiency as the general enterprises when purusing its innovation activity development. The investment launched by Sitra highlights that it is not “funding” (which Tekes is responsible for in Finland) or the investment not requiring return. Therefore, it has the system design to acquire corporate shares. Sitra participates in a start-up by offering its advanced technology, just like a general market investor who will choose the potential investment subject that might benefit him most upon his personal professional evaluation. After all, the ultimate profit will be retained by Sitra (or said DIILI manger, subject to the investment model). Certainly, whether the industry which requires permanent support may benefit under such model still remains questionable. However, except otherwise provided in laws expressly, said special organization standing might be a factor critical to Sitra profit-seeking model. That is, Sitra is not subordinated to the administrative system but is under supervision of the parliament independently, and how its staff deal with the conflict of interest issues in the capacity other than the public sector’s/private sector’s staff is also one of the key factors to success of the system. 5. Investment Model to Deal With Policy Instruments of Other Authorities/Agencies Sitra decides to fund a start-up depending on whether it may gain profit as one of its priorities. As aforesaid, we may preliminarily recognize that the same should be consistent with funding to starts-up logically and no “government failure” issue is involved. For example, the funding at the pre-seed-initiation stage needs to tie in with Tekes’ R&D “funding” (and LIKSA service stated herein) and, therefore, may adjust the profit-seeking orientation, thereby causing deviation in promotion of policies. The dispute over fairness of repeated subsidy/funding and rationality of resource allocation under the circumstance must be controlled by a separate evaluation management mechanism inevitably. 6. Affiliation with Enhancement of Regional Innovation Activities Regional policies cannot be separable from innovation policies, especially in a country where human resources and natural resources are not plentiful or even. Therefore, balancing regional development policies and also integrating uneven resource distribution at the same time is indispensable to upgrading of the entire national social economic benefits. The Finnish experience indicated that innovation activities ought to play an important role in the regional development, and in order to integrate enterprises, the parties primarily engaged in innovation activities, with the R&D ability of regional academic research institutions to upgrade the R&D ability effectively, the relevant national policies must be defined for adequately arranging and launching necessary resources. Sitra's approaches to invest in starts-up, release shares after specific period, integrate the regional resources, upgrade the national innovation ability and boost the regional development might serve to be the reference for universities’ centers of innovative incubator or Taiwan’s local academic and scientific sectors[10] to improve their approaches. For the time being, the organization engaged in venture capital investment in the form of fund in Taiwan like Sitra of Finland is National Development Fund, Executive Yuan. However, in terms of organizational framework, Sitra is under supervision of the Parliament directly, while National Development Fund is subordinated to the administrative system of Taiwan. Though Sitra and National Development Fund are both engaged in venture capital investments primarily, Sitra carries out its missions for the purpose of “promoting innovative activities”, while the National Development Fund is committed to achieve such diversified goals as “promoting economic changes and national development[11]” and is required to be adapted to various ministries’/departments’ policies. Despite the difference in the administrative systems of Taiwan and Finland, Sitra system is not necessarily applicable to Taiwan. Notwithstanding, Sitra’s experience in promotion and thought about the system might provide a different direction for Taiwan to think when it is conceiving the means and instruments for industrial innovation promotion policies in the future. [1] Bart Clarysse & Johan Bruneel, Nurturing and Growing Innovation Start-Ups: The Role of Policy As Integrator, R&D MANAGEMENT, 37(2), 139, 144-146 (2007). Clarysse & Bruneel analysis and comparison refers to Sweden Chalmers Innovation model, French Anvar/Banque de Developpement des PMEs model and Finland Sitra PreSeed Service model. [2] id. at 141-143. [3] id. at 141. [4] id. at 145-146. [5] id. at 143. [6] The loan to be repaid is not a concern. For example, the competent authority in Sweden only expects to recover one-fourths of the loan. [7] Clarysse & Bruneel, super note 26, at 147-148. [8] 彭錦鵬,〈英國政署之組織設計與運作成效〉,《歐美研究》,第30卷第3期,頁89-141。 [9] Technology foresight must work with the innovation policy road mapping (IPRM) interactively, and consolidate the forecast and evaluation of technology policy development routes. One study case about IPRM of the environmental sustainable development in the telecommunication industry in Finland, the IPRM may enhance the foresighted system and indicates the potential factors resulting in systematic failure. Please see Toni Ahlqvist, Ville Valovirta & Torsti Loikkanen, Innovation policy road mapping as a systemic instrument for forward-looking policy design, Science and Public Policy 39, 178-190 (2012). [10] 參見李昂杰,〈規範新訊:學界科專辦法及其法制配套之解析〉,《科技法律透析》,第23卷第8期,頁33(2011)。 [11] National Development Fund, Executive Yuan website, http://www.df.gov.tw/(tftgkz45150vye554wi44ret)/page-aa.aspx?Group_ID=1&Item_Title=%E8%A8%AD%E7%AB%8B%E5%AE%97%E6%97%A8#(Last visit on 2013/03/28)
New Version of Personal Information Protection Act and Personal Information Protection & Administration SystemI.Summary In 1995, the Computer-Processed Personal Data Protection Law was implemented in the Republic of China. With the constant development of information technology and the limitations in the application of the legislation, the design of the original legal system is no longer consistent with practical requirements. Considering the increasing number of incidents of personal data leaks, discussions were carried out over a long period of time and the new version of the Personal Information Protection Act was passed after three readings in April, 2010. The title of the law was changed to Personal Information Protection Act. The new system has been officially implemented since 1 October, 2012. The new Act not only revised the provisions of the law in a comprehensive way, but also significantly increased the obligations and responsibilities of enterprises. In terms of civil liability, the maximum amount of compensation for a single incident is 200 Million NTD. For domestic industries, how to effectively respond to the requirements under the Personal Information Protection Act and adopt proper corresponding measures to lower the risk has become a key task for enterprise operation. II. Main Points 1. Implementation of the Enforcement Rules of the Personal Information Protection Act Personal information protection can be said the most concerned issue in Taiwan recently. As a matter of fact, the Computer-Processed Personal Data Protection Law was established in Taiwan as early as August 1995. After more than 10 years of development, computer and information technology has evolved significantly, and many emerging business models such as E-commerce are extensively collecting personal data. It has become increasingly important to properly protect personal privacy. However, the previous Computer-Processed Personal Data Protection Law was only applicable to certain industries, i.e. the following 8 specific industries: the credit investigation business, hospital, school, telecommunication business, financial business, securities business, insurance business, and mass media. And other business was designated by the Ministry of Justice and the central government authorities in charge of concerned enterprises. In addition, the law only protected personal information that was processed by “computer or automatic equipment”. Personal information that was not computer processed was not included. There were clearly no sufficient regulations for the protection of personal data privacy and interest. There were numerous incidents of personal data leaks. Among the top 10 consumer news issued by the Consumer Protection Committee of the Executive Yuan in 2007, “incidents of personal data leaks through E-commerce and TV shopping” was on the top of the list. This provoked the Ministry of Justice and the Ministry of Economic Affairs to “jointly designate” the retail industry without physical boutique (including 3 transaction models: online shopping, catalogue shopping and TV shopping) to be governed by the Computer-Processed Personal Data Protection Law since 1 July 2010. To allow the provisions of the personal information protection legal system to meet the environment of rapid change, the Executive Yuan proposed a Draft Amendment to the Computer-Processed Personal Data Protection Law very early and changed the title to the Personal Information Protection Act. The draft was discussed many times in the Legislative Yuan. Personal Information Protection Act was finally passed after three readings in April 2010, which was officially published by the Office of the President on 26 May. Although the new law was passed in April 2010, to allow sufficient time for enterprises and the public to understand and comply the new law, the new version of the personal information protection law was not implemented on the date of publication. In accordance with Article 56 of the Act, the date of implementation was to be further established by the Executive Yuan. After discussions over a long period of time, the Executive Yuan decided for the Personal Information Protection Act to be officially implemented on 1 October 2012. However, the implementation of two articles is withheld: Article 6 of the Act about the principal prohibition against the collection, processing and use of special personal information and Article 54 about the obligation to notice the Party within one year for personal information indirectly acquired before the implementation of the new law. In terms of the personal data protection legal system, other than the most important Personal Data Protection Act, the enforcement rules established in accordance with the main law also play a key role. The previous Enforcement Rules of the Computer-Processed Personal Data Protection Law were published and implemented on 1 May, 1996. Considering that the Computer-Processed Personal Data Protection Law was amended in 2010 and that its title has been changed to the Personal Data Protection Act, the Ministry of Justice also followed the amended provisions under the new law and actively studied the Draft Amendment to the Enforcement Rules of the Computer-Processed Personal Data Protection Act. After it was confirmed that the new version of the Personal Data Protection Act would be officially launched on 1 October 2012, the Ministry of Justice announced officially the amended enforcement rules on 26 September, 2012. The title of the enforcement rules was also amended to the Enforcement Rules of the Personal Data Protection Act. The new version of personal data protection law and enforcement rules was thus officially launched, creating a brand new era for the promotion of personal data protection in Taiwan. II. Personal Data Administration System and Information Privacy Protection Charter Before the amendment to the Personal Data Protection Act was passed, the Legislative Yuan made a proposal to the government in June 2008 to promote a privacy administration and protection certification system in Taiwan, in reference to foreign practices. In August of the following year, the Strategic Review Board of the Executive Yuan passed a resolution to promote the E-Commerce Personal Data Administration and Information Security Action Plan. In December of the same year, approval was granted for the plan to be included in the key government promotion plans from 2010 to 2013. Based on this action plan, since October 2010, the Ministry of Economic Affairs has asked the Institution for Information Industry to execute an E-Commerce Personal Data Administration System Setup Plan. Since 2012, the E-Commerce Personal Data Administration System Promotion Plan and the Taiwan Personal Information Protection and Administration System (TPIPAS) have been established and promoted, with the objective of procuring enterprises to, while complying with the personal data protection legal system, properly protect consumers’ personal information through the establishment of an internal administration mechanism and ensuring that the introducing enterprises meet the requirements of the system. The issuance of the Data Privacy Protection Mark (dp.mark) was also used as an objective benchmark for consumers to judge the enterprise’s ability to maintain privacy. Regarding the introduction of the personal data administration system, enterprises should establish a content administration mechanism step by step in accordance with the Regulations for Taiwan Personal Information Protection and Administration System. Such system also serves as the review benchmark to decide whether domestic enterprises can acquire the Data Privacy Protection Mark (dp.mark). Since domestic enterprises did not have experience in establishing internal personal data administration system in the past, starting 2011, under the Taiwan Personal Information Protection and Administration System, enterprises received assistance in the training of system professionals such as Personal Data Administrators and Personal Data Internal Appraisers. Quality personal data administrators can help enterprises establish complete internal systems. Internal appraisers play the role of confirming whether the systems established by the enterprises are consistent with the system requirements. As of 2012, there are almost 100 enterprises in Taiwan that participate in the training of system staff and a total of 426 administrators and 131 internal appraisers. In terms of the introduction of TPIPAS, in additional to the establishment and introduction of administration systems by qualified administrators, enterprises can also seek assistance from external professional consulting institutions. Under the Taiwan Personal Information Protection and Administration System, applications for registration of consulting institutions became available in 2012. Qualified system consulting institutions are published on the system website. Today 9 qualified consulting institutions have completed their registrations, providing enterprises with personal data consulting services. After an enterprise completes the establishment of its internal administration system, it may file an application for certification under the Taiwan Personal Information Protection and Administration System. The certification process includes two steps: “written review” and “site review”. After the enterprise passing certification, it is qualified to use the Data Privacy Protection Mark (dp.mark). Today 7 domestic companies have passed TPIPAS certification and acquired the dp.mark: 7net, FamiPort, books.com.tw, LOTTE, GOHAPPY, PAYEASY and Sinya Digital, reinforcing the maintenance of consumer privacy information through the introduction of personal data administration system. III. Event Analysis The Taiwan Personal Information Protection and Administration System (TPIPAS) is a professional personal data administration system established based on the provisions of the latest version of the domestic Personal Data Protection Act, in reference to the latest requirements of personal data protection by international organizations and the experience of main countries in promoting personal data administration system. In accordance with the practical requirements to protect personal data by industries, TPIPAS converted professional legal conditions into an internal personal data administration procedure to effectively assist industries to establish a complete and proper personal data administration system and to comply with the requirements of personal data legislations. With the launch of the new version of the Personal Data Protection Act, introducing TPIPAS and acquiring dp.mark are the best strategies for enterprises to lower the risk from the personal data protection law and to upgrade internal personal data administration capability.
The Study of Estonian Human Genes DatabaseI. Introduction The human genes database or human genome project, the product under the policy of biotechnology no matter in a developed or developing country, has been paid more attention by a government and an ordinary people gradually. The construction of human genes database or human genome project, which is not only related to a country’s innovation on biotechnology, but also concerns the promotion of a country’s medical quality, the construction of medical care system, and the advantages brought by the usage of bio-information stored in human genes database or from human genome project. However, even though every country has a high interest in setting up human genes database or performing human genome project, the issues concerning the purposes of related biotechnology policies, the distribution of advantages and risks and the management of bio-information, since each country has different recognition upon human genes database or human genome project and has varied standards of protecting human basic rights, there would be a totally difference upon planning biotechnology policies or forming the related systems. Right now, the countries that vigorously discuss human genes database or practice human genome project include England, Iceland, Norway, Sweden, Latvia and Estonia. Estonia, which is the country around the Baltic Sea, has planned to set up its own human genes database in order to draw attention from other advanced countries, to attract intelligent international researchers or research groups, and to be in the lead in the area of biotechnology. To sum up, the purpose of constructing Estonian human genes database was to collect the genes and health information of nearly 70% Estonia’s population and to encourage bio-research and promote medical quality. II. The Origin of Estonian Human Genes Database The construction of Estonian human genes database started from Estonian Genome Project (EGP). This project was advocated by the professor of biotechnology Andres Metspalu at Tartu University in Estonia, and he proposed the idea of setting up Estonian human genes database in 1999. The purposes of EGP not only tried to make the economy of Estonia shift from low-cost manufacturing and heavy industry to an advanced technological economy, but also attempted to draw other countries’ attention and to increase the opportunity of making international bio-researches, and then promoted the development of biotechnology and assisted in building the system of medical care in Estonia. EGP started from the agreement made between Estonian government and Eesti Geenikeskus (Estonian Genome Foundation) in March, 1999. Estonian Genome Foundation was a non-profit organization formed by Estonian scientists, doctors and politicians, and its original purposes were to support genes researches, assist in proceeding any project of biotechnology and to set up EGP. The original goals of constructing EGP were “(a) reaching a new level in health care, reduction of costs, and more effective health care, (b) improving knowledge of individuals, genotype-based risk assessment and preventive medicine, and helping the next generation, (c) increasing competitiveness of Estonia – developing infrastructure, investments into high-technology, well-paid jobs, and science intensive products and services, (d) [constructing] better management of health databases (phenotype/genotype database), (e) … [supporting]… economic development through improving gene technology that opens cooperation possibilities and creates synergy between different fields (e.g., gene technology, IT, agriculture, health care)”1. III. The Way of Constructing Estonian Human Genes Database In order to ensure that Estonian human genes database could be operated properly and reasonably in the perspectives of law, ethics and society in Estonia, the Estonian parliament followed the step of Iceland to enact “Human Genes Research Act” (HGRA) via a special legislative process to regulate its human genes database in 2000. HGRA not only authorizes the chief processor to manage Estonian human genes database, but also regulates the issues with regard to the procedure of donation, the maintenance and building of human genes database, the organization of making researches, the confidential identity of donator or patient, the discrimination of genes, and so on. Since the construction of Estonian human genes database might bring the conflicts of different points of view upon the database in Estonia, in order to “avoid fragmentation of societal solidarity and ensure public acceptability and respectability”2 , HGRA adopted international standards regulating a genes research to be a norm of maintaining and building the database. Those standards include UNESCO Universal Declaration on the Human Genome and Human Rights (1997) and the Council of Europe’s Convention on Human Rights and Biomedicine (1997). The purpose of enacting HGRA is mainly to encourage and promote genes researches in Estonia via building Estonian human genes database. By means of utilizing the bio-information stored in the database, it can generate “more exact and efficient drug development, new diagnostic tests, improved individualized treatment and determination of risks of the development of a disease in the future”3 . In order to achieve the above objectives, HGRA primarily puts emphasis on several aspects. Those aspects include providing stronger protection on confidential identity of donators or patients, caring for their privacy, ensuring their autonomy to make donations, and avoiding any possibility that discrimination may happen because of the disclosure of donators’ or patients’ genes information. 1.HERBERT GOTTWEIS & ALAN PETERSEN, BIOBANKS – GOVERNANCE IN COMPARATIVE PERSPECTIVE 59 (2008). 2.Andres Rannamae, Populations and Genetics – Legal and Socio-Ethical Perspectives, in Estonian Genome Porject – Large Scale Health Status Description and DNA Collection 18, 21 (Bartha Maria Knoppers et al. eds., 2003. 3.REMIGIUS N. NWABUEZE, BIOTECHNOLOGY AND THE CHALLENGE OF PROPERTY – PROPERTY RIGHTS IN DEAD BODIES, BODY PARTS, AND GENETIC INFORMATION, 163 (2007).
Executive Yuan roll-out The Policy of “The Free Economic Pilot Zones”Executive Yuan roll-out The Policy of “The Free Economic Pilot Zones”1.Executive Yuan approved a Bill titled “The Free Economic Pilot Zones Special Act”The “Free Economic Demonstration Zones” (hereinafter as FEDZs) is a critical part to improve the liberalization and internationalization of the economy of Republic of China (R.O.C). By deregulation, FEDZs was conceived as trial zones. Once the results of the program were promising, it would be expanded to the entire country. In order to engage in the regional economic and trade integration, the Executive Yuan approved a Bill titled “The Free Economic Pilot Zones Special Act” (hereinafter as Bill) on April 26th, 2013.On Mar 6th, 2014, the Joint Economic, Internal Administration , and Finance Committee of the Legislation Yuan (the Congress) discussed the Bill for reports and questions. By the end of the March, 2014, the Congress will hold five public hearings. Not until the discussion of the Bill item by item and the passage in the Congress, the second stage of the FEDZ program would not be initiated. There are five main points, including the treatments on foreigners and people from mainland China, tax incentives for Taiwanese businessman, foreign professionals and foreign companies, regulations on untaxed goods and labor, regulations on industrial development, such as the agriculture and the medical, and certain new items on education and professional services.For the reason that the government considered the need of human resources to sustain the operation of the industries, the Executive Yuan is trying to promote innovative education in FEPZs. Since the education requirements for both of public and private universities are unified in local, colleges and universities were restrained and missed some great opportunities to discover their own niches in education. Hence, innovative education in FEPZs is trying to help higher education system to introduce foreign education resources and foresight concepts, and to attract more international students. The innovative educational projects within FEPZs will also facilitate the cooperations among domestic and foreign universities, and set up experimental branch campuses, colleges, degree programs or professional courses. Besides, the financial service sector is also included. Since FEDZs is an important pusher for R.O.C to move forward in regional economic integration, accordingly, the most significant liberate item for the financial industry in the FEPZs is to allow offshore banking units and offshore security units to provide financial products and service (e.g. OSU and OBU). Meanwhile, the financial industry is predicted to receive an NTD$140 billion or more in revenues over the next five year.In summary, FEPZs is regarded as a engine propelling liberalization and internationalization. To gain the international competitiveness, the government will continue to promote policies and measures. By establishing the free economic demonstration zone, it is expected to create innovative effects into the education system and to create more job opportunities.2.Legislation Yuan has reviewd “The Free Ecomonic Pilot Zones Special Act”The Republic of China (R.O.C) have been carried out “free economic” recent years, by promoting “Free Economic Pilot Zone” (hereinafter as FEPZs) to encourage every industrial and foreign investment. Besides, FEPZs will not only keep talents and technologies in R.O.C but also liberalize and internationalize our economic.The Executive Yuan had approved a Bill titled “The Free Economic Pilot Zones Special Act” (hereinafter as the Bill) on Dec. 26th, 2013. At the end of May, the Joint Economic, Internal Administration, and Finance Committee of the Legislation Yuan (the Congress) have taken five public hearings for the Bill, and amended the Bill according to the advices proposed by specialists. Not until the deliberation of the Bill item by item and its passage in the Congress, the second stage of the FEDZ program would not be initiated. There are five main points, including the treatments on foreigners, tax incentives for R.O.C businessman, foreign professionals and foreign companies, regulations on untaxed goods and labor, regulations on industrial development, such as the agriculture and the medical service, and certain new items on education and professional services.The government considers that there have to be enough human resource to sustain the opened industries, so Executive Yuan is trying to promote innovative education in FEPZs. The core concept of FEPZs is foresight, liberalization and internationalization, the premier said, and the higher education systems belong to high-end service and have much more marketability and variability compared to other education systems. Through innovative and efficient way to manage the school could let University being much more liberalized. Furthermore, the higher education systems in R.O.C. have to connect with international education to avoid being marginalized. Our first stage of education innovation will promote to set up “degree programs” and “professional courses”. The first phase for the Ministry of Education is going to found “degree programs” or “professional courses” through collaboration way. The Ministry of Education will also draw up related regulations or guidance on standards for school cooperation, co-regulation, setup conditions, supervision, enrolling new student, and recruiting staff.? Once the Bills pass, The Ministry of Education plans to establish “branch school” and “independence campus” helping R.O.C. higher education goes internationalized.On the other hand, Our medical service also has strong international competitiveness. R.O.C is engage in developing international medical and health industry. The premier said, the Ministry of Health and Welfare have proposed some measures, such as limitation to the number of medical centre, medical personnel working hours, and NHI is not allow to use in the zones.The premier added, on the extemporaneous sittings, “The Free Economic Pilot Zones Special Act” will be the priority bills and be deliberated in the end of June By establishing the free economic demonstration zone, it is expected to propel R.O.C take part in Trans-Pacific Partnership (TPP) and the Regional Comprehensive Economic Partnership (RCEP).3.Executive Yuan’s rapid roll-out of “The Free Economic Pilot Zones”, and has published a report concerning the legal and economic implications of its the BillThe “Free Economic Pilot Zones” (hereinafter as FEPZs) plays a pivotal role in promoting market liberalization, especially at an international level. Premier of the Executive Yuan, Mr. Jiang Yi-Hua has stated that the “market economy” and “innovation economy” allows for tremendous economic prosperity to be embraced by the Republic of China (hereinafter as R.O.C). The seizing of such opportunity has been the goal of government efforts, which can be attested by the recent proposal of the “The Free Economic Pilot Zones Special Act” (hereinafter as the Bill), currently undergoing review and consultation proceedings. The Premier further stressed that the national economy should not be left excluded from international commerce, on the other hand, it is imperative that closer economic bonds with other nations are forged, therefore allowing itself open up to wider scope of opportunities for growth. The key in rendering this possible is through the enactment of laws. At a time, when Trans-Pacific nations, including the United States of America, Japan and countries from Southeast Asia, are working towards regional economic cooperation, if R.O.C. is to be left out, it is feared that its position in the global market would further be marginalized.The core innovative strengths of the FEPZs include “Smart Logistics”, “International healthcare services”, “Value added agriculture”, “Financial Services”, “Education Innovation”, all of which are implemented by employing R.O.C.’s finest workforce, knowledge, information and communications technology (ICT), geographical position and cross-strait relationship advantages, leading way for an advantageous basis for pioneering economic development. The first stage of development will be based on 6 locations proximal to the sea (including Keelung Port, Taipei Port, Kaohsiung Port, Suao Harbor, Anping Port, Taichung Port) and Taoyuan Aerotropolis and Pingtung Agricultural Biotech Park. The second stage of development would only commence after the Bill have been approved by the legislative Yuan, which would attract much capital investment, hence boosting high employment rates. Presently, besides the aforementioned regions opened up for the FEPZs, other cities and industrial sites (including those from offshore islands), are striving to gain membership of the FEPZs, or applying for empirical research of the FEPZs.The Executive Yuan has published a report concerning the legal and economic implications of its the Bill on May 2014. The report largely consists of assessments made by varying governing bodies, such as Ministry of Home Affairs, Financial Supervisory Commission etc., on the implications of the draft concerning real estate, employment, fiscal income, logistics, conditions for medical care, agriculture, higher education, social environment and social wealth redistribution etc.Furthermore, international attention has been closely centered on the progress of FEPZs. During the “The third review of the trade policies and practices of Chinese Taipei” after R.O.C accession to the World Trade Organization (WTO) held on the 17th of September 2014 in Geneva, each member state has demonstrated expectations arising out of the direction and planning undertaken for the FEPZs. National economic and international commercial reforms are under way and have seen much progress in further promoting the overall strength of the economic system, in an effort to respond to the rapid global political and economic developments, for example, through the signing of Economic Cooperation Framework Agreement (ECFA), and the implementation of FEPZs policies. In the future, it will be expected that R.O.C. will strive for a more integral international commercial system, allowing much capital investment inflows as well as the cultivating of high-caliber human resources.To promote more liberal and internationalized development of Taiwan economy, government of Republic of China (R.O.C) approved the “Free Economic Pilot Zone (FEPZ) Plan,” which the Bill is currently censored in Legislation Yuan and the measures would be implemented in two phases. The first phase of FEPZs would be initiated within six free trade ports, Taoyuan airport free trade zone, and Pingtung Agricultural Biotechnology Park; other industries that match up with the idea of liberalization, internationalization and foresight can all be incorporated into FEPZ through continuing examination under Execution Yuan. After this special legislation is passed, the set-ups of demonstration zones can be applied by authorities either of central or of local government and the related promotion works of the second phase will be unfolded immediately.Heading to the target of becoming Kin-Xiao (Kinmen and Xiaomen) Free Trade Zone, Kinmen government planned to apply to be one of the FEPZs and thus cooperated with Taiwan Institute of Economic Research (TIER) on December 11, for a commissioned research (which was later released on the conference of accelerating Kin-Xia FTZ on December 19) on evaluating if Kinmen is qualified for an application of FEPZs. Kinmen’s critical location and the featured industries have composed a perfect environment complying with the ideas such as value-added agriculture, international healthcare and innovative education for FEPZ. For instance, the white liquor industry in Kinmen represents the international management and promotion of agricultural products, and is the best example for value-added agriculture. “Long-term Healthcare Village in Kinmen,” which is currently developing in Kinmen, would also be a drive for international healthcare industry. Based on the Taiwan-featured culture, “International Education City” could be developed with a liberal and innovative atmosphere, which would attract famous schools in world to set up their branch school in Kinmen. Above all, Kinmen County vice Mayor, Wu Yo-Chin, indicated that Kinmen would be the first choice for FEPZ and would hold the key to open a new gate for the Cross-Strait. The vice Mayor emphasized that Kinmen government has well budgeting and financial management, which needn’t the extra aids from central government, yet Kinmen was excluded in the first phase of FEPZs. Although Kinmen would apply to be a FEPZ in the second phase after the special legislation passed, Kinmen still strived for taking part in the first phase of FEPZs due to the uncertain schedule for implementation of regulations on FEPZs.National Development Council (NDC), however, gave an opinion on issue of Kinmen applying to be in the first phase of FEPZs, which declared again the original plan for the first phase only included six free trade ports, Taoyuan airport free trade zone, and Pingtung Agricultural Biotechnology Park. NDC also suggested Kinmen could still follow after the first phase and apply to be a FEPZ in the second phase.