随着互联网技术的发展，数据作为新的生产要素创造了巨大的财富。通过收集、分析和应用个人数据，可以帮助企业和组织做出决策、提高产品质量，进而实现持续创新和竞争优势。然而，随着数据规模的不断增长，数据隐私、安全问题也日益突出。产生这些问题的根源在于数据流转过程中个人数据主体与数据控制者地位不平等，个人数据主体缺乏对数据的控制，因此需要采取有效的措施来保护个人数据流通的合法性和安全性。对在此背景下，个人数据信托制度为解决这一问题提供了新的思路。个人数据信托以平衡数据流转过程中个人数据主体和数据使用者的关系为目的，通过一系列制度设计保障个人数据权利，促进数据流转。有关个人数据信托的研究，学术界有英国的第三方数据信托模式与美国的信义义务人两种模式，本文分析了两种模式用于个人数据保护领域的可能性，并最终得出第三方数据信托模式适用于我国及其适用范围。在此基础上考察了我国有关数据信托的实践，并尝试从实践中归纳概括出当前我国构建数据信托制度尚存的问题。在数据委托环节，主要有委托人与受托人之间存在信任危机、受托人资格难以确定以及我国法律对数据的性质和权利归属没有明确规定等问题。数据处理环节主要涉及完善受托人信义义务的问题。此外，个人数据利益的分配也是本文关注的问题。由于英国、日本等国家数据信托制度发展较早且已有成功的个人数据信托实践，可以为我国发展这一制度提供经验。在考察英国和日本对这一制度的实践后，本文又从数据信托制度的三个环节提出了构建我国数据信托制度的有关建议。在委托环节应当分不同的数据信托主体构建相应的信托模式，在法律中明确数据的财产性质、建立数据分级保护制度以及运用一系列技术手段保障数据流转的安全等。在处理环节则应当在当前法律的基础上完善受托人信义义务的内涵，例如增加告知义务、加强重点数据保护责任以及完善数据信托机构问责机制等。在利益分配环节应当将数据主体作为受益人，建立分级定价机制等。

With the development of Internet technology, data has emerged as a new factor of production, creating immense wealth. By collecting, analyzing, and applying personal data, businesses and organizations can make wiser decisions, optimize operational efficiency, enhance the quality of products and services, and achieve continuous innovation and competitive advantage. However, as the scale of data continues to grow, issues of data privacy and security are becoming increasingly prominent. The root of these problems lies in the unequal status between individuals who are the subjects of personal data and the controllers of that data during its circulation. Individuals often lack control over their data, necessitating effective measures to protect the legality and security of the circulation of personal data. In this context, the concept of personal data trusts offers a new approach to addressing these issues.

Personal data trusts aim to balance the relationship between individuals who are the subjects of personal data and the users of that data during its circulation. Through a series of institutional designs, personal data trusts safeguard the rights of individuals over their data and promote data circulation. In academic research, two models have been proposed: the third-party data trust model in the UK and the fiduciary duty model in the US. This paper analyzes the potential of these models in the field of personal data protection and ultimately concludes that the third-party data trust model is applicable to China and its scope.

Building on this analysis, the paper examines the practice of data trusts in China and attempts to identify the remaining issues in constructing a data trust system based on practical experience. In the data entrustment phase, issues include a crisis of trust between the entruster and the trustee, difficulty in determining the qualifications of the trustee, and the lack of clear provisions in Chinese law regarding the nature and ownership of data rights. The data processing phase primarily involves the refinement of the fiduciary duties of the trustee. In addition, the distribution of interests in personal data is also a concern of this paper.

Due to the earlier development and successful practices of data trust systems in countries such as the UK and Japan, valuable lessons can be drawn for the development of such a system in China. After examining practices in the UK and Japan, this paper proposes relevant suggestions for constructing a data trust system in China across the three phases of data trusts. In the entrustment phase, different data trust entities should adopt corresponding trust models, the nature of data as property should be clarified in the law, a data classification protection system should be established, and various technological means should be employed to ensure the security of data circulation. In the processing phase, the paper suggests enhancing the content of the trustee's fiduciary duties based on existing laws, such as increasing disclosure obligations, strengthening responsibilities for the protection of key data, and improving the accountability mechanism of data trust institutions. In the interest distribution phase, the paper suggests treating data subjects as beneficiaries and establishing a tiered pricing mechanism, among other measures.