数字主权是国家主权在数字领域的自然延伸,同传统主权一样表现为国家在数字领域的对内最高管辖权和对外独立自主权。数字主权大体包括网络主权和数据主权两个方面。就网络主权而言,应当坚持网络空间的“和平”和“日常”属性,强调一国基于国家主权所享有的管辖权、管理权和规制权;就数据主权而言,应当探索平衡、适度的跨境数据流动监管路径和方法,在维护数据主权与发展数字经济之间求得最优解,有望推动全球数字治理正向发展,对其的异化和滥用则可能诱发监管过度扩张、加速西方国家对华“数字脱钩”。作为因应,中国在国内层面应当坚持数字主权的国家属性和“防御”属性,探索更加平衡、适度的监管方法和路径;在双边层面应当对“等效监管”要求作出更加灵活有效的应对,包括考虑主动进行“逆向”充分性认定;在多边层面应当探索确立以主权平等为基础的全球数字治理模式,并充分利用有关区域性机制。

Digital sovereignty is seen as the natural extension of national sovereignty into cyberspace and the digital domain, encompassing both Internet sovereignty and data sovereignty. Internet sovereignty involves a state's jurisdiction over the Internet space, while data sovereignty pertains to a state's supreme authority and independence over data. The proper interpretation and application of digital sovereignty can help promote positive development in global digital governance, but its misuse may lead to excessive regulation and exacerbate “digital decoupling” between Western countries and China. To address these challenges, China needs to uphold the national and defensive attributes of digital sovereignty domestically, exploring a balanced regulatory approach. Bilaterally, China should flexibly respond to equivalent regulatory requirements and consider proactive reverse adequacy determinations. Multilaterally, China should explore a global digital governance model based on sovereign equality and leverage regional mechanisms. The EU, emphasizing its digital sovereignty, aims to establish its authority, autonomy, and effectiveness in digital governance. This aligns with China's stance, which has consistently emphasized sovereignty principles. Since 2010, China has introduced the concept of “Internet sovereignty” in the white paper China Statistical Report on Internet Development and has gradually shifted towards “cyberspace sovereignty”. As data becomes the foundation of economic and social activities, data sovereignty has become a manifestation of national core competitiveness. Countries have adopted various legal strategies to safeguard their data sovereignty. The United States emphasizes free flow of data, and the CLOUD Act establishes data sovereignty rules centered on data freedom. The EU, on the other hand, has established data sovereignty rules focused on data protection through the General Data Protection Regulation (GDPR), thereby reshaping its data protection framework with the United States. The United States seeks to build cross-border data transfer rules based on free flow of data, while the EU leads in data regulation and has become one of the global standard-setters for data protection through its regulations. The rule conflict between them reflects the clash between the concepts of “data freedom” and “data protection” in the context of data sovereignty. In summary, digital sovereignty is a crucial component of national sovereignty in the digital age, vital for maintaining national security and developing the digital economy. China should actively participate in the construction of global digital governance, guarding against excessive regulation while avoiding “digital decoupling”, and promoting healthy development in the digital space through international cooperation.