关键词: 个人数据保护, 欧盟, 新型区域安全观, 跨境数据流动, 国家安全观

Abstract: [Purpose/Significance] The purpose of the study is to analyze the personal data protection framework under the European Union（EU）regional security concept and study the theoretical basis of the formulation and specific content of EU personal data protection system ,which has practical significance for reducing cross-border data trade frictions of China-EU and promoting China-EU data exchange and sharing cooperation. [Design/Methodology] Literature analysis method is used in this work to construct, analyze and evaluate the overall framework of EU personal data protection from the perspective of "the New Regional Security Concept". [Findings/Conclusion]The analysis indicates that the personal data protection framework under EU New Regional Security Concept is based on the constitutional confirmation of "personal data right", and adopts the GDPR unified legislation and legislation of member states model, takes civil, political and economic security as the core,takes network and data security as the key support, follows the cross-border data flow rules of "long-arm jurisdiction", and forms a comprehensive security protection framework that takes into account both inside and outside the region with three legal origins and six legal levels.The framework's "Standard Contract Clauses" have gradually become a model for global data trade collaboration, and it has become a trend to balance personal data protection with the development of the digital economy. [Originality/Value] The "EU New Regional Security Concept" is proposed, and the EU personal data protection framework is deconstructed,which provides a theoretical basis and action direction for promoting cross-border data exchange and sharing cooperation of China-EU.

Key words: Personal data protection, European Union（EU）, New regional security concept, Cross-border data flow, National security concept