Data Protection and Cybersecurity | Japan | Asia Pacific Insurance

Data Protection and Cybersecurity

Jump to

Data Protection and Cybersecurity Start Comparison

Who is the main regulator with oversight of data privacy matters?

The Personal Information Protection Commission (PPC)

What is the main legislation on the protection of personal data privacy?

The main legislation is the Act on Protection of Personal Information (Act No. 57 of 30 May 2003) (APPI). The Guidelines for the Act on Protection of Personal Information (PPC Notices No. 6-9 of 2016) function as general guidelines (Guidelines).

In addition to the APPI and the Guidelines, there are some industry-specific guidelines issued by different Japanese government agencies.

The guidelines that apply to the insurance sector are the Guidelines for Personal Information Protection in the Financial Sector (PPC and FSA Notice No. 1 of 28 February 2017) and the Practical Guidelines for Security Control Measures Provided in the Guidelines for Personal
Information Protection in the Financial Sector (PPC and FSA Notice No. 2 of 28 February 2017) (collectively, PPC and FSA Guidelines).

Asia Pacific Insurance

Japan

Select a Topic