Main Regulations Affecting Information Security - Japan

GLOBAL: universal regulations or standards, applicable to entities worldwide.

Who's impacted: entities to which the standards or regulations apply.

GLOBAL
Risk Management	Who's impacted?
Basel II The aim of this regulation is to better align bank capital requirements with underlying risks. Banks are required to monitor, mitigate and disclose risk. http://www.bis.org/publ/bcbsca.htm	Global financial services organizations International banks with assets greater than $250 billion or foreign exposures greater than $10 billion.
Payment Card Industry (PCI) Data Security Standard The aim of this standard is to provide a single set of security requirements to be used by all payment organizations. Merchants and service providers should use the standard to assess their security status. https://www.pcisecuritystandards.org/	All members, merchants, and service providers that store, process, or transmit cardholder data.

GLOBAL

Risk Management

Who's impacted?

Basel II

The aim of this regulation is to better align bank capital requirements with underlying risks. Banks are required to monitor, mitigate and disclose risk.

http://www.bis.org/publ/bcbsca.htm

Global financial services organizations
International banks with assets greater than $250 billion or foreign exposures greater than $10 billion.

Payment Card Industry (PCI) Data Security Standard

The aim of this standard is to provide a single set of security requirements to be used by all payment organizations. Merchants and service providers should use the standard to assess their security status.

https://www.pcisecuritystandards.org/

All members, merchants, and service providers that store, process, or transmit cardholder data.

JAPAN
Privacy	Who's impacted?
Japan - Personal Information Protection Act 2003 (PIP) This act deals with the responsibilities and obligations of national government, local governments and private organizations when handling personal information. Requirements include the ability to safeguard personal information and protect it against loss, unauthorized access and disclosure. http://www5.cao.go.jp/seikatsu/kojin/foreign/act.pdf	Entities with personal information on more than 5,000 individuals. (Excludes media and writers).

JAPAN

Privacy

Who's impacted?

Japan - Personal Information Protection Act 2003 (PIP)

This act deals with the responsibilities and obligations of national government, local governments and private organizations when handling personal information. Requirements include the ability to safeguard personal information and protect it against loss, unauthorized access and disclosure.

http://www5.cao.go.jp/seikatsu/kojin/foreign/act.pdf

Entities with personal information on more than 5,000 individuals. (Excludes media and writers).

Volver Arriba