Abstract
In Sep. 2015, the Act on the Use of Numbers to Identify a Specific Individual in the Administrative Procedure was revised. It was decided to link personal numbers to deposit numbers of financial institutions. Currently, the Privacy Impact Assessment which is obliged to implement this law is required to implement safety control measures for the private sector. However, there is no system to conduct a risk assessment of the law. In the financial industry, which is a highly private sector of public nature, some privacy risk assessment is required because it has many individual numbers. In this paper, we propose a framework for privacy risk assessment on this law in the financial industry, using the privacy impact assessment prescribed as an international standard.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Act on the Use of Numbers to Identify a Specific Individual in the Administrative Procedure (Act No. 27 of 31 May 2013). http://www.cas.go.jp/jp/seisaku/bangoseido/pdf/260717bangouhou.pdf
A draft of a bill to amend part of the Act on the Protection of Personal Information and the Act on Utilization of Numbers to Identify Specific Individuals in Administrative Procedures (Overview), February 2015. https://www.kantei.go.jp/jp/singi/it2/senmon_bunka/number/dai8/siryou2.pdf
Seto, Y.: Practical Privacy Risk Assessment Technique - Privacy by Design and Personal Information Impact Assessment. Kindaikagaku Press, Tokyo (2014)
Specific personal information protection assessment guideline, April 2014. http://www.ppc.go.jp/files/pdf/shishin.pdf
Mayumi, S., Kei, S., Kazuhiro M., Sanggyu, S., Yoichi, S.: The problem analysis of specific personal information protection assessment. In: CSS 2015, vol. 2015(3), pp. 1199–1206 (2015)
Kei, S., Mayumi, S., Sanggyu, S., Yoichi, S.: A Study on the privacy risk assessment of responding to National ID Act in the financial sector. In: 2016 Symposium on Cryptography and Information Security (SCIS 2016) (2016)
Guidelines on proper handling of specific personal information in financial services, December 2014. http://www.ppc.go.jp/files/pdf/141211kinyu-guideline.pdf
Yoichi, S., Hiroaki, R., Fumio, S., Yasujiro, M., Hiroaki, I.: Privacy Impact Assessment PIA and Personal Information Protection. Chuokeizai Press, Tokyo (2010)
Sang-gyu, S., Tomomi, H., Mayumi, S., Yoichi, S.: Analysis of risk items in specific personal information protection assessment. In: The 32th Symposium on Cryptography and Information Security (2015)
ISO22307:2008 Financial services – Privacy impact assessment. http://www.iso.org/iso/catalogue_detail.htm?csnumber=40897
Satoru, N., Naoko, O., Michiya, O., Haruyki, K., Makoto, S., Yoichi, S.: Development of guidelines for personal information impact assessment. J. Jpn. Soc. Secur. Manage. 29(1), 3–16 (2015)
Explanation of Specific Personal Information Protection Assessment Guidelines, November 2014. http://www.ppc.go.jp/files/pdf/explanation.pdf
Inspection Manual for Deposit-Taking Institutions, June 2014. http://www.fsa.go.jp/en/refer/manual/yokin_e/y-all.pdf
About financial information system and FISC safety measures standard, December 2014. http://www.fsa.go.jp/singi/singi_kinyu/kessai_sg/siryou/20141208/03.pdf
The Guidelines on the Protection of Personal Information, November 2009. http://www.fsa.go.jp/common/law/kj-hogo/01.pdf
Acknowledgments
This research carried out in the Project Based Learning in the Advanced Institute of Industrial Technology. In advancing the PBL, we got the cooperation of Hiro Rokugawa, Yuta Kurosawa, Okimura Seiji, and Xiaofei Ma. We would like to express our appreciation here.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Shin, S., Seto, Y., Sakamoto, K., Sasaki, M. (2018). Consideration of Privacy Risk Assessment of the My Number in the Financial Industry in Japan. In: Park, J., Loia, V., Yi, G., Sung, Y. (eds) Advances in Computer Science and Ubiquitous Computing. CUTE CSA 2017 2017. Lecture Notes in Electrical Engineering, vol 474. Springer, Singapore. https://doi.org/10.1007/978-981-10-7605-3_43
Download citation
DOI: https://doi.org/10.1007/978-981-10-7605-3_43
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-10-7604-6
Online ISBN: 978-981-10-7605-3
eBook Packages: EngineeringEngineering (R0)