Outline and Objective
PrivacyMark System is a system set up to assess private enterprises that take appropriate measures to protect personal information. Such private enterprises are granted the right to display "PrivacyMark" in the course of their business activities. The System is in compliance with Japan Industrial Standards (JIS Q 15001: [Personal Information Protection Management System - Requirements]).
Because network technology and information processing technology through the Internet have progressed, and personal information is being disclosed to networks and processed through computers in large volumes, protection of personal information by the private sector is also sought. Due to a demand for effective measures to protect personal information that can be implemented as soon as possible, and upon instruction from Ministry of International Trade and Industry (currently Ministry of Economy, Trade and Industry), JIPDEC established PrivacyMark System and started its operation from April 1, 1998.
PrivacyMark System assesses private enterprises that maintain systems for the appropriate handling of personal information, and grants the use of PrivacyMark for those who meet certain standards. The System has the following objectives:
- Enhance consumer consciousness toward personal information protection with the display of PrivacyMark visible to the eyes of consumers
- By promoting the appropriate handling of personal information, respond to heightened awareness toward the protection of personal information of consumers, and bestow incentives to gain social credibility on business operators
On May 30, 2003, Act on the Protection of Personal Information (Act No. 57 of 2003), which covers private private enterprises , was enacted and announced. On April 1, 2005, it began general enforcement. The Act has revised and come into force on May 30, 2017. All private business enterprises handling personal information are required to conform to this law.
The grant of use of PrivacyMark requires third-party organizations to objectively evaluate the compliance of private enterprises with all relevant laws and regulations, including JIS Q 15001, and is an effective tool that allows private enterprises to demonstrate that they are in compliance with the law and that they have voluntarily established a personal information protection management system with a high level of protection.