JIPDEC was established as a nonprofit organization in 1967.
Since its establishment, JIPDEC has worked to advance computer technologies and ensure the security of information systems.
With the progress of the IT industry, JIPDEC continues to tackle various issues and leads in building platforms for safe and secure IT usage. These activities ensure information security and have led to the development of an infrastructure for personal information protection.
A trusted mark showing your personal information is protectedOperation of the PrivacyMark System
Since April 2005, the “Act on the Protection of Personal Information” [Japan Law No.57, 2003] referred to as the Personal Information Protection Law, has been fully enforced in Japan. With the spread of new online services there continues to be an increasing awareness for the protection of personal information.
As more personal information is processed electronically and exchanged through the Internet, the implementation of effective measures to safeguard that personal information have been requested. Foreseeing these concerns, JIPDEC established, and has been operating, the “PrivacyMark System” since April 1, 1998.
This system evaluates the handling of private information by a business in a fair and neutral manner, from a third-party standpoint. The system follows the Japanese Industry Standard“Personal information protection management system - Requirements” (JIS Q 15001) which establishes a rigorous set of rules and procedures for the securing of personal information. Based on eligibility and qualifications, in addition to the specifications of JIS Q 15001, businesses that meet the requirements of these rules and procedures may use the “PrivacyMark” logo which is a trusted indicator of protection and conformance.
Accreditation of information technology related management systems through international standardsISMS/ITSMS/BCMS/CSMS accreditation activities
As a fair and neutral third-party institution, independent from other businesses, JIPDEC operates accreditation activities for four conformity assessment schemes - ISMS, ITSMS, BCMS, and CSMS.
■ISMS accreditation activities
JIPDEC accredits certification bodies which audit and certify organizations’ ISMS (Information Security Management Systems) in compliance with ISO/IEC 27001.
■ITSMS accreditation activities
JIPDEC accredits certification bodies which audit and certify organizations’ ITSMS (IT Service Management Systems) in compliance with ISO/IEC 20000-1.
■BCMS accreditation activities
JIPDEC accredits certification bodies which audit and certify organizations’ BCMS (Business Continuity Management Systems) in compliance with ISO 22301.
■CSMS accreditation activities
JIPDEC accredits certification bodies which audit and certify organizations’ CSMS (Cyber Security Management Systems) in compliance with IEC 62443-2-1.
* ”CSMS” in the CSMS scheme refers to the security management system for control systems.
Promoting trust and awareness related to e-signaturesBusiness certification through the authentication of electronic signatures
The enforcement of the Act on electronic Signatures and Certification Business (e-Signature Act) beginning in 2001, created a legal framework that allowed electronic signatures to be used in the same fashion as handwritten signatures and seals.
In 2003, JIPDEC was designated the official investigative body by the e-Signature Act.
JIPDEC investigates whether or not the equipment of specific certification businesses and their implementation methods conform to the standards established by the e-Signature Act.
JIPDEC actively promotes awareness regarding the handling of users' electronic signatures as well as an understanding regarding the use of electronic signatures and related authentication work.
Changing concept of digital certificatesJCAN Certificate
To meet the demands for an easy to use, digital authentication method that is inexpensive and easy to register, JIPDEC developed the JCAN certificate. The JCAN certificate is a public digital certificate created for use in the business sector to identify and authenticate employees.
The certificate also provides a secure infrastructure that offers the same level of credibility as the real world, and can easily respond to issues such as falsification, impersonation and information leaks which occur frequently in cyberspace. The JCAN certificate is certified by an international standards body and is mainly used in electronic trading (digital trading documents), client certification (access certification), and preventing email falsifications by enabling sender identification and encryption (S/MIME).
JIPDEC is also working to promote the use of digital certificates issued by each certification authority, increasing the number of JCAN compatible applications and other consulting services.
Streamlining of online business through reliable corporate informationROBINS - The Cyber Business Registry
JIPDEC also offers ROBINS, which is a registry of official corporate profiles that facilitates the verification of corporate information. The corporate profiles in the ROBINS registry comprise the company’s master data, which are particularly important when conducting business.
Contents of the registry consist of the registered Japanese and English company names, the registered corporate address, specific URLs, and various business codes assigned by the government and other organizations. Additional distinctive corporate data, acquired qualifications and commendations further enhance the registry entries.
ROBINS is used as a form of defence in preventing spoof email (“Anshin Mark”), website falsification (“ROBINS Seal”), protecting corporate branding on the Internet (“Brand Seal”).
The corporate profiles registered in the ROBINS system are reliable because the entries are managed by accredited corporations and undergo third-party verifications by notaries, licensed social insurance consultants and judicial scriveners.
ROBINS is the only corporate registry in Japan recognized by CA/Browser (CAB) Forum as a verified third-party certifying the English representation of company names.
Registration and management of corporate identifiers based on international standardsRegistration and management of Standard Company Codes
“Standard Company Codes” are unique corporate identifiers that were designed for the EDI (electronic data interchange and online trading) network, and comply with international standards. JIPDEC is a registered agent for the issuance of company codes complying with ISO/IEC 15459-2, ISO/IEC 6523, and UN/CEFACT data element 3055.
Creation of a new framework for the use of digital informationResearch on the development of a platform for the use of digital information
In 2013 the Japanese Cabinet approved a declaration for Japan to become the world’s most advanced IT nation by 2020. Towards this end, industries, academia and government agencies across Japan are working to achieve the goal of this IT strategy. Projects promoting “open data,” the uses of personal information, and the Internet of Things (IoT) have been identified as critical enablers of innovation and sectors showing an increased growth in productivity. The objectives of JIPDEC’s research consist of establishing rules to ensure security and transparency in our networked society. Our work focuses on removing the barriers that are preventing international harmonization and are deteriorating the values of a data-driven society.
Accredited Personal Information Protection Organizations
JIPDEC was accredited by the Minister for Economy, Trade and Industry and the Minister for Internal Affairs and Communications as an Accredited Personal Information Protection Organization pursuant to Clause 1, Article 37 of the Act on the Protection of Personal Information (hereafter, "the Act") on June 27, 2005.