These penal provisions are imposed against the representative of the organization or the individual that committed the violation.
Reference
Provider
Refer to “Chapter 9-4-3 Network Application.”
Corporate and legal affairs
(3)Service Providers Law
The “Service Providers Law” is off icially called the “Act on the Limitation of Liability for Damages of Specified Telecommunications Service
Providers and the Right to Demand Disclosure of Identification Information of the Senders.” The purpose of this legislation is to set forth the
limitation of liability for damages (immunity) of service providers, in the
event of the release of personal information, or publication of slander
through a website existing on a rental server operated by a specified telecommunications service provider. The legislation also gives infringed persons the right to demand disclosure of the name and other identification information for the sender.
Chapter 1
(2)Nuisance e-mail law
The “Nuisance E-mail Law,” officially called the “Act on Regulation of
Transmission of Specified Electronic Mail,” was enacted in order to prevent problems surrounding the mass sending of e-mails to many and unspecified persons, such as of direct mail and advertising.
(4)Standards
Various codes and standards exist concerning information security at corporations, including those summarized in the following sections.
●Standards for Measures against Computer Viruses
The “Standards for Measures against Computer Viruses” outline
measures to prevent infection from computer viruses, and measures for
identification, deletion and recovery in case of infection.
●Standards for Measures against Unauthorized Access to Computers
The “Standards for Measures against Unauthorized Access to Computers” outline measures for protection, identification, prevention, recovery, and recurrence prevention against unauthorized access to information
systems.
The standard addresses protection against unauthorized access from the
perspective of follow-up response, education, and auditing, in addition to
management.
●System Management Standards
The “System Management Standards” outline the measures that should
be taken by corporations with information systems. The standard includes
more than 280 items of criteria for checking, and sets forth a broad range
of guidelines concerning all aspects of information systems from IT strategy to planning, development, operation, maintenance, and common processes of information systems.
54