gbrain: sync converted org-mode brain files

2026-05-23 06:35:21 +00:00
parent 3f38e87f4f
commit 44299599f9
38 changed files with 1248 additions and 856 deletions
--- a/ideas/compliance/appi.org
+++ b/ideas/compliance/appi.org
@@ -0,0 +1,26 @@
+:PROPERTIES:
+:ID:       auto-appi
+:CREATED:  [2026-05-23 Sat]
+:END:
+#+title: 
+#+filetags: :passepartout:compliance:framework:appi:
+
+
+Japan's comprehensive privacy law (amended 2022, fully effective 2023).
+Applies to any business handling personal information of Japanese residents.
+Key requirements: consent, purpose specification, data retention limits,
+cross-border transfer restrictions (opt-in required), mandatory breach reporting,
+data subject access/deletion rights, pseudonymized/anonymized data provisions.
+Personal Information Protection Commission (PPC) enforces.
+
+Penalties: Up to 100M JPY (~$700K) for violations; criminal penalties up to
+1 year imprisonment. Orders to suspend data processing or delete data.
+
+Who must comply: All businesses handling personal information of Japanese
+residents. Extraterritorial — applies to non-Japanese businesses targeting
+Japanese residents.
+
+Why it matters: APPI's cross-border transfer restrictions require fine-grained
+control over which data leaves Japan. The gate stack can encode "this data has
+APPI cross-border consent flag = false → block egress." First-mover advantage
+is moderate — few non-Japanese vendors target APPI specifically, and the 2022