amr/hermes-brain
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
cc3976fb7f792cae1423e37b6067c57efa23f288
hermes-brain/ideas/compliance/appi.org
Hermes cc3976fb7f ideas: editorial sweep — atomization, interlinking, restructuring 
- Split competitive-analysis-2026-05.org → TOC + 9 competitor files in
  ideas/competitors/. Dropped date from filename. All competitor UUIDs
  generated, TOC keeps original UUID for backlink continuity.
- Deleted passepartout-economics.org archive (replaced by 27-node KB).
- Inlined 5 'See also' blocks into natural prose (compliance-index,
  first-mover-window, revenue-table, orders-of-magnitude-time,
  native-org-knowledge-base).
- Linked 7 orphan compliance pages back to compliance index + finished
  truncated sentences.
- Linked all 14 Agora requirement docs from topic-relevant pages
  (identity→lisp-machine-security, infrastructure→compute-marketplace,
  social-space→growth-strategy, exchange→agora-contracts, etc.).
- Linked ai-industry-impact from investment-thesis, sufficiency-flip,
  verification-appliance, effects-growth-flywheel (up from 1 to 10+ pages).
- Fixed CREATED timestamps to use git commit dates instead of today.
- Made all links absolute from root (no port inheritance).
- Removed stale agora/docs/ duplicate content.
2026-05-24 16:25:55 +00:00

30 lines
1.5 KiB
Org Mode
Raw Blame History

:PROPERTIES:
:ID: b852ec69-0fc2-435c-ae1e-6b83e49b3ca3
:ID: auto-appi
:CREATED: [2026-05-23 Sat]
:END:
#+title: APPI (Act on the Protection of Personal Information — Japan)
#+filetags: :passepartout:compliance:framework:appi:
Japan's comprehensive privacy law (amended 2022, fully effective 2023).
Applies to any business handling personal information of Japanese residents.
Key requirements: consent, purpose specification, data retention limits,
cross-border transfer restrictions (opt-in required), mandatory breach reporting,
data subject access/deletion rights, pseudonymized/anonymized data provisions.
Personal Information Protection Commission (PPC) enforces.
Penalties: Up to 100M JPY (~$700K) for violations; criminal penalties up to
1 year imprisonment. Orders to suspend data processing or delete data.
Who must comply: All businesses handling personal information of Japanese
residents. Extraterritorial — applies to non-Japanese businesses targeting
Japanese residents.
Why it matters: APPI's cross-border transfer restrictions require fine-grained
control over which data leaves Japan. The gate stack can encode "this data has
APPI cross-border consent flag = false → block egress." First-mover advantage
is moderate — few non-Japanese vendors target APPI specifically, and the 2022 report. First-mover advantage is moderate — few non-Japanese vendors target APPI specifically, and the 2022 amendments created a market for dedicated APPI tooling.
Part of the [[id:e4a7b3d2-1c9f-4b6e-8a2d-5f3c7e1b9a0c][compliance framework index]].
Reference in New Issue View Git Blame Copy Permalink