Online dating government regulation
 The competent minister examines whether the applicant has sufficient knowledge, abilities, and financial backing and has established a business execution method necessary for properly and soundly processing complaints.If the applicant conducts any other business, the minister also considers whether that other business would impede the applicant’s fairness in terms of the proper handling of personal information. An Authorized Personal Information Protection Organization must issue personal information protection guidelines concerning the specification of the purpose of utilization, security control measures, procedures for complying with individuals’ requests, and other matters. For example, regarding the Internet business, the Internet Association Japan issued Personal Information Guidelines on Electronic Network Management in 1994, and updated this document after the APPI was enacted. A data subject may file a complaint about the handling of personal information by a business operator with an Authorized Personal Information Protection Organization if the business operator is a member of the Organization.Though it is not specifically designed to protect online privacy, Japan does have a law to punish unauthorized access to computers.The Act on the Prohibition of Unauthorized Computer Access punishes a person who accesses a computer by breaking access control measures, such as using the authorized person’s identification and password without authorization or by creating a security hole.These acts may be punished by imprisonment of not more than one year or a fine of not more than 500,000 yen (about US,200). In a 2005 case a person accessed a website without authorization through a security hole and copied the personal information of 1,200 users of the website.He was found guilty and sentenced to eight months’ imprisonment, but the sentence was suspended. The APPI applies to business operators doing business in Japan. The Japan Information Processing Development Corporation (JIPDEC) established the “Privacy Mark” system in 1998 upon instruction from the Ministry of International Trade and Industry (currently the Ministry of Economy, Trade and Industry, METI).It requires all business operators handling personal information to specify the purpose for which personal information is utilized.Data subjects can request disclosure of their personal information that the business operators hold.
The legislature thought self- regulation by businesses would be appropriate. Those businesses that are subject to the APPI must specify the purpose of personal information collection.
It recommends that passwords have expiration dates and that IDs are suspended after someone has tried to log in with the wrong password for a certain number of times.