Japan: Opened consultation on Draft Guidelines for Safety Management for Providers of Information Systems and Services Handling Medical Information Version 1.1

On 19 April 2023, the Ministry of Internal Affairs and Communications (MIC) opened a consultation on the Draft Guidelines for Safety Management for Providers of Information Systems and Services Handling Medical Information Version 1.1, until 18 May 2023. The Draft Guidelines aim to update the information and measures the entities have to implement outlined in the 2020 Guidelines on Information Systems Handling Medical Information Safety Management Guidelines for Service Providers due to the increased number of “sophisticated” cyberattacks. In particular, the Draft Guidelines list the measures that have to be implemented for safeguarding the medical data stored, provide examples of risk assessments that entities have to conduct and the response in case of cyberattacks depending on the type of medical data stored.