Asia Pacific & Japan – Compliance and Regulations for the IT professional

Asia Pacific & Japan – Compliance and Regulations for the IT professional

Report Author(s): Nigel Stanley


This paper highlights some key directives and legislation within the main Asia Pacific countries that have an impact on IT security practitioners, IT managers and others with responsibility for IT systems.

Countries covered include:

  • Japan
  • Korea
  • India
  • China
  • Australia
  • New Zealand
  • Singapore
  • Philippines
  • Thailand
  • Malaysia
  • Hong Kong
  • Taiwan

Legislation in Asia Pacific & Japan is vast and constantly changing. This paper is not designed to be an exhaustive review of every law and directive applicable across Asia Pacific & Japan and is not to be construed as legal advice. Legal standards vary remarkably across the region, fuelled by specific geopolitical issues beyond the realm of IT compliance. This needs to be remembered when contrasting legislation or attempting to explore a law in detail, for in some instances data is difficult to obtain.

It is evident that some individual countries have no desire to implement controls to protect data as it would present difficulties to an incumbent regime. In contrast, more forward-looking Asia-Pacific countries have implemented IT compliance requirements equal to, or in excess of, the requirements of US or EMEA based regulators.

By reading this paper, IT security practitioners, IT managers and others will gain an awareness of some legal factors that affect them today. It is strongly advised that any organisation requiring further explanations or details of appropriate legislation consult qualified legal practitioners.


Bloor Research

Bloor is an independent research and analyst house focused on the idea that Evolution is Essential to business success and ultimately survival. For nearly 30 years we have enabled businesses to understand the potential offered by technology and choose the optimal solutions for their needs.

Left Menu Icon