Japan Institute for CyberSpace Studies

Login

Seminar AI Sovereignty: Who owns the stack?

DateTuesday, 10 March 2026  ·  16:30–18:30 JST
VenueCIC Tokyo — 15F Toranomon Hills Business Tower, 1-17-1 Toranomon, Minato-ku, Tokyo
FormatPanel (45 min) + Open Q&A + Mixer
LanguageEnglish
Recorded bySummary based on session notes

1. Data Layer Concerns

The panel opened by examining how AI systems collect and process personal data at scale. Facebook’s AI infrastructure reportedly builds profiles using around 80,000 data points per individual, with no meaningful opt-in mechanism—users must actively seek out opt-out options, if they can find them at all.

Beyond targeted platforms, the broader ecosystem of screen scraping and bulk data harvesting operates with minimal oversight. In practice, organizations often have no clear picture of where their training data originated or how it was gathered. Japan adds another layer of complexity: data residency requirements mean that cross-border data flows create potential compliance exposure that many enterprises are not fully equipped to manage.

2. Inference Layer Risks

When organizations send prompts to AI systems, they routinely include proprietary business information and trade secrets—often without fully appreciating the risk. Enterprise data flows through cloud infrastructure with essentially no mechanism to track where it goes or how it is used afterward.

The scale of API-level attacks in the region was striking: 85% of Asia-Pacific organizations reported being hit by API attacks last year, yet Japan only disclosed approximately 10% of those incidents publicly. The panel highlighted a fundamental visibility problem—there is almost no way to trace decisions, audit data flows, or understand what actually happens across the inference stack.

3. Identity and Access Control

Model developers are racing to collect as much behavioral data as possible before regulatory frameworks catch up. Some companies are storing biometric data indefinitely—World ID was cited as an example of a system that retains retina scan data permanently.

A subtler concern is that identity representations inside AI models are not deterministic. The model creators themselves cannot fully explain how their systems construct an understanding of a given individual. This opacity makes accountability extremely difficult to establish.

4. Governance and Enforcement Gaps

Japan has relevant laws on the books covering copyright, privacy, and safety standards, but enforcement capacity is thin. Regulators cannot realistically monitor the speed and volume of activity happening in digital infrastructure. This creates a bind for compliant organizations: they are expected to follow vague rules using systems they cannot audit, and they bear liability if something goes wrong.

The result is a predictable split. Some companies over-comply out of caution; others quietly cut corners because there is no credible enforcement mechanism in place.

5. Infrastructure Architecture Risks

Centralizing everything in large data warehouses is increasingly dangerous. Modern AI models can analyze system architectures, identify endpoints, and probe for vulnerabilities at a speed that outpaces traditional security monitoring. Japan also faces a practical constraint: establishing data center connectivity in Tokyo can take five to ten years, which limits the ability to deploy distributed, edge-based architectures—even for organizations that understand the risk.

6. Legal and Regulatory Implementation

Japan amended its copyright law in 2016 to permit data use for machine learning purposes—an important step that has not been fully implemented in practice. Current discussions around allowing personal data transfers to third parties for ML training purposes raise a follow-on problem: there is no enforcement mechanism to ensure that data stays within the permitted use case rather than being repurposed.

7. Security Layer Weaknesses

Individuals sometimes make deliberate trade-offs—sharing health data with an AI system because the benefit outweighs the risk. The problem is irreversibility: once the data is out, there is no practical way to retrieve it. A Stanford study cited during the discussion found essentially zero meaningful transparency in the privacy policies of major model providers. Users have no clear picture of what these companies actually hold on them.

8. Directions Forward

The discussion converged on several practical directions:

  • Build out digital identity infrastructure using verifiable credentials—giving individuals and organizations portable, auditable proof of identity without centralizing sensitive data.
  • Develop Japan-specific security standards rather than simply adapting Western frameworks to a context with different threat models and infrastructure constraints.
  • Push access controls and monitoring closer to the user—at the edge rather than in distant cloud infrastructure—to restore some degree of practical visibility and control

Become a Member to view the video of the event.

Join
Share the Post:

Related Posts

Login

Please log in below.

Close

Privacy Policy

The Japan Institute for CyberSpace Studies (hereinafter referred to as "JICSS") has established the following privacy policy (hereinafter referred to as "the Policy") regarding the handling of personal information of users in the services provided on this website (hereinafter referred to as "the Services").

Article 1 (Personal Information)
“Personal information” refers to "personal information" as defined in the Act on the Protection of Personal Information, and includes information about living individuals that can be used to identify specific individuals by name, date of birth, address, telephone number, contact information, and other descriptions, as well as data related to appearance, fingerprints, voiceprints, and health insurance card insurer numbers.

Article 2 (Method of Collecting Personal Information)
When you submit an inquiry form, JICSS will obtain your name and e-mail address.

Article 3 (Purpose of Collection and Use of Personal Information)
The purposes for which JICSS collect and use personal information are as follows

To provide and operate our services
To respond to inquiries from users (including identification)
To send e-mail notifications of new features, updates, campaigns, etc. of the service the user is using, as well as information on other services provided by the Company.
To contact you as necessary for maintenance, important notices, etc.
To identify users who violate the Terms of Use or who attempt to use the service for illegal or unjust purposes, and to refuse their use of the service.
To allow users to view, change, or delete their own registration information, or to view the status of their use of the service.
To bill users for paid services.
For purposes incidental to the above purposes of use

Article 4 (Change of Purpose of Use)
JICSS shall change the purpose of use of personal information only when it is reasonably recognized that the purpose of use is related to the purpose of use before the change.
In the event of a change, JICSS shall notify the User of the changed purpose or publicly announce it on this website in a manner prescribed by JICSS.

Article 5 (Provision of Personal Information to Third Parties)
Except in the following cases, JICSS will not provide personal information to a third party without the prior consent of the user. However, this excludes cases permitted under the Personal Information Protection Law and other laws and regulations.
When it is necessary for the protection of the life, body, or property of an individual and it is difficult to obtain the consent of the individual.
When the provision of personal information is especially necessary for improving public health or promoting the sound growth of children, and it is difficult to obtain the consent of the individual concerned.
When it is necessary to cooperate with a national agency, a local government, or an individual or entity entrusted by either a national agency or local government to execute affairs prescribed by law, and obtaining the consent of the individual is likely to impede the execution of such affairs.
When we have notified or announced the following matters in advance, and when we have notified the Personal Information Protection Committee
The purpose of use includes provision to a third party
Data items to be provided to the third party
Means or method of provision to third parties
Cessation of provision of personal information to third parties at the request of the individual
The method of accepting the request of the person in question
Notwithstanding the provisions of the preceding paragraph, in the following cases, the party to which the relevant information is provided shall not fall under the category of a third party.
(i) When we outsource all or part of the handling of personal information within the scope necessary for the achievement of the purpose of use
When personal information is provided as a result of the succession of business due to a merger or other reasons
When personal information is used jointly with a specific person, and the Company notifies the person in advance or makes the information readily accessible to the person in advance to that effect, the items of personal information jointly used, the scope of joint use, the purpose of use by the person using the information, and the name of the person responsible for managing the personal information Article 6 (Disclosure of Personal Information)

Article 6 (Disclosure of Personal Information)
When requested to disclose personal information by the person in question, JICSS will disclose such information to the person without delay. However, if JICSS decides not to disclose the personal information, it will notify the individual to that effect without delay. A fee of 1,000 yen will be charged for each case of disclosure of personal information.
When there is a risk of harm to the life, body, property, or other rights or interests of the person concerned or a third party
If there is a risk of significant hindrance to the proper conduct of our business
If it violates any other laws or regulations.
Notwithstanding the preceding paragraph, in principle, JICSS will not disclose information other than personal information, such as historical information and characteristic information.

Article 7 (Correction and Deletion of Personal Information)
If the User's personal information held by JICSS is incorrect, the User may request JICSS to correct, add, or delete (hereinafter referred to as "correct, etc.") his/her personal information in accordance with procedures determined by JICSS.
If we deem it necessary to respond to the request from the user as described in the preceding paragraph, we will make the correction, etc. to the relevant personal information without delay.
In the event that JICSS makes corrections, etc. based on the preceding paragraph, or decides not to make such corrections, etc., JICSS will notify the User of such decision without delay.

Article 8 (Suspension of Use of Personal Information)
When we receive a request from a user to stop using or delete (hereinafter referred to as "stop using, etc.") his/her personal information on the grounds that it has been handled beyond the scope of the purpose of use or that it has been obtained by wrongful means, we will conduct the necessary investigation without delay.
If, based on the results of the investigation described in the preceding paragraph, we determine that it is necessary to comply with the request, we will suspend the use of the relevant personal information without delay.
When JICSS suspends the use of personal information in accordance with the preceding paragraph or decides not to suspend the use of personal information, JICSS will notify the user of this decision without delay.
Notwithstanding the preceding two paragraphs, in cases where the suspension of use involves a large amount of cost or it is otherwise difficult to suspend the use of personal information, and alternative measures can be taken to protect the rights and interests of the user, these alternative measures shall be taken.

Article 9 (Changes to Privacy Policy)
The contents of this Privacy Policy may be changed without notice to the User, except as otherwise provided by law or other regulations.
Unless otherwise specified by the Company, the revised Privacy Policy shall take effect from the time it is posted on the Website.

Article 10 (Contact for Inquiries)
Inquiries regarding this policy should be directed to the following contact


E-mail: info@jicss.org

Close

Commercial Disclosure

Legal Name The Japan Institute for CyberSpace Studies (JICSS), also registered as 一般社団法人 サイバー空間総合研究所.

Representative Our operations are led by our Director, Terutaka Kawabata.

Address Our headquarters are located at the Ginza Main Office: 4F Ginza KR II Bldg, 2-15-2 Ginza, Chuo-ku, Tokyo 104-0061, Japan.

Contact Information For inquiries, please contact us via email at info@jicss.org or by phone at +81 3 6281 5152. Our telephone support is generally available during standard business hours (10:00–17:00 JST), excluding weekends and public holidays.

Pricing and Additional Fees Service prices and membership dues are clearly displayed on the respective registration or checkout pages. There are no additional hidden fees for digital services; however, any bank transfer fees or internet connection costs remain the responsibility of the customer.

Payment Methods and Timing We accept payments via Credit Card (processed through Stripe) and Bank Transfer. Credit card payments are processed immediately at the time of purchase. For bank transfers, payment is required within 7 days of the order.

Delivery of Services Digital memberships and access to research materials are provisioned immediately upon successful completion of the payment process.

Cancellations and Refunds Due to the nature of digital content and immediate access to membership benefits, we generally do not offer refunds once a transaction is completed. You may cancel your membership at any time to prevent future billing through your account settings, but previous payments are non-refundable.