Published on March 31, 2025
Sato Reiji
COO, Director, Acompany Inc.
PIA: Cross-border support for business, technology, and law
(Affiliation and position are as of the time of distribution)
Acompany provides solutions that utilize privacy-enhancing technology to safely handle highly confidential data.
Founded in 2018, Acompany has conducted research into blockchain technology and is currently providing support for privacy governance, including PIA and data mapping.
Acompany's specialty is "offensive privacy digital transformation." By providing support from both technical and compliance perspectives, the company helps companies make appropriate use of data.
We spoke to them about risk management for the use of generative AI and their global expansion.
====
Aiming to establish the triangle of "technology x compliance x governance"
Founded in 2018, Acompany Inc. offers multiple solutions for the safe handling of highly confidential and non-specific data, starting with secret computation, a privacy-enhancing technology.
The company's goal is not just to comply with laws and regulations, but to establish a triangle of "technology x compliance x governance".
In addition to technical aspects, the company provides support in the area of governance, such as PIA and data mapping,
and provides design support for safe data utilization in business development.
The starting point of Acompany's business is the consideration of blockchain technology.
Blockchain is a technology that assumes "disclosure," but in the actual business world, there was a dilemma of "wanting to hide but also wanting to utilize it."
To resolve this contradiction, the company arrived at a technology called secret computation.
Responding to such customers was a major turning point for the company's current business of supporting privacy and confidentiality.
====
Supporting business, technology, and legal affairs: Privacy DX for aggressive strategy
Acompany's service model has two major aspects.
They are the "technical side" and the "compliance side."
In terms of compliance,
we support data management systems from legal and compliance perspectives, such as establishing internal regulations for data usage, such as privacy governance and AI governance,
risk assessment, and formulating response policies.
We act as a bridge between the legal department and the IT department and business departments, acting as a "translator between technology and law."
And on the technical side, we provide appropriate solutions when measures are required.
By developing these two-axis services, we are at the "junction of business, technology, and law," and support many cross-departmental projects.
With the advancement of generative AI and location information business, the "business value of data" is rapidly increasing, and at the same time, social sensitivity to privacy and ethical risks is also increasing.
On the other hand, without understanding the technology itself, it is difficult to judge the privacy risks,
and it is said that only by properly overlapping the triangle of "business," "technology," and "law" can it be possible to set up safe data utilization.
At Acompany, we work with various departments within the client's company, such as the legal department, IT, security, business side, and sales,
while working on projects.
We believe that the balance of "the brake and the accelerator" is essential in designing data utilization in order to optimize the business.
This process is supported by PIA and governance systems,
and we optimize "what, to what extent, and how" it can be used for each company.
The "risk" that Acompany refers to is not just the risk of violating laws and regulations.
We analyze invisible risks such as violations of guidelines and ordinances that require ambiguous interpretation, reputation risks on social media and in the media, and brand damage due to a gap with consumer ethics... We also analyze "actual risks of flaming" by anticipating invisible risks.
Currently, the company is focused on supporting companies in Japan, but since many of its clients are global companies with bases in Europe, the US, and Southeast Asia, it is increasingly responding to international data regulations such as GDPR. In the future, the company is also considering expanding overseas, such as approaching the Southeast Asian market.
Related keywords:
#PIA #privacy #privacyDX #riskmanagement