JP2018014150A - Individual number management device - Google Patents

Abstract

PROBLEM TO BE SOLVED: To solve the problem that in accordance with introduction of a common number system, a heavy burden for appropriate individual number management is fallen on business operators handling individual numbers such as customers and employees.SOLUTION: When a registration request of an individual number of a user is input, an individual number management device 18 associates and stores a temporary number different from the individual number and the individual number, and notifies the user of the temporary number. The individual number management device 18 receives input of temporary application data which are application data of the user to an administrative agency created in an organization at which the user has declared the temporary number, and in which the temporary number is set in a part to be set with the individual number of the user. The individual number management device 18 changes the temporary number set in the temporary application data into the individual number associated to the temporary number to convert the temporary application data into formal application data.SELECTED DRAWING: Figure 1

Description

  The present invention relates to data processing technology, and more particularly to technology for managing personal numbers assigned to citizens by the government.

  The government assigns a unique personal number that is unique to each citizen, and assigns each individual's personal information to each person's personal number, facilitating the management of personal information, and using a computer A numbering system has been introduced in each country to improve the efficiency of administrative work. In Japan, the related laws of the number system were enacted in the Diet in May 2013, and the use of personal numbers (commonly called “My Number” in Japan) is scheduled to start in January 2016.

JP 2007-208510 A

  Each person's personal number is associated with his / her personal information, name, address, gender, date of birth, social security payment, tax payment, financial account, etc. Restrictions are imposed and severe penalties are imposed for violations. Therefore, care must be taken when handling personal numbers. For this reason, the present inventor has considered that a large burden for appropriately managing personal numbers occurs in companies (business companies, payers) and financial institutions that handle personal numbers having high confidentiality.

  The present invention is based on recognition of the above problems of the inventor, and its main purpose is to provide a technique for reducing the burden of personal number management in various business operators such as financial institutions and companies. is there.

  In order to solve the above-described problems, a personal number management device according to an aspect of the present invention receives a registration request for a user's personal number for a personal number that is a unique number assigned to each citizen by the government. In such a case, a number registration unit that stores a temporary number and a personal number different from the personal number in association with each other and stores them in the storage device, and a temporary number associated with the personal number is notified to the user assigned with the personal number. Temporary number notifying unit that executes the above process and user application data created by the organization for which the user has declared the temporary number, where the temporary number is set where the user's personal number should be set The temporary application data by changing the temporary number set in the temporary application data to the personal number associated with the temporary application data. And a conversion unit that converts to a formal application data.

  Another aspect of the present invention is a personal number management method. This method is executed by a computer, and when a registration request for a user's personal number is entered for a personal number, which is a unique number given to each citizen by the government, the personal number is Storing a different temporary number and a personal number in a storage device in association with each other, executing a process for notifying a user assigned with a personal number of the temporary number associated with the personal number, and a user Receiving the input of temporary application data created in the organization that declared the temporary number, the application data of the user to the administrative institution, where the temporary number is set in the location where the user's personal number should be set; The temporary application data is converted to official application data by changing the temporary number set in the temporary application data to the personal number associated with the temporary number. Tsu includes a flop, the.

  It should be noted that any combination of the above-described constituent elements and a representation of the present invention converted between a system, a program, a recording medium storing the program, etc. are also effective as an aspect of the present invention.

  According to the present invention, it is possible to reduce the burden of personal number management in various business operators such as financial institutions and companies.

It is a figure which shows the structure of the information processing system of embodiment. It is a block diagram which shows the function structure of the personal number management apparatus of FIG. It is a figure which shows the structure of the storage data of a number holding part.

  With the start of the common number system, business operators are required to write personal numbers of employees and customers in application information with respect to administrative agencies regarding employees and customers, such as withholding slips and legal records. Specifically, companies (operating companies, payers) are required to submit a salary income withholding slip with the employee's personal number to the tax office. In addition, a financial institution (for example, a securities company) needs to submit a payment record describing the personal number of a customer (for example, the holder of a securities account) to the tax office. Accordingly, businesses are required to properly store personal numbers of employees and customers, and penal regulations are provided for inappropriate handling of personal numbers. In this way, it is considered that a large burden is generated on the operator by handling a highly confidential personal number.

  In order to solve such problems, the embodiment proposes a “Number Escrow Service”. The number escrow service manages the individual numbers of a plurality of service users (hereinafter referred to as “users”) collectively with the server of the number escrow service center, and each user has a unique temporary number different from the individual number. To grant. The temporary number can be said to be an alternative number used in place of the personal number when the business operator prepares the application document for the administrative agency. When various business operators should submit application information about users to the administrative organization, the temporary number written in the application information created by the business operator is replaced with an official personal number on the above server and submitted to the administrative organization. Create possible formal application information.

  By providing the number escrow service, the user declares a temporary number to the operator instead of the personal number, and the operator creates application information using the temporary number declared by the user. Accordingly, since the information that can be leaked from the operator is a temporary number, the risk of leakage of the personal information of the user can be reduced. Further, since the business operator does not need to manage the personal number itself given to the user by the country, it is possible to reduce the burden of personal number management in the business operator.

  In the following, companies (business companies, payers) and financial institutions are exemplified as business operators, but business operators using the number escrow service are not limited to these. It goes without saying that the number escrow service can be used by various organizations / organizations that should submit the application information describing the user's personal number to the administrative agency.

  FIG. 1 shows a configuration of an information processing system according to an embodiment. The information processing system 100 includes a user terminal 10, an administrative institution apparatus 12, a financial institution apparatus 14, a company apparatus 16, and a personal number management apparatus 18. These devices are connected via a communication network such as a LAN, a WAN, or the Internet. In the embodiment, electronic data is basically exchanged between information processing apparatuses. However, offline exchange of information, for example, a document exchange between a user and a business operator by face-to-face or mail may be performed. And offline may be combined as appropriate.

  The user terminal 10 is an information processing terminal operated by an investor who is a customer of a financial institution (for example, an account holder) or a company employee. The user terminal 10 may be a PC, a smartphone, a tablet terminal, or a mobile phone, for example.

  The plurality of administrative institution devices 12 are organizations related to policy execution and administrative affairs such as tax authorities, local governments, health insurance, public employment security offices, etc. It is. The administrative institution apparatus 12 receives electronic application data for a plurality of types of administrative institutions, for example, electronic data of withholding slips and statutory records from an external apparatus. In other words, it is a device for accepting electronic applications to administrative agencies. Of course, a written application may be made to a government agency.

  The financial institution apparatus 14 is an information processing apparatus of a financial institution and creates application data for a payment record for a securities account to be submitted to an administrative institution. The financial institution in the embodiment is a securities company, but may be another type of financial institution such as a bank, a trust bank, a life insurance company, a nonlife insurance company, a non-bank, or the like. The enterprise apparatus 16 is an information processing apparatus of an enterprise (in the embodiment, a business company that is a salary payer), and creates application data for employee withholding slips to be submitted to an administrative organization. The application data created by the financial institution device 14 and the enterprise device 16 is a set of provisional numbers declared by the investors and employees for the information items that should originally set the individual numbers of the investors and employees. . The application data in which the temporary number is set is hereinafter referred to as “temporary application data”.

  The personal number management device 18 is an information processing device that provides the above-described number escrow service as an ASP (Application Service Provider) service to an external device. In the embodiment, it is assumed that a device installed in a number escrow service center by a number escrow service provider. As will be described later, not only electronic data exchange between devices but also offline information exchange in a face-to-face manner may be combined as appropriate.

  FIG. 2 is a block diagram showing a functional configuration of the personal number management apparatus 18 of FIG. The personal number management device 18 includes an operation detection unit 20, a communication unit 22, a data processing unit 24, and a data holding unit 26. The data processing unit 24 executes various types of information processing. The data holding unit 26 is a storage area for storing electronic data necessary for information processing by the data processing unit 24. The operation detection unit 20 detects an operation input by an administrator or operator of the number escrow service center via an input device such as a keyboard or a mouse. The communication unit 22 communicates with an external device according to a predetermined communication protocol. The data processing unit 24 transmits / receives electronic data to / from an external device via the communication unit 22.

  Each block shown in the block diagram of the present specification can be realized in terms of hardware by an element such as a CPU and a memory of a computer or a mechanical device, and in terms of software, it can be realized by a computer program or the like. , Depicts functional blocks realized by their cooperation. Therefore, those skilled in the art will understand that these functional blocks can be realized in various forms by a combination of hardware and software.

  For example, a program module corresponding to each functional block of the data processing unit 24 may be stored in the storage of the personal number management device 18. Then, the function of each functional block of the data processing unit 24 may be realized by the CPU of the personal number management device 18 reading and executing these program modules to the main memory as needed. The functional block of the data holding unit 26 may be realized by storing data in a storage device such as a storage or a main memory.

  The data holding unit 26 includes a number holding unit 28. The number holding unit 28 holds the correspondence between the personal number assigned to the user by the government and the temporary number assigned to the user by the personal number management device 18. In the embodiment, the number holding unit 28 is implemented as a table in a relational database.

  FIG. 3 shows a configuration of data stored in the number holding unit 28. FIG. 3A shows a table (hereinafter referred to as “user number table”) that holds the correspondence between the user's own personal number and the temporary number assigned to the user. FIG. 3B shows a table (hereinafter referred to as “dependent person”) that holds a correspondence relationship between the individual number of the dependent person, that is, the dependent person's personal number and the temporary number assigned to the dependent person. This is referred to as a “number table”. The record of the dependent 1 in the dependent number table is, for example, the record of the spouse that the user supports, and the record of the dependent 2 is, for example, the record of the child that the user supports. Of course, the user number table and the dependent number table may be normalized as appropriate.

  As will be described later, a different temporary number is paid out for each organization (for example, a company or a financial institution) to which the user declares a temporary number. Accordingly, the number holding unit 28 stores one or more unique temporary numbers in association with one personal number of one user. The “assignment 1” field in FIGS. 3A and 3B is a field that holds information on the temporary number for the organization of the first reporting destination, and the organization information (for example, the reporting destination of the temporary number). The organization name, organization ID, organization location, etc.) are stored in association with each other. The “assignment 2” field is a field that holds temporary number information for an organization of a second report destination different from the first report destination. Although not shown, as the provisional number report destinations increase, fields of allocation 3, allocation 4,..., Allocation n are added to the user number table and the dependent number table.

  In the user identification information field, user identification information for uniquely identifying one user in the personal number management device 18 is stored. For example, the user identification information is a unique ID assigned to the user by the personal number management device 18 and may include a user ID for uniquely identifying the user in the number escrow service. The user identification information may include attribute information about the user such as the user's name, gender, date of birth, address, telephone number, and work place. These user identification information may be used in the user number table and the dependent number table to specify a user record to be referenced and updated.

  Returning to FIG. 2, the data processing unit 24 includes a number registration unit 30, a temporary number notification unit 32, an inquiry response unit 34, an application data reception unit 36, a conversion unit 38, and an application data transmission unit 40. The number registration unit 30 includes a temporary number determination unit 42. The inquiry response unit 34 includes a user inquiry response unit 44 and an organization inquiry response unit 46.

  In the embodiment, it is assumed that a personal number registration request specifying a user's personal number and a temporary number report destination is transmitted from the user terminal 10 to the personal number management device 18. When the number registration unit 30 receives the personal number registration request via the communication unit 22, the number registration unit 30 records the correspondence between the user's personal number and the temporary number in the number holding unit 28. Specifically, the number registration unit 30 stores the user's personal number in the user number table, and assigns the combination of the temporary number determined by the temporary number determination unit 42 and the temporary number report destination n ( n = 1, 2, 3...

  When the personal number of the user's dependent is further specified in the personal number registration request, the number registration unit 30 further records the correspondence between the personal number of the user's dependent and the temporary number in the number holding unit 28. . Specifically, the number registration unit 30 stores the personal number of the user's dependent in the dependent number table and receives the combination of the temporary number determined by the temporary number determination unit 42 and the temporary number report destination. Store in the assigned n field of the dependent number table.

  As a modification, the number registration unit 30 may accept a personal number registration request input by the operator of the number escrow service center via the operation detection unit 20. For example, the user may request the operator to issue a temporary number by presenting the IC card on which the personal number of each person and the dependent person is written and an identification card to the operator. After confirming the identity of the user, the operator may input a personal number registration request designating the personal number of the user and his / her dependent person and the destination of the provisional number to the personal number management device 18.

  When the personal number registration request is accepted, the temporary number determination unit 42 determines a different temporary number for each user, for each dependent person (that is, for each personal number), and for each organization to which the temporary number is reported. . In other words, a unique temporary number is determined in the personal number management device 18 (for example, a user number table and a dependent number table). Thus, since the personal number and the temporary number have a one-to-N relationship, the temporary number may have a larger number of digits than the personal number, and more types of characters may be used than the personal number.

  The temporary number notifying unit 32 is a temporary number assigned to the user by the temporary number determining unit 42, and the temporary number associated with the specific personal number by the number registration unit 30 is sent to the user who registered the personal number. Execute the process for notification. When the personal number of the user's dependent is further specified in the personal number registration request, the user is also notified of the temporary number associated with the dependent's personal number. In the embodiment, a temporary number notification message including a temporary number assigned to the user and the dependent is transmitted to the user terminal 10. The temporary number notification message may be, for example, an HTTP response to an HTTP request indicating a personal number registration request, or an e-mail specifying the user terminal 10 as a destination.

  As a modification, the temporary number may be notified to the user offline (for example, a letter or the like), and the temporary number notification unit 32 may record the user identification information and the temporary number in association with each other in a predetermined storage area. Good. For example, the operator of the number escrow service center is a letter that describes a destination based on the user's identification information recorded in a predetermined storage area, and creates a letter that describes the temporary number associated with the identification information, You may mail the letter.

  The inquiry response unit 34 executes response processing to an inquiry request for information held by the personal number management device 18. The user inquiry response unit 44 of the inquiry response unit 34 receives user inquiry requests transmitted from the financial institution apparatus 14 and the company apparatus 16 via the communication unit 22. In the user inquiry request, user identification information (arbitrary attribute information or the like), a temporary number, and reporting destination organization information of the temporary number (that is, the organization information of the request source) are designated.

  If a record that matches the combination of user identification information, provisional number, and report destination organization information specified in the user inquiry request is stored in the user number table, the record specified in the personal number registration request is correct. Since the number has been declared, the user inquiry response unit 44 transmits response data indicating normality to the financial institution apparatus 14 or the company apparatus 16 that is the inquiry source. On the other hand, if a record that matches the combination of user identification information, temporary number, and reporting organization information specified in the user inquiry request is not stored in the user number table, the record specified in the personal number registration request Since the temporary number has not been correctly declared, the user inquiry response unit 44 transmits response data indicating abnormality to the inquiry source device.

  In the user inquiry request, the temporary number of the user dependent and the reporting organization information may be further specified, and the user inquiry response unit 44 performs the same processing as described above. For example, the user inquiry response unit 44 confirms that a record that matches the combination of the user identification information specified in the user inquiry request, the temporary number of the dependent, and the organization information of the recipient is stored in the dependent number table. As a further condition, response data indicating normality is transmitted to the inquiring device.

  The organization inquiry response unit 46 of the inquiry response unit 34 receives the organization inquiry request input by the manager of the number escrow service center or the like via the operation detection unit 20. In the organization inquiry request, a specific temporary number is specified. The organization inquiry response unit 46, when a record that matches the temporary number specified in the organization inquiry request, in other words, a record that records the temporary number exists in the user number table or the dependent number table, Report destination organization information associated with the number is output to a predetermined output device. For example, it is displayed on a display connected to the personal number management device 18.

  The communication unit 22 is electronic data transmitted from the financial institution device 14 and the enterprise device 16 and receives temporary application data including user information to be applied to the administrative organization. The application data receiving unit 36 Accept input of application data. The provisional application data is, for example, payment record data created by a financial institution or withholding slip data created by a company. The provisional application data is data in which the temporary number of the user or dependent is originally written in the personal number input field in which the personal number of the user or dependent is to be written. On the other hand, in the information fields other than the personal number input field, correct information as a payment record or withholding slip is written. The provisional application data may be a document file in a format compliant with various office software.

  As a modification, provisional application data created by a financial institution or company may be input to the personal number management device 18 through an operation of an operator or the like. For example, a data storage device (not shown) may be installed in the number escrow service center, and the device may sequentially store temporary application data transmitted from each business operator. The operator of the number escrow service center performs a predetermined operation for inputting the temporary application data stored in the data storage device to the personal number management device 18, and the application data receiving unit 36 receives the temporary application data designated by the operator. May be read from the data storage device.

  The conversion unit 38 specifies the position of the personal number input field in the temporary application data received by the application data receiving unit 36. For example, the conversion unit 38 responds to the type of provisional application data from a storage device that stores information indicating the position of a personal number input field determined in advance for each of a plurality of types of provisional application data (payment records and withholding slips). The position of the personal number input field may be acquired. In this case, the type of provisional application data may be specified by the transmission source financial institution apparatus 14 and the company apparatus 16. Further, the conversion unit 38 identifies a position where a predetermined keyword indicating a personal number such as “personal number” or “my number” is described from the provisional application data, and the personal number input field is based on the described position. The position may be specified.

  The conversion unit 38 searches the user number table and the dependent number table using the temporary number set in the personal number input field of the temporary application data as a key, and the individual recorded in association with the temporary number in those tables Identify the number. Then, the temporary number set in the personal number input field is replaced with the personal number associated with the temporary number. As a result, the conversion unit 38 converts the provisional application data into formal application data (hereinafter referred to as “main application data”) having contents that can be submitted to the administrative organization. For example, in a withholding slip document file that contains the temporary numbers of users and dependents, a withholding slip document that can be submitted to the tax authorities by changing each person's temporary number to their personal number. Convert to file. The conversion unit 38 stores the created application data in a predetermined storage area.

  The application data transmission unit 40 transmits the application data created by the conversion unit 38 to the administrative institution apparatus 12 via the communication unit 22. The application data transmission unit 40 may transmit the application data with the administrative institution device 12 corresponding to the application content as the destination device from among the plurality of administrative institution devices 12. Information indicating the destination administrative institution apparatus 12 may be received from the financial institution apparatus 14 and the enterprise apparatus 16 together with the provisional application data.

  As described above, in the embodiment, the personal number management device 18 electronically applies to the administrative institution device 12 user information that a financial institution or company should apply to the administrative organization. As a modification, the operator of the number escrow service center may output the application data stored in the predetermined storage area by the conversion unit 38 to a paper document and send it to each administrative organization.

  In addition, there is no restriction | limiting in the physical number (case number) of information processing apparatus for implement | achieving the personal number management apparatus 18 of embodiment. The functions of the blocks of the data processing unit 24 and the data holding unit 26 may be executed in a distributed manner by a plurality of information processing apparatuses. Then, the number escrow service may be provided in the entire system including the plurality of information processing apparatuses by exchanging data through the communication network. For example, the number escrow service center includes a number registration device including a number registration unit 30 and a temporary number notification unit 32, a number management device including an inquiry response unit 34 and a number holding unit 28, an application data reception unit 36, and a conversion unit 38. An application support apparatus including the application data transmission unit 40 may be installed and cooperate with each other.

  The operation of the information processing system 100 configured as described above, in other words, the flow of personal number management and electronic application support processing in the number escrow service will be described with reference to FIG.

  The user (investor and employee) operates the user terminal 10 to issue a personal number registration request including the personal number of the user and the dependent person, identification information, and the provisional address of the temporary number from the user terminal 10. It is transmitted to the personal number management device 18. The identity verification information may be digital signature data (for example, a message digest encrypted with the user's private key). When the number registration unit 30 of the personal number management device 18 accepts the personal number registration request, the number registration unit 30 executes a predetermined personal confirmation process for the user based on the personal identification information.

  If the identity verification of the user is successful, in other words, if the user who sent the personal number registration request can confirm that the personal number specified in the request is legitimately assigned, the temporary number determination unit 42 determines a unique temporary number for each of the user and the dependent. The number registration unit 30 records the user's personal number, temporary number, and temporary number reporting destination, and the dependent individual's personal number, temporary number, and temporary number reporting destination in the number holding unit 28 in association with each other. The temporary number notification unit 32 transmits information indicating the temporary numbers of the user and the dependent to the user terminal 10 that is the transmission source of the personal number registration request.

  The user as an investor reports the account information and temporary number held to the financial institution. It may be electronically reported from the user terminal 10 to the financial institution device 14 via the web page of the financial institution, or the user may go to the financial institution and perform the reporting procedure. In addition, the user as an employee reports the employee number, his / her temporary number, and the dependent's temporary number to the company that is the payer. It may be reported electronically from the user terminal 10 to the company device 16 via a company web page or the like, or the user may perform a reporting procedure at a predetermined window of the company.

  The financial institution apparatus 14 and the company apparatus 16 are a user who specifies user identification information (for example, name, address, date of birth, etc.), a temporary number (including dependents) declared by the user, and information on his organization. An inquiry request is transmitted to the personal number management device 18. When the user inquiry response unit 44 of the personal number management device 18 accepts the user inquiry request, whether or not the information specified in the request is recorded in the number holding unit 28, in other words, the user makes a personal number registration request. It is determined whether or not a correct temporary number has been declared to the designated report destination, and a response indicating normality or abnormality is returned to the inquiry source apparatus. If the response is a normal response, the financial institution device 14 and the enterprise device 16 approve the temporary number declared by the user as a valid temporary number, and record the user's temporary number in a database or the like. On the other hand, if the response indicates an abnormality, the temporary number declared by the user is determined to be invalid and discarded, and the creation of application data using the temporary number is suppressed.

  The financial institution creates a payment record for the user based on the information reported by the user. Also, the company that is the payer creates a salary income withholding slip for the user based on the information reported by the user. In the personal number input field of these documents, a temporary number whose validity has been confirmed by a user inquiry to the personal number management device 18 is set. The financial institution apparatus 14 stores provisional application data of a payment record in which the user's temporary number is set, and transmits the provisional application data to the personal number management apparatus 18 at a predetermined timing when the payment record should be submitted to the tax authority. To do. Similarly, the enterprise device 16 stores temporary application data of a withholding slip in which temporary numbers of users and dependents are set, and when it is time to submit the withholding slip to the tax authority, the temporary application data is personalized. It is transmitted to the number management device 18.

  The application data receiving unit 36 of the personal number management device 18 receives temporary application data transmitted from the financial institution device 14 and the enterprise device 16. The conversion unit 38 changes the temporary number of the user (or the user and the dependent) set in the temporary application data to the personal number of the user (or the user and the dependent), thereby making the present application from the temporary application data. Create data. The application data transmission unit 40 transmits the present application data created by the conversion unit 38 to the administrative institution apparatus 12 corresponding to the application content.

  The administrator of the number escrow service center should take countermeasures and preventive measures against leakage if the temporary number issued to the user is leaked (outflowed) to an external organization or third party other than the legal filing address. In some cases, the source of the temporary number should be identified for consideration. At this time, the administrator inputs an organization inquiry request specifying the leaked temporary number to the personal number management device 18. Upon receiving the input of the organization inquiry request, the organization inquiry response unit 46 of the personal number management device 18 searches the number holding unit 28 using the designated temporary number as a key, and the report destination associated with the designated temporary number Output organization information. Since there is no duplication of temporary numbers in the personal number management device 18, one reporting destination organization can be specified. The administrator can specify the organization output as a response to the organization inquiry request as an organization having a high possibility of leakage.

  According to the personal number management apparatus 18 of the embodiment, the personal number management apparatus 18 centrally manages the personal numbers of highly confidential users. Businesses (such as salary payers' companies and financial institutions) that should submit application information including the user's personal number to the administrative organization should create application information using the user's temporary number assigned by each business operator. It is only necessary to manage the user's personal number. Thereby, the leakage risk of the personal number of the user for the business operator and the leakage risk of various personal information associated with the personal number can be suppressed, and the burden of personal number management at the business operator can be reduced.

  In addition, some application information to administrative organizations should include the personal number of the user's dependent, and if the business owner also manages the personal number of the user's dependent, the burden of personal number management on the business is not This is many times as much as managing only the user's personal number. According to the personal number management device 18, in addition to the user's own personal number, the user's dependent person's personal number is also collectively managed, and in addition to the user's own temporary number, the user's dependent person's temporary number is issued. . Thereby, even when the personal number of the user's dependent should be described in the application information to the administrative institution, the burden of personal number management in the business can be reduced. Since the temporary number is unique for each user (dependent) and for each organization of the reporting destination, even if the temporary number is leaked from the reporting organization to the outside, the temporary number is leaked. Can reduce the risk of personal information leakage.

  The present invention has been described based on the embodiments. This embodiment is an exemplification, and it will be understood by those skilled in the art that various modifications can be made to combinations of the respective constituent elements and processing processes, and such modifications are also within the scope of the present invention. is there. A modification is shown below.

A first modification will be described.
In the above embodiment, the temporary number reporting destination is specified in the personal number registration request. However, as a modification, the temporary number reporting destination may not be specified in the personal number registration request. Instead, the device of the business operator that has received the provisional number report from the user, for example, the financial institution device 14 and the enterprise device 16, and the provisional number (user and dependent) and the organization information of the provisional number (that is, the relevant information An organization registration request including organization information) may be transmitted to the personal number management device 18. When the number registration unit 30 (or the correspondence update unit not shown) of the personal number management device 18 receives the input of the organization registration request, the user number table or the dependents in which the temporary number designated in the request is recorded A record in the number table may be specified, and the report destination organization information may be recorded in association with the temporary number in the record. According to the first modification, since the temporary number and the report destination organization are associated afterwards by the system cooperation between the operator's device and the personal number management device 18, the organization inquiry can be realized as in the embodiment. .

A second modification will be described.
Although not mentioned in the above embodiment, the financial institution device 14 and the enterprise device 16 upload user identification information (arbitrary attribute information, etc.) and information of the own organization to the personal number management device 18 together with the provisional application data. May be. The personal number management device 18 may further include a verification unit. The verification unit is notified of the user identification information and the report destination organization previously associated with the temporary number of the user (and dependent) set in the temporary application data by the number holding unit 28 together with the temporary application data. It is determined whether or not it matches the user identification information and organization information. The verification unit may permit the conversion of the temporary application data by the conversion unit 38 when it is determined to be coincident, and may prohibit the conversion of the temporary application data and discard the temporary application data when it is determined that they do not match.

  If there is a discrepancy, 1) the temporary number has not been correctly declared to the organization specified in the personal number registration request, 2) the temporary application data sender organization has entered an invalid temporary number, and 3) It is assumed that some kind of abnormality has occurred, such as a mistake or trouble in the transmission source organization of the application data, or 4) an illegal outflow of the temporary number. According to the second modification, it becomes easy to prevent unauthorized application and notification to the administrative agency when such an abnormality occurs.

A third modification will be described.
Although not mentioned in the above embodiment, the personal number management device 18 may have a function as a web server, and various information such as application information to the administrative body, specifically withholding slips and payment records, etc. You may provide the document creation assistance part which transmits the web page which shows the input form of an application document or a report document to a provider's terminal. The document creation support department is the application data to the government agency entered on the web page, accepts an HTTP request including temporary application data set with the user's temporary number from the operator's terminal, and applies for the temporary application data You may pass to the data reception part 36. According to the third modification, it is possible to provide an ASP service that supports the creation of documents to be submitted by the business operator to the administrative organization. In other words, it is possible to provide a solution that comprehensively supports safe and inexpensive electronic application to an administrative organization that is not limited to managing personal numbers.

A fourth modification will be described.
In the above embodiment, the correspondence between the personal number assigned to the user by the government and the temporary number assigned to the user by the personal number management device 18 is held in a table, and the temporary number of the user is obtained by referring to the table. It was decided to convert it to a personal number. As a modification, the personal number management device 18 may hold a function (so-called temporary number generation logic) that outputs a unique temporary number when a user's personal number is input. In addition, when a unique temporary number is input, a function (in other words, a personal number restoration logic) that outputs a unique personal number, that is, a personal number from which the temporary number is generated may be held. The temporary number determination unit 42 may acquire the temporary number by inputting the personal number into the temporary number generation logic. The conversion unit 38 may acquire the personal number by inputting the temporary number into the personal number restoration logic, and convert the temporary application data into the actual application data.

A fifth modification will be described.
In the above embodiment, the user asks each business operator to declare a temporary number after receiving a temporary number from the number escrow service center for each business operator of the personal number reporting destination. As a modification, the user may report his / her personal number to the business operator. The business operator (the person in charge when offline, the financial institution device 14 or the corporate device 16 when online) registers the user's personal number in the number escrow service center, and in exchange for that, the user's temporary number is transferred from the number escrow service center. Temporary application data may be created by paying out a number. In this case, it is desirable that the business operator (and its device) does not permanently retain the user's personal number.

  As another aspect, the user may issue a unique special number for paying out a temporary number for each business operator who reports the personal number from the number escrow service center. At that time, the number escrow service center (for example, the personal number management device 18) may record the correspondence between the personal number, the temporary number, and the special number. The user may notify the operator of the special number, and the operator may receive a provisional number notification from the number escrow service center in exchange for the special number, and create provisional application data in which the provisional number is set.

  Any combination of the above-described embodiments and modifications is also useful as an embodiment of the present invention. The new embodiment generated by the combination has the effects of the combined embodiment and the modified examples. In addition, it should be understood by those skilled in the art that the functions to be fulfilled by the constituent elements described in the claims are realized by the individual constituent elements shown in the embodiments and the modified examples or by their linkage. .

  18 personal number management device, 28 number holding section, 30 number registration section, 32 temporary number notification section, 34 inquiry response section, 36 application data reception section, 38 conversion section, 40 application data transmission section, 42 temporary number determination section, 44 User inquiry response unit, 46 organization inquiry response unit, 100 information processing system.

Claims (1)

When a registration request for a user's personal number is entered for a personal number, which is a unique number assigned to each citizen by the government, a temporary number different from the personal number is associated with the personal number. A number registration unit to be stored in the storage device;
A temporary number notifying unit for executing a process for notifying a user assigned with the personal number of a temporary number associated with the personal number;
User application data created by the organization for which the user has declared a temporary number for the administrative institution that accepts input of temporary application data in which a temporary number is set at the location where the user's personal number should be set A reception department;
A conversion unit that converts the temporary application data into formal application data by changing the temporary number set in the temporary application data to a personal number associated with the temporary number;
A personal number management device comprising:

Images