JP2002099511A - Private information leakage preventive system in business processing system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To enable business processing to be conducted without worrying about leakage of private information between a server and a terminal which are connected through an external network of the Internet and the like. SOLUTION: This private information leakage preventive system is constituted as follows: while a server 3 and a terminal 4 which are connected through the Internet 2 are used, the server 3 side executes a predetermined business processing responding to a request from the terminal 4 side, and at the same time, the terminal 4 side displays or prints the processing result sent from the server 3 side, the server 3 side is provided with a main database 6 that stores information necessary for the business processing, the terminal 4 is provided with a local database 8 that stores private information, and the terminal 4 side combines the processing result sent from the server 3 side with the corresponding private information stored in the local database 8 to display or print.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention belongs to the technical field of a system for preventing leakage of personal information in a business processing system for performing business processing such as care insurance business and local government qualification business via a network such as the Internet. is there.

[0002]

2. Description of the Related Art In general, when a business process is computerized, a dedicated server (or host computer) and a business process application are introduced, and a plurality of terminals are connected to the dedicated server (internal network connection) to form a business process network. However, such a business processing system has a drawback that the initial cost is unacceptable and the operation is troublesome.

Therefore, recently, an application service provider (hereinafter, referred to as an ASP) which provides a business processing service equivalent to the business processing application via an external network such as the Internet has been proposed. That is, in the business processing system using the ASP, there is no need to introduce a dedicated server and a business processing application, and the management of the dedicated server and the main database becomes unnecessary.
There is an advantage that initial costs and operation costs can be significantly reduced.

[0004]

However, since the Internet transmits data via an unspecified server, the possibility of data leakage has been pointed out. Therefore, care insurance business and local government qualification business have been pointed out. As described above, it is difficult to provide business processing services by ASPs in business processing using highly confidential personal information, and even if service provision by ASPs is realized, personal information is output to the outside by the ordinance of protection. It was not possible to use it in municipalities that banned it.

[0005]

SUMMARY OF THE INVENTION The present invention has been made in order to solve these problems in view of the above situation, and uses a server and a terminal connected via a network. In a business processing system that executes predetermined business processing on the server side in response to a request from the terminal side and displays or prints the processing result returned from the server side on the terminal side, the server side performs business processing. While providing a main database in which necessary information is stored, a local database in which personal information is stored is provided on the terminal side, and a processing result returned from the server side and corresponding processing in the local database are provided on the terminal side. Personal information combining means for combining and displaying or printing personal information is provided. In other words, when building a business processing system that handles personal information using servers and terminals connected via a network, business processing can be executed without flowing personal information over the network. Business processes can be performed between servers and terminals connected via a network without fear of leakage of personal information. As a result, business processes for long-term care insurance business and municipal qualification business that handle highly confidential personal information ASPs are not allowed to provide services through ASPs, and even local governments that prohibit the disclosure of personal information under protection ordinances
Can be used. The personal information synthesizing means receives the personal identification key from the browser software for displaying or printing the processing result, searches the local database based on the personal identification key, and outputs the search result to the browser software as synthesis data. It is characterized by returning. That is, since the combined display or combined printing of the processing result and the personal information is performed using the browser software, dedicated combined display / printing software is not required. Further, the personal information synthesizing means includes personal information decrypting means for decrypting the personal information in the encrypted local database. That is, since the personal information in the local database is encrypted to restrict the reference from the outside, the confidentiality of the personal information can be improved. Further, personal information management means for managing personal information in a local database using a browser screen is provided. That is, since personal information in the local database is also managed using the browser software, uniformity of operation can be achieved.
In transmitting a plurality of item data from a server or a terminal to a network, the number of digits of each item data is converted into the number of digits previously determined between the server and the terminal. That is, it becomes difficult to decode the item data based on the number of digits, and the confidentiality of the item data can be improved. In transmitting a plurality of item data from the server or the terminal to the network, the order of the item data is converted into the order determined in advance between the server and the terminal. That is, it is difficult to decipher the item data in the arrangement order, and the confidentiality of the item data can be improved. In transmitting key information from a server or a terminal to a network, the key information is encrypted by an algorithm determined in advance between the server and the terminal. That is, the confidentiality of the data decrypted or retrieved based on the key information can be improved. In addition, using a server and a terminal connected via a network,
In the long-term care insurance business processing system, which performs the long-term care insurance business processing on the server side in response to a request from the terminal side, and displays or prints the processing result returned from the server side on the terminal side, In addition to providing a main database that stores information required for business processing of care insurance, a local database that stores personal information of the care recipient is provided on the terminal side, and a terminal side returns the information from the server side. Personal information synthesizing means for synthesizing and displaying or printing the processed result and the personal information of the corresponding care recipient in the local database; In other words, when constructing a care insurance business processing system that handles personal information using servers and terminals connected via a network, it was made possible to execute the care insurance business processing without flowing personal information over the network. Long-term care insurance business processing can be performed without fear of leakage of personal information between servers and terminals connected via an external network such as the Internet. As a result, the long-term care insurance business processing service can be provided by ASP In addition, local governments that prohibit the release of personal information under the protection ordinance will be able to use and provide care insurance business processing services by ASPs. Also, on the server side, a business processing means for a care support business operator that creates a care service plan, and a business processing means for a care service business operator that provides a care service based on the care service plan created by the care support business. Is characterized in that information processed by each business is stored in a main database, and the stored data is made available to each business mutually. In other words, since the results of the business processing can be shared between the operators, the efficiency of the business processing can be improved by avoiding duplicate input and duplicate processing. Further, the server is provided with a result information creating means for creating care service result information of the care service company using the care service plan information created by the care support company. That is, when creating the nursing care service result information, it is not allowed to reduce the number of input items and increase the efficiency of the business process, and it is possible to maintain consistency with the nursing care service plan information. In addition, the server is provided with a payment management form creating means for creating payment management form data for a care support company based on care service plan information. In other words, when creating the payment management form data, it is not allowed to reduce the number of input items and increase the efficiency of business processing, and it is possible to maintain consistency with care service plan information. Further, the server is provided with a remuneration bill creating means for creating remuneration bill data for the nursing care service provider based on the nursing service performance information. That is, when creating the remuneration invoice data, it is not permitted to reduce the number of input items to increase the efficiency of business processing, and it is possible to maintain consistency with the nursing care service result information. In addition, using a server and a terminal connected via a network, the server performs a local government qualification business process in response to a request from the terminal, and the terminal returns the processing result returned from the server to the terminal. In a business processing system for local government qualification to be displayed or printed, a main database for storing information necessary for local government qualification business is provided on the server side, while personal information of the qualification applicant is stored on the terminal side. And a personal information synthesizing means for synthesizing and displaying or printing the processing result returned from the server and the corresponding personal information in the local database on the terminal side. It is assumed that. In other words, when constructing a local government qualification business processing system that handles personal information using servers and terminals connected via a network, it will be possible to execute local government qualification business processing without passing personal information on the network. As a result, municipal qualification certification processing can be performed without fear of leakage of personal information between servers and terminals connected via an external network such as the Internet, and as a result, personal information can be taken out under the protection regulations Local governments that prohibit the above can also provide local government qualification business processing services by ASP. Also, personal information not managed by the local database or personal information supplementing the local database is obtained from the IC card via the IC card access device on the terminal side, and combined with the processing result returned from the server side for display or A personal information synthesizing means for printing is provided. That is, since the personal information to be synthesized can be appropriately supplemented from the IC card, the local database can be made more compact than in the case where it is stored in the local database in advance.

[0006]

Next, one embodiment of the present invention will be described with reference to the drawings. In the drawings, reference numeral 1 denotes a business processing system for a long-term care insurance business. The business processing system 1 includes a server 3 (WEB server) connected via the Internet 2 and a plurality of terminals 4 (a personal computer having an Internet connection function). Etc.). The server 3 includes a business processing application 5 for providing the care insurance business processing service as an ASP, a main database 6 for storing information necessary for the care insurance business processing, and the like.
Browser software 7 for browsing pages, a local database 8 for storing personal information of the care recipient, registration of personal information stored in the local database 8,
It is provided with personal information management software 9 for updating and deleting, personal information search software 10 for searching for personal information stored in the local database 8, and the like.

[0007] The browser software 7 is an unspecified WEB
HTML files, image files, etc. are downloaded from the server via the Internet 2, a function of analyzing and displaying the layout, a function of downloading music files, video files, etc., and playing them using predetermined playing software, and an input form. A function of transmitting input data to a web server, a predetermined language (JavaScript, J
ava, etc.), a function for operating an external program such as the personal information search software 10, and the like.

[0008] The local database 8 includes an insured person number, a user name, a date of birth, gender, a degree of nursing care, a validity period, a benefit rate, a short-term entrance limit number of days, an address, and a telephone number required for care insurance business. Various personal information such as a number is configured to be stored for each user (care-requiring person), and a personal identification key is set in a record storing personal information of each user.

The personal information stored in the local database 8 is encrypted by a predetermined algorithm. For example, kanji data (shift JIS code)
It is regarded as byte numerical data, and a predetermined numerical value is added to or subtracted from each numerical data and stored in the local database 8.

The personal information management software 9 has a registration function for encrypting the personal information input on the screen and newly registering it in the local database 8, and decrypting the personal information in the designated local database 8 to display the screen. To display,
In addition, the personal information management software 9 is provided with an update function of encrypting personal information corrected on the screen and overwriting the personal information, and a delete function of deleting the personal information displayed on the screen from the local database 8. It is configured to be executed and to perform management operations such as information display and information input using a browser screen.

The personal information search software 10 receives the personal identification key from the browser software 7, searches the local database 8 based on the personal identification key, and decrypts the search result (personal information). It is configured to be passed to the browser software 7.

On the other hand, the main database 6 of the server 3 stores basic information such as unit price information, business information, service information, and recipient information necessary for care insurance business processing, and a care service plan registered by a care support company. Information, the nursing care service result information registered by the nursing care service provider, and the like. In the record storing the information for each user, the personal identification key corresponding to the one in the local database 8 is stored. Is set.

The business processing application 5
Is a function that displays the logon screen on the terminal screen, a function that permits logon based on the user ID and password entered on the logon screen, a function that displays the personal selection screen on the terminal screen, and a task selection screen that is displayed on the terminal screen. Function to display the processing screen of the selected business on the terminal screen, receive information input on the processing screen, and execute predetermined business processing based on the received information, and display the processing result on the terminal screen. Although it has a display function and the like, at the time of logon, it generates an encryption key necessary for various types of encryption and decryption, which will be described later, and passes the encryption key to the terminal 4.

Next, a basic procedure of business processing performed between the server 3 and the terminal 4 will be described. However, the following numbers indicating the procedures do not correspond to the numbers attached to the drawings. 1) Activate the browser software 7 of the terminal 4 and connect to the server 3 to display a logon screen, and enter a user ID and a password. 2) If the server 3 determines that the user is an authorized user, the server 3 transmits the encryption key and the business selection screen data, and causes the terminal 4 to display the business selection screen. 3) When a job is selected on the job selection screen, the server 3 transmits personal selection screen data and causes the terminal 4 to display the personal selection screen. 4) Prescribed personal information items (user name, etc.) on the personal selection screen
Is input, the server 3 transmits the business process screen data and causes the terminal to display the business process screen. 5) Browser software 7 is personal information search software 1
The input information is passed to the local database 8 to search the local database 8, and the search result is received and combined and displayed on the personal information display portion of the business operation screen. 6) When the data input to the business data input portion of the business processing screen is completed, the input business data and personal identification key (personal information is not transmitted) are encrypted and transmitted to the server 3. 7) After receiving the encrypted data, the server 3 decrypts the received data, executes the business process with reference to the main database 6, encrypts the processing result, and transmits the result to the terminal 4. 8) After receiving the encrypted data, the terminal 4 decrypts the received data, and then displays the decrypted processing result on the business processing screen together with personal information. 9) When a printing operation is performed on the business processing screen, the business processing result and personal information are combined and printed in a predetermined format.

That is, using the server 3 and the terminal 4 connected via the Internet 2, the server 3 performs predetermined business processing in response to a request from the terminal 4, and is returned from the server 3. When displaying and printing the processing results on the terminal 4 side, the server 3 is provided with a main database 6 for storing information necessary for business processing, while the terminal 4 is provided with a local database for storing personal information. 8 is provided, and the processing result returned from the server 3 and the corresponding personal information in the local database 8 are combined and displayed or printed on the terminal side. It is possible to perform business processing without having to do so. Accordingly, business processing can be performed between the server 3 and the terminal 4 connected via the Internet 2 without fear of leakage of personal information. As a result, a care insurance business processing service that handles highly confidential personal information can be provided. Not only is the ASP allowed to be provided, but also local governments that prohibit the export of personal information under protection regulations can use the ASP.

When a plurality of item data (processing results, input data, etc.) are transmitted from the server 3 or the terminal 4 onto the Internet 2, in the present embodiment, the number of digits of each item data is determined in advance by the server 3 and the terminal. By unifying the number of digits agreed with the number 4, it is difficult to decode the item data by the number of digits. That is, when sending item data such as "item 1 (two digits), item 2 (three digits), item 3 (eight digits), item 4 (one digit), item 5 (10 digits) ...""Item 1 (3 digits), Item 2 (3 digits), Item 3 (1
A predetermined dummy is added at the end of each data in order to unify the number of digits (for example, two types of three digits and ten digits) as in “0 digit”, item 4 (three digits), item 5 (10 digits). Data (for example, 0)
Has been added.

Further, in the present embodiment, when a plurality of item data (processing results, input data, etc.) are transmitted from the server 3 or the terminal 4 to the Internet 2, the order of the item data is determined in advance by the server 3 and the terminal. The conversion of the item data according to the arrangement order is made difficult by converting the arrangement order determined between the first and second items. That is, when sending item data such as “code 1, pattern information, value 1, value 2, value 3, code 2,...”, “Value 3, pattern information, value 2, 1, value 2, code 1, code 2... ". Incidentally, the pattern information is information for transmitting the conversion pattern used this time from the plurality of conversion patterns set to the other party. For example, in the case of the pattern 123, the “first item and the fifth item Arrangements such as "swap items" are made between the server 3 and the terminal 4 in advance. The arrangement position of the pattern information is unchanged, and is set, for example, at the second position.

When the key information is transmitted from the server 3 or the terminal 4 to the Internet 2, in the present embodiment, the key information is encrypted in a pattern that has been previously agreed between the server 3 and the terminal 4. The confidentiality of data decrypted or retrieved based on key information is enhanced. In other words, when transmitting 10-digit key information such as "3210987654", the order is changed as in "1984237650" based on the pattern information. By the way, the pattern information is information for transmitting the conversion pattern used this time from the plurality of conversion patterns set to the other party. For example, in the case of the pattern 123, “the first digit is changed to the sixth digit. The second digit to the fifth digit, the third digit to the first digit, the fourth digit to the tenth digit, the fifth digit to the second digit, the sixth digit to the third digit, 7, 8, No movement in the 9th digit, 1
Arrangement such as "0th digit to 4th digit" is made in advance by server 3 and terminal 4.
Is made between

Further, in the present embodiment for performing a care insurance business process, a business process menu for a care support business operator for preparing a care service plan (care plan: service usage slip, service usage slip separate table, etc.) Prepare a business process menu for nursing care service providers that provide nursing care services based on the nursing care service plan created by the company,
The information processed by each company is stored in the main database 6, and the stored data can be used mutually by each company. That is, by passing the above-mentioned individual identification key between the care support business operator and the care service business operator, it is possible to use the mutual processing result without flowing the personal information on the Internet 2. As a result, duplication input and duplication processing can be avoided to increase the efficiency of business processing.

Further, in the present embodiment, when the nursing care service provider prepares the nursing care service result information (service provision slip, etc.), the nursing care service plan information created by the nursing care support company is used by the above information sharing. Therefore, the number of input items can be reduced and the efficiency of business processing can be increased, and consistency with care service plan information can be maintained.

In the present embodiment, when the care support company creates the payment management form data, the main database 6
In order to create based on the nursing care service plan information stored in the company, it is possible to reduce the number of input items and increase the efficiency of business processing, and to maintain consistency with the nursing care service plan information Has become.

Further, in the present embodiment, when the care service provider creates the remuneration claim data, it is created based on the nursing service performance information accumulated in the main database 6, so that the number of input items is reduced and the business process is performed. Not only is it possible to increase the efficiency of the nursing care, but it is also possible to maintain consistency with nursing care service performance information.

The server 3 and the terminal 4 connected via the Internet 2 are constructed as described above.
In response to a request from the terminal 4 side, the server 3 executes predetermined business processing, and displays or prints the processing result returned from the server 3 side on the terminal 4 side. In addition, a main database 6 in which information necessary for business processing is stored is provided.
Providing a local database 8 where personal information is stored,
Further, since the processing result returned from the server 3 and the corresponding personal information in the local database 8 are combined and displayed or printed on the terminal 4 side, the business can be performed without flowing the personal information on the Internet 2. Processing can be performed. Accordingly, business processing can be performed between the server 3 and the terminal 4 connected via the Internet 2 without fear of leakage of personal information. As a result, a care insurance business processing service that handles highly confidential personal information can be provided. AS
It is not a permission that can be provided by P, but even local governments that prohibit the disclosure of personal information by protection regulations are A
SP can be used.

Further, the personal identification key is received from the browser software 7 for displaying or printing the processing result, and the local database 8 is searched based on the personal identification key.
Since the personal information retrieval software 10 is provided to the user, the combined display or combined printing of the processing result and the personal information can be performed using the browser software 7, and as a result, the dedicated combined display / printing software becomes unnecessary. can do.

Further, since the personal information in the local database 8 is encrypted, it is possible to restrict the reference from the outside and enhance the confidentiality of the personal information.

Further, since the personal information management software 9 for managing personal information in the local database 8 using the browser screen is provided, the operation can be unified with the business processing performed on the browser screen.

In transmitting a plurality of item data from the server 3 or the terminal 4 to the Internet 2,
Since the number of digits of each item data is converted into the number of digits determined between the server 3 and the terminal 4 in advance, it is difficult to decode the item data based on the number of digits, and the confidentiality of the item data can be improved.

In transmitting a plurality of item data from the server 3 or the terminal 4 to the Internet 2,
Since the arrangement order of each item data is converted into the arrangement order determined in advance between the server 3 and the terminal 4, it is difficult to decipher the item data in the arrangement order, and the confidentiality of the item data can be enhanced.

In transmitting the key information from the server 3 or the terminal 4 to the Internet 2, the key information is encrypted by an algorithm determined in advance between the server 3 and the terminal 4. The confidentiality of the decrypted or searched data can be improved.

Further, in the present embodiment for performing a care insurance business process, a business process menu for a care support business operator for preparing a care service plan (care plan) and a care service plan prepared by the care support business company are provided. In addition to providing a business process menu for a nursing care service provider that provides nursing care services, and in storing information processed by each service provider in the main database 6, the stored data can be used mutually by each service provider. Was made possible,
Duplicate input and duplication processing can be avoided to increase the efficiency of business processing.

Further, in the present embodiment, when creating care service result information (service provision slips, etc.) of a care service provider, the information sharing described above uses the care service plan information created by the care support provider. Therefore, the number of input items can be reduced and the efficiency of business processing can be increased, and consistency with care service plan information can be maintained.

Further, in this embodiment, when the care support company creates the payment management slip data, the main database 6
Since it is created based on the nursing care service plan information accumulated in the nursing care service planning information, the number of input items can be reduced and the efficiency of business processing can be increased, and consistency with the nursing care service plan information can be maintained.

Further, in this embodiment, when the care service provider creates the remuneration claim data, it is created based on the nursing care service result information accumulated in the main database 6, so that the number of input items is reduced and the business process is performed. It is possible to increase the efficiency of the nursing care service and maintain the consistency with the nursing care service result information.

The present invention is, of course, not limited to the above-described embodiment, and is applicable to all business processes dealing with personal information. Therefore, for example, as shown in the second embodiment, The present invention may be applied to qualification work, and a second embodiment will be described below. However, for the configuration common to the first embodiment, the description and reference numerals of the first embodiment are used.

In the second embodiment, the server 3 connected via a network such as the Internet 2
And a local government that uses the terminal 4 to execute the business process of local government qualification on the server 3 in response to a request from the terminal 4 and displays or prints the processing result returned from the server 3 on the terminal 4 side The business processing system 1 for qualification is configured, and the server 3 side stores a main database 6 in which information necessary for local government qualification business is stored.
On the terminal side 4, a local database 8 in which personal information of the qualification applicant is stored is provided. Further, on the terminal 4 side, the processing result returned from the server 3 side corresponds to the processing result in the local database 8. The information is combined with personal information and displayed or printed. Therefore, the municipal qualification certification process can be performed between the server 3 and the terminal 4 connected via an external network such as the Internet 2 without fear of leakage of personal information. Local governments that are prohibited from submitting to a local government can also provide local government qualification business processing services by ASP.

Further, in the second embodiment, personal information not managed by the local database 8,
It is configured so that personal information that complements the local database 8 can be obtained from the IC card 12 via the IC card access device 11 and combined with the processing result returned from the server 3 to be displayed or printed. . Therefore, the personal information to be synthesized can be supplemented from the IC card 12 as appropriate, and as a result, the local database 8 can be made more compact than when it is stored in the local database 8 in advance. I have.

[Brief description of the drawings]

FIG. 1 is a block diagram schematically illustrating a business processing system.

FIG. 2 is a block diagram showing a care insurance business processing system.

FIG. 3 is an explanatory diagram showing a business processing procedure.

FIG. 4 is an explanatory diagram showing a kanji code conversion process.

FIG. 5 is an explanatory diagram showing a digit number conversion process of item data.

FIG. 6 is an explanatory diagram showing an order conversion process of item data.

FIG. 7 is an explanatory diagram showing a digit position conversion process of key information.

FIG. 8 is a diagram showing a personal information management screen.

FIG. 9 is a diagram showing a service usage form creation screen.

FIG. 10 is a diagram showing a service usage form-specific table creation screen.

FIG. 11 is a block diagram schematically showing a second embodiment.

[Explanation of symbols]

 DESCRIPTION OF SYMBOLS 1 Business processing system 2 Internet 3 Server 4 Terminal 5 Business processing application 6 Main database 7 Browser software 8 Local database 9 Personal information management software 10 Personal information search software 11 Card access device 12 IC card

Claims (14)

[Claims] 1. A server and a terminal connected via a network. The server executes predetermined business processing in response to a request from the terminal, and transmits a processing result returned from the server to a terminal. In the business processing system for displaying or printing in the above, while providing a main database in which information necessary for business processing is stored on the server side,
On the terminal side, a local database for storing personal information is provided, and on the terminal side, personal information for displaying or printing by combining the processing result returned from the server side and the corresponding personal information in the local database. A personal information leakage prevention method in a business processing system, comprising a combining means. 2. The personal information synthesizing means according to claim 1, wherein the personal information synthesizing means receives a personal identification key from browser software for displaying or printing a processing result, and searches a local database based on the personal identification key. A method for preventing personal information from leaking in a business processing system, which returns to a browser software as data for synthesis. 3. A personal information processing system according to claim 1, wherein said personal information synthesizing means includes personal information decoding means for decoding personal information in an encrypted local database. Leak prevention system. 4. A method for preventing personal information from leaking in a business processing system according to claim 1, further comprising a personal information managing means for managing personal information in a local database using a browser screen. 5. The method according to claim 1, wherein when transmitting a plurality of item data from the server or the terminal to the network, the number of digits of each item data is converted into the number of digits previously determined between the server and the terminal. A method for preventing personal information from leaking in business processing systems. 6. The method according to claim 1, wherein when transmitting a plurality of item data from the server or the terminal to the network, the arrangement order of each item data is converted into the arrangement order determined in advance between the server and the terminal. A personal information leakage prevention method for a business processing system. 7. The method according to claim 1, wherein when transmitting the key information from the server or the terminal to the network, the key information is encrypted by an algorithm determined in advance between the server and the terminal. A method for preventing personal information from leaking in business processing systems. 8. Using a server and a terminal connected via a network, the server executes a care insurance business process in response to a request from the terminal, and transmits a processing result returned from the server to the terminal. In the business processing system for care insurance that is displayed or printed on the side, a main database in which information necessary for business processing of care insurance is provided on the server side, while personal information of a care recipient in need is provided on the terminal side. A local database to be stored is provided, and the terminal further includes personal information combining means for combining and displaying or printing the processing result returned from the server and the personal information of the corresponding care recipient in the local database. A method for preventing leakage of personal information in a business processing system for long-term care insurance. 9. The nursing care service according to claim 8, wherein on the server side, a business processing means for a care support business operator that creates a care service plan, and a care service that implements a care service based on the care service plan created by the care support business company. In providing service processing means for a service provider, information processed by each provider is stored in a main database, and the stored data is made mutually available to each provider. Prevention system for personal information in business processing systems. 10. The server according to claim 8, wherein the server is provided with a result information creating means for creating the care service result information of the care service company using the care service plan information created by the care support company. A method for preventing leakage of personal information in a business processing system for long-term care insurance. 11. The nursing care system according to claim 8, wherein the server is provided with a payment management form creating means for creating payment management form data for a care support company based on care service plan information. A method for preventing personal information from being leaked in an insurance business processing system. 12. The nursing care system according to claim 8, further comprising a remuneration bill creating means for creating remuneration bill data for the nursing care service provider based on the nursing care service result information on the server side. A method for preventing personal information from being leaked in an insurance business processing system. 13. Using a server and a terminal connected via a network, the server executes a local government qualification business process in response to a request from the terminal, and receives a processing result returned from the server. In a business processing system for local government qualification that is displayed or printed on the terminal side,
On the server side, while providing a main database in which information necessary for local government qualification work is stored, on the terminal side,
There is a local database where the personal information of the qualification applicant is stored, and on the terminal side, the individual who combines and displays or prints the processing result returned from the server side and the corresponding personal information in the local database A method for preventing leakage of personal information in a business processing system for qualifying local governments, characterized by having an information synthesizing means. 14. The terminal according to claim 13, wherein personal information not managed by the local database or personal information supplementing the local database is obtained from the IC card via the IC card access device and returned to the terminal from the server. A personal information leak prevention method in a business processing system for local government qualification, comprising a personal information synthesizing means for synthesizing and displaying or printing the processing result.