NIST Release Privacy Framework – a Tool for Managing Risk
The National Institute of Standards and Technology (NIST) has just released version 1.0 of the NIST Privacy Framework; a new tool centered around managing privacy risk. In addition to covering general best practices and strategies for organizational data control, risk management & compliance the publication also highlights the the relationship between the Privacy Framework with NIST’s Cybersecurity Framework.
Although the NIST framework is neither a law or regulation, it is an extremely relevant and useful template to help companies scale in compliance.
“People continue to yearn for more guidance on how to do privacy risk management,” she said. “We have released a companion roadmap for the framework to point the way toward more research to address current privacy challenges, and we are building a repository of guidance resources to support implementation of the framework. We hope the community of users will contribute to it to advance privacy for the good of all.” – Naomi Lefkovitz, a senior privacy policy adviser at NIST and leader of the framework effort.
For more resources on this topic visit NIST at NIST.gov, and view the full document here: NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management.