TOTAL: {[ getCartTotalCost() | currencyFilter ]} Update cart for total shopping_basket Checkout

Daily Dashboard | NIST talks Privacy Framework at RSA Related reading: A view from DC: Is your privacy policy stuck in the ’90s?



U.S. National Institute of Standards and Technology Senior Privacy Policy Advisor Naomi Lefkovitz and Applied Cybersecurity Division Chief Kevin Stine discussed the institute’s Privacy Framework at RSA Conference 2019, Threatpost reports. The framework has been developed to be risk-based, outcome-based and non-prescriptive, with a focus on best practices and desired outcomes, unlike the specificity seen in the EU General Data Protection Regulation. “Privacy is just another dimension of risk, and should be a part of that broader enterprise risk management activity in an organization,” Lefkovitz said. “They need to consider what is the likelihood of a problematic data action occurring, and what the impact would be in terms of customer loyalty, compliance and cost.” NIST continues to solicit feedback on the framework and will host a webinar and workshop in March and May respectively. Editor's Note: Jedidiah Bracy, CIPP, wrote about the launch of the framework's development in this piece for The Privacy Advisor.
Full Story


If you want to comment on this post, you need to login.