This document by the National Institute of Standards and Technology provides guidelines for a risk-based approach to protecting the confidentiality of PII. Intended primarily for U.S. federal agencies, the guidance provides information that other organizations may find useful.
Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)
Related Stories
Biometric Information – Permanent Personally Identifiable Information Risk
This article from Business Law Today looks at the risks involved with biometric data use. It answers what biometric data is, how it is used in business today, addresses some laws relating to biometrics and also gives practical pointers on how companies can comply.
Click to View...
M-17-12: Preparing for and Responding to a Breach of Personally Identifiable Information
This Office of Management and Budget memorandum, released in January 2017, sets forth the policy for federal agencies to prepare for and respond to a breach of personally identifiable information. It includes a framework for assessing and mitigating the risk of harm to individuals potentially affect...
Sample Communication: Definition of Personally Identifiable Information
This PowerPoint slide provides one example of how an organization communicates the definition of PII to its employees....
The PII Problem: Privacy and a New Concept of Personally Identifiable Information
Written by Paul Schwartz and Daniel Solove, this article explores the importance of personally identifiable information (PII) in privacy law and the challenges stemming from the lack of a uniform definition for the term. The authors outline a new approach to PII and show how existing approaches imp...
Global PII Directory
This excel workbook includes definitions of personally identifiable information in terms of applicable U.S. state laws, U.S. federal laws and national laws from countries across the globe....