NIST logo
*
Bookmark and Share

2nd Privacy Engineering Workshop

Purpose:

Privacy is a challenging subject that spans a number of domains, including law, policy and technology. Notwithstanding numerous sets of principles, including the foundational Fair Information Practice Principles (FIPPs), that seek to address the handling of individuals' personal information, many concerns exist about the future of privacy in the face of rapidly evolving technologies. Process-oriented principles (such as FIPPs) are an important component of an overall privacy framework, but on their own they have not achieved consistent and measurable results in privacy protection. In the security field, risk management models, along with technical standards and best practices, are key components of improving security. Similarly, the safety risk management field also has well-developed models, technical standards and best practices. To date, the privacy field has lagged behind in the development of analogous components.

To address this gap, NIST has begun the Privacy Engineering initiative. Privacy Engineering focuses on providing guidance to information system users, owners, developers and designers that handle personal information. Such guidance can be used to decrease risks related to privacy harms, and to make purposeful decisions about resource allocation and effective implementation of controls.

On September 15-16, 2014, NIST will hold its Second Privacy Engineering Workshop in San Jose, CA. Co-sponsored with the International Association of Privacy Professionals (IAPP), this workshop will consider draft privacy engineering definitions and concepts. The results of this workshop will inform the development of the NIST report on privacy engineering.

There is no charge for attendance at this workshop.

NOTE: Due to logistical challenges, we will not be webcasting the workshop. We will be offering a webinar on Friday, September 26, 2014 that will present NIST's draft privacy engineering framework, and we will be extending the time period for comments. This webinar will allow participants to ask questions of NIST. Please check this page or our Twitter feed for the announcement of this webinar and the extension date for comments.

Who Should Attend: System design and privacy engineers, and privacy subject matter experts should attend this interactive workshop.

Workshop Materials

NIST Privacy Engineering Objectives and Risk Model Discussion Draft

Privacy Engineering Objectives and Risk Model - Discussion Deck

Agenda:

Agenda - September 9, 2014

Details:

Start Date: Monday, September 15, 2014
End Date: Tuesday, September 16, 2014
Location: San Jose Marriott, 301 S. Market St., San Jose, CA 95113,  Phone: 408-240-1300
Audience: Industry, Government, Academia
Format: Workshop

Registration:

Online Registration

There is no charge for attendance at this workshop.

Accommodations:

To reserve a room at The Sainte Claire
Special rate of $209 USD + tax
The Sainte Claire Hotel
302 South Market Street, San Jose, California 95113
Phone: 408-295-2000 | Fax: 408-977-0403

 

Technical Contact: