The NIST Privacy Framework was modeled after the NIST Cybersecurity Framework (CSF) so that the two frameworks could be used together more easily. This year, we will be implementing a modest update to Privacy Framework 1.1 to support realignment with the CSF 2.0 update and respond to our stakeholders’ current privacy risk management needs.
Stakeholders have expressed a desire for more support in using NIST frameworks and resources together. Because data governance is the starting point for many organizations seeking the benefits of data while managing privacy cybersecurity, AI, and IoT risks, we intend to develop a joint NIST frameworks Data Governance Profile. A joint Profile offers a means to effectively demonstrate complementary use of NIST resources.
New Year, New Initiatives for the Privacy Framework! | January 25, 2024 |
Concept Papers | TBD |
Workshop #1 | TBD |
Initial Public Drafts | TBD |
Workshop #2 | TBD |
*Mailing List: If you are having trouble joining the mailing list, e-mail PrivacyFramework+subscribe [at] list.nist.gov (PrivacyFramework+subscribe[at]list[dot]nist[dot]gov). If you don't have a Google account, please review and follow these instructions.