Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


crosswalk icon

Crosswalks mapping the provisions of laws and regulations, standards, and frameworks to Subcategories can help organizations with prioritizing activities or outcomes to facilitate conformance.



Have a crosswalk? Share it with the community.


These crosswalks are intended to help organizations to understand which Privacy Framework Functions, Categories, and Subcategories may be most relevant to addressing the provisions of the source document. Organizations should not assume implementation of these Privacy Framework activities or outcomes means that they have met the provisions of the source document. There may be other activities that organizations need to undertake. 

Laws and Regulations

California Consumer Privacy Act (CCPA) Regulations Crosswalk by Craig Erickson

California Consumer Privacy Act (CCPA) Crosswalk by BakerHostetler

California Consumer Privacy Act (CCPA) & California Privacy Rights Act (CPRA) Crosswalk by BakerHostetler

Digital Personal Data Protection Act (DPDPA) by Amey Kantak, Persistent Systems

GDPR Crosswalk by Enterprivacy Consulting Group

LGPD Crosswalk by Prado Vidigal Advogados

VCDPA Crosswalk by BakerHostetler


ISO/IEC 27701 Crosswalk by Microsoft


American Institute of Certified Public Accountants (AICPA) 2017 Trust Services Criteria Crosswalk

Cybersecurity Framework Crosswalk

Fair Information Practice Principles (FIPPs) Crosswalk

International Association of Privacy Professional (IAPP) Certified Information Privacy Manager (CIPM) Crosswalk

NIST Privacy Framework and Cybersecurity Framework to NIST Special Publication 800-53, Revision 5 Crosswalk

Created January 8, 2020, Updated May 8, 2024