NIST is developing a Privacy Framework to pair with its Cybersecurity Framework. As part of the process, it asked for comments.
Calder said NIST should consider the following:
- Voluntary participation with incentives
- Alignment with existing standards
- Risk-based assessment model
- Balance business impact with consumers’ privacy interests
- Flexible approach to allow corporate scale
Read the full comment letter here >>