NIST issues draft framework to help organizations manage data privacy risk
The Department of Commerce鈥檚 National Institute of Standards and Technology this week released for comment a draft to help organizations that deliver or use data processing systems, products or services manage privacy risk. The draft framework aligns with NIST鈥檚 for reducing cybersecurity risks to the nation鈥檚 critical infrastructure, which includes health care and public health. NIST seeks feedback on whether the draft framework could be readily used as part of an organization鈥檚 risk management processes.