NIST’s Privacy Framework Starts to Take Shape
The Privacy Framework is being developed to be risk-based/outcome-based and non-prescriptive, unlike the GDPR.
The National Institute of Standards and Technology has plans to help companies address data privacy with the development of a Privacy Framework, which is due to be finalized by October. So far it has emerged as a modular, volunteer enterprise risk-management tool, meant to help companies protect consumer privacy while protecting business imperatives.
Source: RSA Conference 2019: NIST’s Privacy Framework Starts to Take Shape | Threatpost