FTC proposes five amendments to NIST Privacy Framework

By Jaclyn Jaeger2019-10-25T18:24:00+01:00

No comments

The Federal Trade Commission has submitted comment on the preliminary draft of the National Institute of Standards and Technology’s Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management.

In its comments, staff of the FTC’s Bureau of Consumer Protection commended NIST for proposing a voluntary tool aimed at helping organizations start a dialogue about managing privacy risks within their organizations.

The regulator also:

Called for greater attention to the need to address the risk of privacy breaches at each step of the draft Privacy Framework;
Recommended the Privacy Framework clarify procedures for managing privacy risks should account for the sensitivity of the information;
Recommended NIST consider including a more robust discussion of the analysis companies should undertake to ensure consumers understand a company’s data privacy practices, including reviewing whether a company’s actual data practices align with consumer expectations and public-facing statements;
Suggested the Privacy Framework include the designation of one or more specific individuals to be in charge of creating, implementing, and maintaining an organization’s privacy program; and
Recommended the Framework highlight the importance of conducting a comprehensive risk assessment as a necessary first step before making decisions about which privacy controls should be implemented.

The Commission voted 5-0 to authorize staff to submit comment to NIST.

Jaclyn JaegerJaclyn Jaeger is an editor with Compliance Week and has written on a wide variety of topics, including ethics and compliance, risk management, legal, enforcement, technology, and more.

Topics

No comments

Article
NIST provides guidance on how to bridge privacy, cyber-security processes
2019-10-18T16:11:00Z
NIST’s new draft Privacy Framework offers much-needed guidance to help companies align their data privacy and cyber-security risk management practices.
Article
New York law provides LIBOR fallbacks as rate nears end
2021-04-09T16:00:00Z
A new law in New York provides contracts that reference LIBOR with a fallback provision and safe harbor once the benchmark interest rate permanently ceases to be published at the end of the year.
Article
SEC whistleblower head Jane Norberg to depart
2021-04-08T20:44:00Z
The head of the Securities and Exchange Commission’s whistleblower program, Jane Norberg, will leave her post later this month.

No comments yet

You're not signed in.

Only registered users can comment on this article.

More Regulatory Policy

Article
FinCEN launches rulemaking on beneficial ownership
2021-04-01T16:54:00Z
The Financial Crimes Enforcement Network has launched its rulemaking process that will require corporations report the individual or individuals who own and control them, part of an initiative to help U.S. law enforcement fight financial crime.
Article
SEC seeking comment on new foreign audit oversight rules
2021-03-24T18:43:00Z
The SEC is seeking comment on new submission and disclosure rules related to foreign public companies that are not allowing U.S.-based auditors to review their financial statements.
Article
CFTC joins SEC in climate risk push
2021-03-18T18:13:00Z
The Commodity Futures Trading Commission announced the formation of a “Climate Risk Unit” to support the agency’s efforts to determine the role of derivatives in addressing climate-related risks.

Learn from the latest headlines and protect your company today

FTC proposes five amendments to NIST Privacy Framework

Topics

Related articles

NIST provides guidance on how to bridge privacy, cyber-security processes

New York law provides LIBOR fallbacks as rate nears end

SEC whistleblower head Jane Norberg to depart

No comments yet

Only registered users can comment on this article.

More Regulatory Policy

FinCEN launches rulemaking on beneficial ownership

SEC seeking comment on new foreign audit oversight rules

CFTC joins SEC in climate risk push