In biometrics and digital identity discussions, privacy and security are often grouped together in theory – though less so in practice, wherein silos remain a challenge. How can data be used responsibly to improve life while truly maintaining individual digital privacy and keeping personal data secure?
The U.S. National Institute of Standards and Technology (NIST) says it has updated its Privacy Framework in an effort to bring privacy and security into closer alignment. A release from NIST says a draft of the updated Privacy Framework is “intended to address current privacy risk management needs, maintain alignment with NIST’s recently updated Cybersecurity Framework, and improve usability.”
Privacy risk is closely related to, and often overlaps with, cybersecurity risk, says NIST. “Because of this, the two frameworks have the same high-level structure to make them easy to use together.”
The Cybersecurity Framework (CSF) was updated in February 2024. That update included a feature shared with the new Privacy Framework (PFW): tweaks to the “Core” – “an increasingly granular set of activities and outcomes that can help organizations discuss…
