Published by
@ShahidNShah
@ShahidNShah
NIST Privacy Framework: The Implementation Challenges
Although the National Institute of Standards and Technology’s new privacy framework, which was released Jan. 16, is agnostic toward any particular privacy law, “it gives organizations building blocks to help them meet any obligations under any particular law or jurisdiction that they’re subject to,” says Naomi Lefkovitz, a senior privacy policy adviser and program manager for privacy engineering at NIST.
“For example, you might have an obligation under GDPR [EU’s General Data Protection Regulation] to accept data deletion requests from individuals. The framework is not a prescriptive requirement-based approach, but rather you have to think through the kind of policies and technical capabilities that you might need,” Lefkovitz explains in an interview with Information Security Media Group.
“One of the activities or outcomes that we have is data can be accessed for deletion because if you don’t have the capability to actually go in, find and extract data in your systems, then meeting a legal obligation is just going to be aspirational,” she says.
Continue reading at healthcareinfosecurity.com
Make faster decisions with community advice
- Case study: Turnkey IT solution for mammography provider lowers costs, drives growth
- Cancer-causing culprits will be caught by their DNA fingerprints: Study within Pan-Cancer Project w…
- AI-assisted cardiac ultrasound guidance software receives De Novo clearance
- Rising Telehealth Adoption Among Trends Highlighted in AMA Survey
- Announcing the 2020 Innovator Award-Winning Teams from Healthcare Innovation
Next Article
-
Case study: Turnkey IT solution for mammography provider lowers costs, drives growth
Breast cancer is the most frequent cancer among women, impacting 2.1 million women each year, according to the World Health Organization. Breast cancer rates are steadily increasing in nearly every …
Posted Feb 12, 2020healthcare it
