Security and Privacy Controls for Information Systems and Organizations

PERSONALLY IDENTIFIABLE INFORMATION (PII) PROCESSING and TRANSPARENCY

The PERSONALLY IDENTIFIABLE INFORMATION (PII) PROCESSING and TRANSPARENCY Playbook addresses the following areas:

  • Policy and Procedures
  • Authority to Process Personally Identifiable Information
  • Personally Identifiable Information Processing Purposes
  • Consent
  • Just-In-Time Consent
  • Privacy Notice
  • System of Records Notice
  • Specific Categories of Personally Identifiable Information
  • Computer Matching Requirements

The PERSONALLY IDENTIFIABLE INFORMATION (PII) PROCESSING and TRANSPARENCY Playbook is included in the Security and Privacy Controls for Information Systems and Organizations (NIST 80-53) Library which has been developed by the U.S. Department of Commerce's  National Institute of Standards and Technology (NIST).  It establishes controls for systems and organizations. The controls can be implemented within any organization or system that processes, stores, or transmits information.  

Back (Small2)