Get Started

NIST IR 8477: Mapping Relationships Between Documentary Standards, Regulations, Frameworks, and Guidelines

The NIST IR 8477 explains National Institute of Standards and Technology’s approach for identifying and documenting the relationships between concepts in cybersecurity and privacy. By following this approach, the standards community can jointly establish a single concept system over time that links cybersecurity and privacy concepts from many sources into a cohesive, consistent set of […]

All Infographics (PDF)

Categories of Personal Information  Models of Privacy Norms Privacy by Design Process Strategies and Tactics A Taxonomy of Privacy Three Modern Quantitative Privacy Risk Models Privacy Risk Consent Implementing the NIST Privacy Framework Defining Privacy Engineering All infographics are CC BY and you may use them in their existing format. You may also download the […]

Transparency and Risk

I submitted comments to the Working Party 29 in response to their recently published Guidelines on Transparency under Regulation 2016/679 (aka GDPR). One of the points I highlighted was their promotion of Recital 39 which stipulates “Natural persons should be made aware of risks, rules, safeguards and rights in relation to the processing of personal […]