The CIO Council has released new recommendations
In order to aid in this process, the Strategy tasked the Privacy Committee of the Federal CIO Council to work with the National Institute of Standards and Technology (NIST), and the National Archives and Records Administration (NARA) to “develop guidelines for standardized implementation of digital privacy controls and educate agency privacy and legal officials on options for addressing digital privacy, records retention, and security issues.”
The resulting report, Recommendations for Standardized Digital Privacy Controls, was written by members of the CIO Council’s Privacy Committee and explains how privacy controls help enable and promote the Strategy’s data- and customer-centric approach. It also highlights the importance of integrating such controls into the risk management process to ensure that privacy is fully incorporated in the planning and development of digital services and programs.