Erika McCallister, Tim Grance, Karen Scarfone
National Institute of Standards and Technology, US Department of Commerce
This document provides information related to PII protection and security. While it is primarily intended for federal agencies, the information may be transferrable to other contexts.
This document provides guidelines for a risk-based approach to protecting the confidentiality 4of PII. The recommendations in this document are intended primarily for U.S. Federal government agencies and those who conduct business on behalf of the agencies, 5but other organizations may find portions of the publication useful.
Privacy & Governance, System Security