Scott Giordano, Jason Cronk
2019 saw the release of two privacy protection frameworks, the NIST Privacy Framework and ISO 27701. The NIST Privacy Framework follows on the successful release and industry-wide adoption of the NIST Cybersecurity Framework and was designed to complement it. ISO 27701 is an extension of ISO 27001 and 27002 and provides a framework for implementing, maintaining, and improving a privacy information management system (PIMS). Both offer potential for substantially advancing the protection of personal information in an organization, albeit using different approaches. This presentation will describe the strengths and weaknesses of each approach and provide insight on choosing the right one for you.
Scott Giordano, V.P. and Sr. Counsel, Privacy and Compliance, Spirion
Jason Cronk, Privacy & Trust Consultant, Enterprivacy Consulting Group