๐ผ PM-18 Privacy Program Plan
- ID:
/frameworks/nist-sp-800-53-r5/pm/18
Descriptionโ
a. Develop and disseminate an organization-wide privacy program plan that provides an overview of the agencyโs privacy program, and:
- Includes a description of the structure of the privacy program and the resources dedicated to the privacy program;
- Provides an overview of the requirements for the privacy program and a description of the privacy program management controls and common controls in place or planned for meeting those requirements;
- Includes the role of the senior agency official for privacy and the identification and assignment of roles of other privacy officials and staff and their responsibilities;
- Describes management commitment, compliance, and the strategic goals and objectives of the privacy program;
- Reflects coordination among organizational entities responsible for the different aspects of privacy; and
- Is approved by a senior official with responsibility and accountability for the privacy risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation; and b. Update the plan [Assignment: organization-defined frequency] and to address changes in federal privacy laws and policy and organizational changes and problems identified during plan implementation or privacy control assessments.
Similarโ
- Internal
- ID:
dec-c-94c384f9
- ID:
Similar Sections (Give Policies To)โ
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|