Analysis: NIST Privacy Framework Core Counts

The NIST Privacy Framework (PF) is a voluntary tool developed in collaboration with stakeholders intended to help organizations identify and manage privacy risk to build innovative products and services while protecting individuals’ privacy. You can read more information here.

Sources:

The bar chart below provides the counts within the PF Framework Core. The Core consists of 3 hierarchical parts:

  1. Function
  2. Category
  3. Subcategory
The first/highest part of the Core consists of the following 5 Functions:
  1. Identify - Develop the organizational understanding to manage privacy risk for individuals arising from data processing.
  2. Govern - Develop and implement the organizational governance structure to enable an ongoing understanding of the organization’s risk management priorities that are informed by privacy risk.
  3. Control - Develop and implement appropriate activities to enable organizations or individuals to manage data with sufficient granularity to manage privacy risks.
  4. Communicate - Develop and implement appropriate activities to enable organizations or individuals to manage data with sufficient granularity to manage privacy risks.
  5. Protect - Develop and implement appropriate data processing safeguards.