April 26, 2024
Daily News
Citing GDPR, industry group advocates recognition of cybersecurity as 'legitimate interest' in NIST's coming privacy framework
A leading industry group is pointing to the European Union's General Data Protection Regulation as containing important cybersecurity principles for the National Institute of Standards and Technology to consider as NIST develops a risk management framework for protecting privacy.
NIST's privacy framework “should promote bases for processing data that have been accepted in other legal regimes, including Legitimate Interests, a key part of the GDPR framework,” wrote the Cybersecurity Coalition, whose members include major telecommunications, technology and cybersecurity firms.
In...