U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.


We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

White Paper (Draft)

NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management (Preliminary Draft)

Date Published: September 9, 2019
Comments Due: October 24, 2019 (public comment period is CLOSED)
Email Questions to: privacyframework@nist.gov


National Institute of Standards and Technology


NIST seeks comments on the Preliminary Draft of the "NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management" (“Preliminary Draft”). The Preliminary Draft was developed by NIST using information collected through the Request for Information (RFI) that was published in the Federal Register on November 14, 2018, and a series of open public workshops and webinars. NIST developed the Preliminary Draft in collaboration with public and private stakeholders. It is intended for voluntary use to help organizations:

  • better identify, assess, manage, and communicate privacy risks when designing or deploying systems, products, and services;
  • foster the development of innovative approaches to protecting individuals' privacy; and
  • increase trust in systems, products, and services.



enterprise security; privacy framework; risk management
Control Families

None selected


Security and Privacy
privacy; risk management