Online privacy is a growing concern, not only here in the U.S., but across the globe. By the same token, “It is a challenge to design, operate or use technologies in ways that are mindful of diverse privacy needs in an increasingly connected and complex environment,” according to the National Institute of Standards and Technology.
Disastrous data breaches, which have occurred across all sectors of business and government, have exposed individuals to identity theft, extortion — and have made Americans susceptible to unethical and harmful foreign and criminal manipulation.
“I personally think organizations have the primary responsibility to manage privacy risks because they are the ones determining how to collect, store, use and share individuals’ information to meet their mission or business objectives. That said, I do encourage my friends and family to think carefully about how and with whom they share information online. Be very vigilant about clicking on suspicious links or opening documents in emails. And no, I’m not going to tell you to read privacy notices — at least until they get a lot simpler and easier to understand!”, Lefkovitz said.
Lefkovitz also pointed out that organizations run the risk of losing customers because they are concerned about how their personal data is being used. “These problems can cause people direct emotional distress as well as causing them to limit or abandon their use of beneficial products and services due to lack of trust.”
Lefkovitz is encouraging organizations that want to get involved in developing the Voluntary Privacy Framework to visit the NIST Privacy Engineering Program website.
“NIST aims to collaboratively develop the Privacy Framework as a voluntary, enterprise-level tool that could provide a catalog of privacy outcomes and approaches to help organizations prioritize strategies that create flexible, effective privacy protection solutions and that let individuals enjoy the benefits of innovative technologies with greater confidence and trust,” Lefkovitz said.