Nymity Releases the 2016 Version of the Nymity Privacy Management Accountability Framework™
Nymity’s research continues to bring to the privacy community resources that help build scalable and sustainable privacy management
Toronto, ON, Canada – Nymity, a global data privacy compliance research company specializing in accountability, risk, and compliance solutions for the privacy office, is pleased to announce the release of their updated Nymity Privacy Management Accountability Framework™ (“Framework”).
It was extremely beneficial to start building a program from scratch with the privacy management framework because I had everything of significance in front of me. Before I had access, I was making lists of what I thought was important, but with Framework I knew I wouldn’t miss anything, and that was a huge relief”, says Stephen Bolinger, General Counsel and Chief Privacy Officer, TeleSign.
Nymity’s Framework is a comprehensive list of over 130 privacy management activities that are jurisdiction and industry neutral and structured into 13 data privacy management categories found in most data protection laws around the world. It was structured after years of research and workshops and made available for free to the global privacy community. More recently, Nymity conducted Getting to Accountability workshops in 28 cities in 16 countries, working with over 500 privacy professionals which has now resulted in an updated Framework.
The Framework is meant to be used as a menu for privacy management instead of a checklist, providing organizations a structure for their privacy management, and enables them to embed accountability into practice, while capturing appropriate evidence for reviews and audits. The resulting structured approach to privacy management allows the privacy office to mitigate risks and ensure ongoing compliance. Nymity has seen successful use of the Framework in a wide range of organizations, as it is both scalable and sustainable.
The beauty of the framework is that it helps us compare apples and oranges. There are privacy programs and then there are privacy programs. There are privacy activities that lots of non-privacy people do but they aren’t called privacy; security activities, quality, [or] data science, they all do ‘privacy’ things. The Framework helps to focus on the activities – not the role. In this way, we can look for the ‘helpers’ for privacy”, comments Dr. Tracy Ann Kosa, Compliance Director, Microsoft.
For the new release of the Framework, Nymity’s research team has conducted a thorough review of the new laws, codes, and frameworks around the world; including the EU General Data Protection Regulation (GDPR) which has resulted in revising 70 privacy management activating, condensing 25 activities with updated scopes, and introducing 11 new activities. These aim to keep the Framework comprehensive and aligned to the ever changing privacy landscape. The updated Framework is also the structure behind the Nymity Privacy Management Accountability Tools recently released by the International Association of Privacy Professionals (IAPP).
Nymity continues to enhance the Framework, its scopes, and the solutions that utilize this structured approach to privacy management as new requirements are identified. Nymity’s continued research to support the privacy office helps privacy officers ensure compliance and embed accountability throughout their organizations to attain, maintain, and demonstrate compliance with confidence.
The 2016 Privacy Management Accountability Framework™ and Scopes are available for free download here.