NIST Logo and ITL Banner Link to the NIST Homepage Link to the ITL Homepage Link to the NIST Homepage
Search CSRC:


NIST Privacy Engineering Mailing List::

Email Updates
To sign up for updates or to access your subscriber preferences, please enter your contact information below.

Privacy Engineering at NIST

Privacy is a challenging subject that spans a number of domains, including law, policy and technology. Unlike other fields such as safety risk management and cybersecurity, system designers and engineers currently lack well-characterized, reusable, standards-based tools and practices to understand and mitigate privacy risks and integrate appropriate privacy controls into information systems.

NISTís work on Privacy Engineering focuses on providing guidance that can be used to decrease privacy risks, and enable organizations to make purposeful decisions about resource allocation and effective implementation of controls in information systems.

Posted May, 29, 2015: NIST requests comments on the draft report NISTIR 8062, Privacy Risk Management for Information Systems, which describes a privacy risk management framework for federal information systems. Please send comments to, using the comment matrix provided. (Please Note: The deadline for submitting comments on NISTIR 8062 has been extended to July 31, 2015).

To provide feedback to NIST on this privacy engineering effort, please send an email to