| TIP: NIST SP 800-53 r4 Privacy Control IP-1: Consent

NIST SP 800-53 r4 Privacy Control IP-1: Consent, v4

Profile of requirements corresponding to NIST Special Publication 800-53 r4, Privacy Control IP-1: Consent.

Identifier

https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-privacy-control-ip-1_-consent/4/

Publication Date

2021-04-26

Issuing Organization

TMI (https://trustmarkinitiative.org/) View Contact

No Responder

help@trustmarkinitiative.org

555-555-5555

No Mailing Address

Keywords

800-53, Consent, Individual Participation, NIST, Privacy, Redress

Legal Notice

This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.

Tree View
Details View

Trust Expression:

TD_ref1 and TD_ref2 and TD_ref3 and TD_ref4 and TD_ref5 and TD_ref6 and TD_ref7 and TD_ref8 and TD_ref9 and TD_ref10 and TD_ref11 and TD_ref12 and TD_ref13 and TD_ref14 and TD_ref15 and TD_ref16 and TD_ref17 and TD_ref18

References (18)

TD Privacy - Consent for New Uses of PII Not in the Public Notice at the Time of Collection (Where Feasible), v1.0
Description	Defines conformance and assessment criteria for verifying that an organization ensures that, where feasible, individuals consent to all uses of PII not initially described in the public notice that was in effect at the time the organization collected the PII.
ID	TD_ref1
Provider Reference

TD Privacy - Consent for Collection (Where Feasible), v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means, where feasible and appropriate, for individuals to authorize the collection of personally identifiable information (PII) prior to its collection.
ID	TD_ref2
Provider Reference

TD Privacy - Consent Prior to New Disclosure, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization obtains consent from individuals prior to any new disclosure of previously collected PII.
ID	TD_ref3
Provider Reference

TD Privacy - Consent Prior to New Use, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization obtains consent from individuals prior to any new uses of previously collected PII.
ID	TD_ref4
Provider Reference

TD Privacy - Consent Prior to New Disclosure (Where Feasible), v1.0
Description	Defines conformance and assessment criteria for verifying that an organization obtains consent, where feasible and appropriate, from individuals prior to any new disclosure of previously collected PII.
ID	TD_ref5
Provider Reference

TD Privacy - Consent for Sharing, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means for individuals to authorize the sharing of personally identifiable information (PII) prior to its collection.
ID	TD_ref6
Provider Reference

TD Privacy - Consent - Individuals Can Approve or Decline Retention of PII, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the retention of PII.
ID	TD_ref7
Provider Reference

TD Privacy - Consent for Use (Where Feasible), v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means, where feasible and appropriate, for individuals to authorize the use of personally identifiable information (PII) prior to its collection.
ID	TD_ref8
Provider Reference

TD Privacy - Consent for Use, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means for individuals to authorize the use of personally identifiable information (PII) prior to its collection.
ID	TD_ref9
Provider Reference

TD Privacy - Consent for Maintenance, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means for individuals to authorize the maintaining of personally identifiable information (PII) prior to its collection.
ID	TD_ref10
Provider Reference

TD Privacy - Consent for Maintenance (Where Feasible), v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means, where feasible and appropriate, for individuals to authorize the maintaining of personally identifiable information (PII) prior to its collection.
ID	TD_ref11
Provider Reference

TD Privacy - Consent for New Uses of PII Not in the Public Notice at the Time of Collection, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization ensures that individuals consent to all uses of PII not initially described in the public notice that was in effect at the time the organization collected the PII.
ID	TD_ref12
Provider Reference

TD Privacy - Consent Prior to New Use (Where Feasible), v1.0
Description	Defines conformance and assessment criteria for verifying that an organization obtains consent, where feasible and appropriate, from individuals prior to any new uses of previously collected PII.
ID	TD_ref13
Provider Reference

TD Privacy - Consent - Individuals Can Approve or Decline Collection of PII, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the collection of PII.
ID	TD_ref14
Provider Reference

TD Privacy - Notice of New Uses of PII Not in the Public Notice at the Time of Collection, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization ensures that individuals are aware of all uses of PII not initially described in the public notice that was in effect at the time the organization collected the PII.
ID	TD_ref15
Provider Reference

TD Privacy - Consent - Individuals Can Approve or Decline Use of PII, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the use of PII.
ID	TD_ref16
Provider Reference

TD Privacy - Consent for Collection, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides means for individuals to authorize the collection of personally identifiable information (PII) prior to its collection.
ID	TD_ref17
Provider Reference

TD Privacy - Consent - Individuals Can Approve or Decline Dissemination of PII, v1.0
Description	Defines conformance and assessment criteria for verifying that an organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the dissemination of PII.
ID	TD_ref18
Provider Reference

Sources (1)

SP800-53R4	NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4.

Also available as XML or JSON