Privacy Req 4 Supplemental Guidance

From IDESG Wiki
Revision as of 04:03, 28 June 2018 by Omaerz (talk | contribs) (1 revision imported: Initial Upload of old pages from IDESG Wiki)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
Error creating thumbnail: File missing
This article is under construction and should not be considered complete.
Last modified by Omaerz

<< Back to Privacy Requirement 4

These links are provided as additional informative resources relevant to parties conducting self-assessments (and other identity stakeholders) when applying and evaluating IDEF Baseline Requirement PRIVACY-4.

Supplemental Information

Credentials bound to identifiers, like attributes bound to identifiers, carry increased risk of inappropriate disclosure when stored. See generally PRIVACY-1. This requirement PRIVACY-4 assumes that the privacy risk analysis required by PRIVACY-5 will inform an entity's decisions about credential retention.

References and Guidance (non-normative)

See PRIVACY-2 and PRIVACY-3.