More than two decades after being tasked with establishing privacy programs, 14 federal agencies have failed to address key practices for protecting the sensitive personal data of Americans, a new Government Accountability Office report finds…
Agencies that have not developed a full privacy strategy include the Departments of Agriculture, Defense, Justice, Homeland Security, Housing and Urban Development, Veteran’s Affairs, State, Treasury, Environmental Protection Agency and OPM.
The GAO defines a fully developed risk management strategy as enacting privacy protections for sensitive data, defining a designated privacy official tasked with managing risks to information systems and establishing a strategy for continuously monitoring privacy risks… Read the full article here.