The CFTC became the first federal agency to adopt the National Institute of Standards and Technology ("NIST") Privacy Framework.

The CFTC describes the framework as "a voluntary tool designed to improve privacy through enterprise risk management." According to the NIST, the Privacy Framework was designed to aid organizations in identifying and managing privacy risks while creating innovative products (see also previous coverage). The CFTC stated that it will utilize the framework by (i) incorporating it into its enterprise risk portfolio and (ii) improving privacy risk practices.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.