标准摘要
[中文适用范围]: 本指导文件描述了将 ISO/IEC 29100 中规定的隐私原则实施为控制和功能集的模型和方法。该方法被描述为基于 ISO/IEC/IEEE 24774 的过程。本文件旨在与影响隐私实施的相关隐私和安全标准和指导一起使用。它支持联网的、相互依赖的应用程序和系统。本文件适用于开发控制或处理个人身份信息的系统的工程师和其他从业人员。 [外文原描述]: This guidance document describes a model and method to operationalize the privacy principles specified in ISO/IEC 29100 into sets of controls and functional capabilities. The method is described as a process that builds upon ISO/IEC/IEEE 24774. This document is designed for use in conjunction with relevant privacy and security standards and guidance which impact privacy operationalization. It supports networked, interdependent applications and systems. This document is intended for engineers and other practitioners developing systems controlling or processing personally identifiable information.
英文名称Information security, cybersecurity and privacy protection - Privacy operationalisation model and method for engineering (POMME)