The National Institute of Standards and Technology (NIST) has published the release version 1.0 of its privacy framework. The Framework is a voluntary tool that can be used by organizations to manage risks in compliance with privacy legislation, including the European GDPR. Framework is composed of three main parts, the Core, Profiles, and Implementation Tiers. Framework provides building blocks that help organizations in achieving privacy goals. The response to privacy risk includes:Mitigating the risk, avoiding the risk;Transferring or sharing the risk to other organizations.”]
Source: https://securityaffairs.co/wordpress/96657/digital-id/nist-privacy-framework.html