Spaces:
Sleeping
Sleeping
File size: 1,766 Bytes
ff23231 |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 |
# NIST Privacy Framework Mapping
### Federal FOIA Intelligence Search
---
## Framework Reference
NIST Privacy Framework v1.0
(Core Functions: Identify, Govern, Control, Communicate, Protect)
---
## System Privacy Posture
**Privacy Risk Level:** Minimal
**Personal Data Processing:** None
**Persistent Identifiers:** None
**User Tracking:** None
This system operates exclusively on **public government metadata** and
**ephemeral user input**.
---
## IDENTIFY-P (ID-P)
| Subcategory | Implementation |
|-----------|----------------|
| ID-P1 Data Inventory | No personal data collected |
| ID-P2 Data Mapping | FOIA URLs + metadata only |
| ID-P3 Context | Public reading rooms |
---
## GOVERN-P (GV-P)
| Subcategory | Implementation |
|-----------|----------------|
| GV-P1 Policies | Public disclosures & README |
| GV-P2 Roles | Maintainer accountability |
| GV-P3 Oversight | Feature flags, opt-in AI |
---
## CONTROL-P (CT-P)
| Subcategory | Implementation |
|-----------|----------------|
| CT-P1 Data Processing | User-initiated only |
| CT-P2 Data Retention | In-memory session only |
| CT-P3 Data Sharing | None |
---
## COMMUNICATE-P (CM-P)
| Subcategory | Implementation |
|-----------|----------------|
| CM-P1 Transparency | Explicit disclosures |
| CM-P2 User Consent | AI opt-in required |
| CM-P3 Notice | README + UI banners |
---
## PROTECT-P (PR-P)
| Subcategory | Implementation |
|-----------|----------------|
| PR-P1 Security | HTTPS only |
| PR-P2 Access | No accounts |
| PR-P3 Safeguards | No persistence |
---
## Privacy Conclusion
✔ No PII
✔ No surveillance
✔ No profiling
✔ No data aggregation
**This system meets or exceeds NIST Privacy Framework expectations for
public research tools.** |