DM-3 (1)

DM-3 (1): Risk Minimization Techniques

The organization, where feasible, uses techniques to minimize the risk to privacy of using PII for research, testing, or training.

Organizations can minimize risk to privacy of PII by using techniques such as de-identification.

Overlays
Privacy (PHI)

The controls below (if any) were marked by NIST as being related to DM-3 (1).

Control	Description
No controls

The controls below (if any) add on to the requirements of DM-3 (1).

Control	Description
No controls

The CCIs below are tied to DM-3 (1).

CCI	Definition
CCI-003516	The organization, where feasible, uses techniques to minimize the risk to privacy of using personally identifiable information (PII) for research.
CCI-003517	The organization, where feasible, uses techniques to minimize the risk to privacy of using personally identifiable information (PII) for testing.
CCI-003518	The organization, where feasible, uses techniques to minimize the risk to privacy of using personally identifiable information (PII) for training.