To ensure implementation and ongoing evaluation of the process the committee recommends that the IRS (1) define privacy threats; (2) develop means of assessing the current level of security violation; (3) use those same measures, over time, to determine whether violations have increased or decreased; and (4) ensure that every project implements all privacy requirements satisfactorily before the project is allowed to achieve an operational state.

The National Academies | 500 Fifth St. N.W. | Washington, D.C. 20001
Copyright © National Academy of Sciences. All rights reserved.
Terms of Use and Privacy Statement