What Services Are Available to State Agencies?
The Office of Privacy & Data Protection provides the following services to agencies:
- Privacy guidance and consultation
- Procurement-related reviews
- Privacy incident response/breach support
- Privacy federal alignment support
- Privacy threshold analysis and privacy impact assessment support
- Privacy and data protection maturity assistance
- Privacy data breach exercise support
- Privacy policy review
Service | Details |
---|---|
Privacy Guidance and Consultation |
|
Procurement-Related Reviews | Reviews procurement documents, such as RFPs, contracts and vendor agreements to ensure privacy requirements are embedded in the acquisition process and that third-party risks are adequately addressed. |
Privacy Incident Response/Breach Support | Collaborates with cybersecurity, legal and other teams to provide timely support and guidance to prevent data breaches, including privacy threshold/impact assessments and containment recommendations. |
Privacy Federal Alignment Support | Ensures agencies and stakeholders are aligned with federal privacy laws, including HIPAA, FERPA, FISMA, and CJIS, ensuring that state programs meet cross-jurisdictional compliance expectations. |
Privacy Threshold Analysis and Privacy Impact Assessment (PTA/PIA) Support | Facilitates the completion of PTAs and PIAs by reviewing/approving assessments, evaluating accuracies of the information and providing feedback on the assessment. |
Privacy and Data Protection Maturity Assistance | Helps agencies assess and enhance their privacy posture by providing tools and recommendations to advance privacy capabilities across governance, operations, and culture. |
Privacy Policy Review | Reviews and refines enterprise privacy policies to ensure clarity, regulatory compliance and alignment with statewide privacy standards and best practices. |
Contact the office at opdp@nc.gov for more information about these services.