STIGhub— A free STIG search and compliance tool·STIGs updated 1 hour ago

Powered by Pylon·Privacy·Terms·Feedback·© 2026 Beacon Cloud Solutions, Inc.

← All Controls

AR-2

Accountability, Audit, and Risk ManagementRev 4

Privacy Impact and Risk Assessment

CCI Identifiers (9)

CCI-003417The organization documents a privacy risk management process which assesses the privacy risk to individuals.CCI-003418The organization implements a privacy risk management process which assesses the privacy risk to individuals.CCI-003419The organization's privacy risk management process assesses the privacy risk to individuals resulting from the collection of personally identifiable information (PII).CCI-003420The organization's privacy risk management process assesses the privacy risk to individuals resulting from the sharing of personally identifiable information (PII).CCI-003421The organization's privacy risk management process assesses the privacy risk to individuals resulting from the storing of personally identifiable information (PII).CCI-003422The organization's privacy risk management process assesses the privacy risk to individuals resulting from the transmitting of personally identifiable information (PII).CCI-003423The organization's privacy risk management process assesses the privacy risk to individuals resulting from the use of personally identifiable information (PII).CCI-003424The organization's privacy risk management process assesses the privacy risk to individuals resulting from the disposal of personally identifiable information (PII).CCI-003425The organization conducts Privacy Impact Assessments (PIAs) for information systems, programs, or other activities that pose a privacy risk in accordance with applicable law, OMB policy, or any existing organizational policies and procedures.

Linked STIG Checks (0)

No STIG checks reference this control.