Develop security and privacy plans for the system that provide the results of a privacy risk assessment for the systems processing personally identifiable information.
No STIG checks reference this CCI.