This step helps us understand whether your intended use may involve Covered Data, namely:
Why This Matters:
The United States government has enacted the Data Security Program in an effort to regulate the access to certain Covered Data by certain countries of concern, including China. As such, certain additional security or other requirements may apply to how this type of data is stored, transmitted, or accessed — especially when handled by infrastructure with international affiliations. Our goal is to support your compliance by making sure we understand your needs up front.
To learn more about this regulation (28 CFR Part 202), please see the full text of the Final Rule here:https://www.justice.gov/nsd/media/1382521/dl.
With respect to the classes of “restricted transactions” identified in the regulations, CISA developed security requirements to mitigate the risk of sharing U.S. sensitive personal data or U.S. government-related data with countries of concern or covered persons through restricted transactions. Please see CISA’s security requirements here:https://www.cisa.gov/sites/default/files/2025-01/Security_Requirements_for_Restricted_Transaction-EO_14117_Implementation508.pdf.