Data Security

Program Overview. On February 28, 2024, the President issued an Executive Order on Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern. The Executive Order describes an unusual and extraordinary threat to the national security and foreign policy of the United States posed by the continuing effort of certain countries of concern to access Americans’ sensitive personal data and U.S. Government-related data. To address this threat, the Executive Order directs the Department of Justice, in consultation with other agencies, to issue regulations that prohibit or otherwise restrict U.S. persons from engaging in certain categories of transactions that involve U.S. Government-related data or bulk sensitive personal data, pose an unacceptable national security risk of access by countries of concern or covered persons subject to their jurisdiction, and meet other criteria specified by the Order.

Concurrent with the issuance of the Executive Order, the Department’s National Security Division published an Advance Notice of Proposed Rulemaking (ANPRM) in the Federal Register to provide transparency and clarity about the intended scope of the program, and to solicit comments on its development and implementation. Interested persons may submit comments on the ANPRM at Regulations.gov.

More information is available here:

• Executive Order 
• Published ANPRM - National Security Division; Provisions Regarding Access to Americans' Bulk Sensitive Personal Data and Government-Related Data by Countries of Concern
• White House Fact Sheet 
• DOJ Press Release 
• DOJ Fact Sheet 

Contact Information. For general inquiries, please contact NSD.FIRS.datasecurity@usdoj.gov. For press inquiries, please contact DOJ’s Office of Public Affairs here.