United States of America: Opened consultation on CISA Security Requirements for Restricted Transactions under Executive Order 14117

On 29 October 2024, the US Cybersecurity and Infrastructure Security Agency (CISA) opened a consultation on the formulation of security requirements for restricted transactions, as mandated by Executive Order 14117. The consultation is open until 30 November 2024. These requirements address the risks posed by the potential access of countries of concern to bulk US-sensitive personal data and government-related data. The CISA aims to establish a framework to protect sensitive data from being accessed as part of restricted transactions. The security measures proposed are intended to mitigate national security and foreign policy threats by imposing conditions on the sharing of sensitive data through restricted transactions.