to be compliant you must be able to demonstrate that your entire team understands the way to handle itar and ear protected information the right way.
At its most basic, being ITAR compliant means following all the requirements of the International Traffic in Arms Regulations (ITAR). The issue here is that there is no strict definition of ITAR compliance, other than adhering to the law. Here are the general steps:
It costs nothing to find out how we can help. Each organization has it’s own unique challenges and path to achieving compliance. The first step to getting this solved is a simple phone call you can make right now.
That little bullet point about making sure your policies and procedures are compliant with ITAR requirements… that means you must have those policies and procedures in place, your staff trained, and be able to prove to an assessor that you do have an ITAR & EAR program in place and are not being negligent in your handling of this sensitive information. There is a lot to that!
ITAR Certification is a misnomer; you cannot gain an ITAR Certification like you can an ISO Certification or a CMMI rating. There isn’t a specific standard or set of criteria to be rated against to achieve “ITAR Certification.” Of course, you can include your ITAR Compliance program in the ISO Certification and auditing process but that’s not going to prove you are following the ITAR regulations; it will only demonstrate that your Company is following the Company’s policy, procedures and work instructions consistently.
Companies must understand that while the ITAR specifically calls out “arms”, it covers literally anything that could be used in defense to include training. Furthermore, the ITAR does not only apply to goods sold overseas, ITAR also covers technology that is placed on websites, training given in the US and goods sold in the US destined for an overseas location. Many companies have found themselves on the wrong side of the ITAR because they “thought” it didn’t apply. Fines and penalties for infringement of the ITAR are not insignificant and can easily destroy a company, however even more significant is the fact that USDOS goes after individuals as well as companies, so the issue may not subside when a business is closed, meaning that USDOS will press civil and criminal suits against specific individuals within the company as well as the company itself.
US companies must educate themselves and establish practices and procedures to address and mitigate the issues contained within the ITAR in order to be considered compliant. The good news is that On Call Compliance Solutions has a complete solution to help you quickly and easily implement these programs and prove that you are correctly handling this sensitive protected information the right way.
Backed by an award-winning compliance and cyber security team, On Call Compliance Solutions is the #1 source for ITAR and EAR compliance. Give us a call now to schedule a free phone call with one of our migration experts to see how we can help.
Fill out the form below to get a FREE consultation with one of our ITAR and EAR compliance experts who can help you achieve your goals. There is never a fee or obligation to find out how we can help.
You can also call us directly at: 1-(866) 605-1863