Under United States government defense regulations, activities relating to the production, export, and import of defense-related articles, services, and materials (collectively referred to as “items”) are tightly controlled under the International Traffic in Arms Regulations (ITAR) if those items fall within the United States Munitions List (USML) issued by the U.S Department of State.

ITAR bylaws state that information relating to items on the USML may only be shared with U.S. persons, except where exemptions have been obtained from the U.S. Department of State (DOS). The DOS defines a U.S. person as a lawful permanent resident of the United States, such as a citizen or a permanent resident card holder of the United States. A U.S. organization can face heavy fines if they have provided foreign (non-U.S.) persons access to ITAR-protected defense items without authorization.

It is now possible to apply security restrictions in Costpoint so that part data subject to security controls will not be visible, editable, or available to non-U.S. persons. This applies to all Costpoint activities touching on bills of materials and any related part information, reports, and routing information. This feature allows your organization to use the same database for secured and unsecured parts while keeping manufacturing processes and systems as lean as possible.

The following is an overall checklist of the steps that you must perform during the setup process. Each step has a corresponding topic. These topics provide easy how-to steps that you need to set up the correct security and access settings to ensure that only authorized users within your organization are able to access restricted part data.

	Step	Description
	1	Create security groups for your organization.
	2	Add users to a security group.
	3	Link the parts to protect under a security group.
	4	Link classified projects to a security group.