OtherUnited States (State Dept/BIS)
US ITAR and EAR — Export Control and Data Security
The International Traffic in Arms Regulations (ITAR, 22 CFR Parts 120-130) and Export Administration Regulations (EAR, 15 CFR Parts 730-774) are US export control regimes with significant cybersecurity and data protection implications. ITAR covers defence articles and technical data on the US Munitions List (USML), administered by the State Department Directorate of Defense Trade Controls (DDTC).
Domains
Compliance and Enforcement
Data Security Requirements
Compare US ITAR and EAR — Export Control and Data Security
US ITAR and EAR — Export Control and Data Security vs ISO 27001:2022View comparison →US ITAR and EAR — Export Control and Data Security vs SOC 2View comparison →US ITAR and EAR — Export Control and Data Security vs NIST CSF 2.0View comparison →US ITAR and EAR — Export Control and Data Security vs GDPRView comparison →US ITAR and EAR — Export Control and Data Security vs HIPAAView comparison →US ITAR and EAR — Export Control and Data Security vs PCI DSS 4.0View comparison →
US ITAR and EAR — Export Control and Data Security by Industry
US ITAR and EAR — Export Control and Data Security for Healthcare→US ITAR and EAR — Export Control and Data Security for Financial Services→US ITAR and EAR — Export Control and Data Security for Technology→US ITAR and EAR — Export Control and Data Security for Government→US ITAR and EAR — Export Control and Data Security for Manufacturing→US ITAR and EAR — Export Control and Data Security for Energy→US ITAR and EAR — Export Control and Data Security for Retail→US ITAR and EAR — Export Control and Data Security for Education→
US ITAR and EAR — Export Control and Data Security by Role
US ITAR and EAR — Export Control and Data Security for CISOs→US ITAR and EAR — Export Control and Data Security for Compliance Officers→US ITAR and EAR — Export Control and Data Security for Risk Managers→US ITAR and EAR — Export Control and Data Security for IT Directors→US ITAR and EAR — Export Control and Data Security for DPOs→US ITAR and EAR — Export Control and Data Security for Auditors→
Frequently Asked Questions
What is US ITAR and EAR?
The International Traffic in Arms Regulations (ITAR, 22 CFR Parts 120-130) and Export Administration Regulations (EAR, 15 CFR Parts 730-774) are US export control regimes with significant cybersecurity and data protection implications. ITAR covers defence articles and technical data on the US Munitions List (USML), administered by the State Department Directorate of Defense Trade Controls (DDTC).
How many controls does US ITAR and EAR have?
US ITAR and EAR contains 41 controls organized across 2 domains.
Where does US ITAR and EAR apply?
US ITAR and EAR is applicable in United States (State Dept/BIS). Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does US ITAR and EAR map to?
US ITAR and EAR has control-to-control mappings with 628 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with US ITAR and EAR compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for US ITAR and EAR — Export Control and Data Security?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.