Resources

What Is CUI Basic? Guidelines and Security Measures
Blog

What Is CUI Basic? Guidelines and Security Measures

Mon, 04/21/2025
Controlled Unclassified Information (CUI) is a sensitive data category that the United States federal government produces or interacts with.
Compliance
Cybersecurity Maturity Model Certification (CMMC)
Controlled Unclassified Information (CUI)
Data Classification
Datasheet

Fortra’s Data Classification Suite – Metadata Powering Your CMMC Solution

Solving for CUICore to the Controlled Unclassified Information (CUI) standards set by NARA (National Archives and Records Administration) are not only the 240 potential CUI markings, but rules on how to apply them, how they should be formatted, as well as display requirements.Additionally, these markings and metadata are meant to be control enablers, allowing other systems like attribute-based...
Compliance
Controlled Unclassified Information (CUI)
Data Classification
Datasheet

California Consumer Privacy Act (CCPA) Compliance

The CCPA bill, passed in 2018, encourages businesses and related entities to be transparent and requires these organizations to report breaches of personal data. The CCPA is more than just a data protection regulation, as it represents a core change in the approach organizations must take to ensure their data remains secure and requires the creation of a data protection strategy for their data. ...
Compliance
California Consumer Privacy Act (CCPA)
Data Classification
Datasheet

ITAR Compliance with Fortra

The aerospace and defense organizations operate on a global scale and handle data that needs to be protected from competitors as well as foreign military and government organizations. Competitive secrets, disparate customer requirements, and government regulations surrounding the sharing of sensitive information are critical considerations in the aerospace and defense marketplace. The U.S....
Compliance
International Traffic in Arms (ITAR)
Data Classification
Datasheet

NIST SP 800-171 and CUI

Meet Compliance Requirements To Protect Controlled Unclassified InformationOriginally imposed in 2017, NIST Special Publication (SP) 800-171, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations, requires all current U.S. Department of Defense contractors to be be compliant with DFARS Part 252.204-7012. Other executive branch agencies may also require...
Compliance
Controlled Unclassified Information (CUI)
National Institute of Standards and Technology (NIST)
Data Classification
Video

CUI Compliance with Fortra's Data Classification Suite (DCS) On-Demand Demo

Watch a short demo to see the Fortra CUI configuration in actionNavigate CUI complexities with confidenceAutomatically apply CUI markingsApply the full list of CUI categories and subcategoriesManually tailor Banner and Portion markingsEndpoint configuration for CUI safeguarding and dissemination controlsTemplate packs to get your organization up and running with CUI compliance quickly and...
Compliance
Controlled Unclassified Information (CUI)
Guide

Protecting Sensitive ITAR Information: A Data-Centric Approach To Export Control Compliance

ITAR covers the transfer of technical data and information relating to goods, as well as the goods themselves. Technical documents, product plans and specifications, design drawings, manuals and financial details may all need to be shared across the supply chain if an ITAR-related project is to be delivered. However, authority needs to be granted and access by unauthorized persons prohibited or...
Compliance
International Traffic in Arms (ITAR)
Data Classification
Datasheet

Email Protective Marking Standards (EPMS) Australia

The Australian Government Email Protective Marking Standard (EPMS) is a set of requirements that organizations must follow in order to protect sensitive and classified information that is sent or received by email. The Australian EPMS has been updated several times since its origin in 2005. Read our solution brief to learn about the changes to Email Protective Marking System (EPMS) v2018.6 and...
Compliance
Email Protective Marking Standard (EPMS)
Datasheet

Fortra’s Data Classification Suite for government agencies

The Problem Government agencies collect, use, and store personally identifiable information (PII) about citizens, employees, patients and other individuals every day. Much of this sensitive information is held in unstructured formats such as documents, emails and various other file types, but the exact location and storage of the data is difficult to track. This poses a significant risk for...
Compliance
Datasheet

Managing Controlled Unclassified Information: The Role Of Data Classification In Meeting U.S. Government Requirements

Introduction After years of deliberation, the U.S. government’s National Archives and Records Administration (NARA) has released more details of its regulation for the protection framework of Controlled Unclassified Information (CUI). The rule is designed to safeguard government data that has not been assigned as confidential or secret, but which...
Compliance
Controlled Unclassified Information (CUI)
National Institute of Standards and Technology (NIST)
Data Classification
Blog

What Is the Federal Risk and Authorization Management Program (FedRAMP)?

By Robbie Araiza on Thu, 04/06/2023
An Introduction to FedRAMP In late 2011, the Office of Management and Budget under the Obama Administration released a memorandum that introduced the Federal Risk and Authorization Management Program (FedRAMP), noting that “[in the two years prior], the Administration worked in close collaboration with the National Institute of Standards and...
Compliance