Technology Control Plan (TCP)

A Technology Control Plan (TCP) approved by DSS shall be developed and implemented by those companies cleared under a Voting Trust Agreement, Proxy Agreement, Special Security Agreement, or Security Control Agreement. DSS may also require a TCP be developed in other situations in its sole discretion.

The TCP shall prescribe all security measures determined necessary to reasonably foreclose the possibility of unauthorized access to classified or export controlled information by non-U.S. citizen employees or visitors, or affiliates, as defined by the FOCI mitigation agreement. The TCP shall also establish measures to assure that access by non-U.S. citizens and the foreign affiliates is strictly limited to only the information for which appropriate Federal Government disclosure authorization has been obtained.

Sample Technology Control Plan (TCP)