Compliance Hub

Quick-reference guidance for compliance managers. ITAR, EAR, BIS, CMMC, and DFARS.

Scan the summaries below. Click through for detailed workflows and how SecurePoint supports each requirement.

ITAR & EAR Export Controls

TL;DR: Screen foreign nationals before facility access. Log all visitor interactions with controlled areas. Retain records for 5+ years.

Foreign national screeningTechnical data accessExemption workflows

→ See how our visitor workflows support ITAR/EAR requirements

ITAR visitor management system overview →

BIS 50% Ownership Rule

TL;DR: Entities 50%+ owned by denied parties are treated as denied. Rule enforcement postponed until Nov 2026. SecurePoint calculates affiliates now; flags for review.

Ownership aggregationAffiliate detectionEscalation workflows

→ See how we calculate and flag BIS affiliates, aligned to the current BIS 50 percent rule postponement

CMMC & DFARS Visitor Controls

TL;DR: Physical access controls for CUI. Log who accessed what, when. Immutable audit trail for assessors. CMMC L2 requires visitor management evidence.

CUI protectionAccess loggingAssessment evidence

→ See how our audit logs support CMMC L2 physical access requirements

CMMC visitor logging & audit story →

Templates & Resources

TL;DR: Downloadable checklists, policy templates, and quick-start guides for compliance teams.

CMMC checklistVisitor policy templateAudit prep guide

How SecurePoint helps

  • Real-time sanctions screening across OFAC, BIS, UN, EU, UK with sub-second response times and continuous updates from official sources.

  • Built-in ITAR/EAR workflows with export control exemptions, role-based approvals, and configurable policy logic for defense contractors and regulated manufacturers.

  • Case review and adjudication workflows for compliance teams. AI-assisted risk summaries with human-in-the-loop decision making.

  • Immutable audit logs with append-only design and long-term retention options (1 year, 7 years) for compliance reviews and regulatory audits.

Latest from the compliance blog

Expert guidance on sanctions, export controls, and visitor management for regulated facilities.

The OFAC 50% Rule

Understanding ownership aggregation and how SecurePoint USA operationalizes compliance.

Read blog post

ITAR/EAR Visitor Management

Learn how to implement export control checks without slowing operations.

Read blog post

LEIE & SAM Visitor Checks

Exclusions checks and FOIA-friendly audit trails for public sector visitor management.

Read blog post
View all blog posts

Resources and templates

Practical tools, templates, and guides for compliance teams.

Resources and templates

Downloadable templates, quick guides, and tools for ITAR, EAR, BIS, and CMMC compliance teams.

View resources →

Ready to strengthen your compliance posture?

Request beta access to see how SecurePoint USA supports your visitor control programs with unlimited screenings and immutable audit logs.

Prefer to see it live first? Book a demo and we'll walk your team through a typical visitor workflow.

Request Beta AccessBook a Demo