Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · CFR · Title 22 — Foreign Relations · Part 120 — Purpose and Definitions · § 120.54

§ 120.54. Activities that are not exports, reexports, retransfers, or temporary imports.

621 words·~3 min read·/us/cfr/t22/s§ 120.54·

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

(a)The following activities are not exports, reexports, retransfers, or temporary imports:
(1)Launching a spacecraft, launch vehicle, payload, or other item into space;
(2)Transmitting or otherwise transferring technical data to a U.S. person in the United States from a person in the United States;
(3)Transmitting or otherwise transferring within the same foreign country technical data between or among only U.S. persons, so long as the transmission or transfer does not result in a release to a foreign person or transfer to a person prohibited from receiving the technical data;
(4)Shipping, moving, or transferring defense articles between or among the United States as defined in § 120.60;
(5)Sending, taking, or storing technical data that is:
(i)Unclassified;
(ii)Secured using end-to-end encryption;
(iii)Secured using cryptographic modules (hardware or software) compliant with the Federal Information Processing Standards Publication 140-2 (FIPS 140-2) or its successors, supplemented by software implementation, cryptographic key management and other procedures and controls that are in accordance with guidance provided in current U.S. National Institute for Standards and Technology
(NIST)publications, or by other cryptographic means that provide security strength that is at least comparable to the minimum 128 bits of security strength achieved by the Advanced Encryption Standard (AES-128); and
(iv)Not intentionally sent to a person in or stored in a country proscribed in § 126.1 of this subchapter; and Note 1 to paragraph (a)(5)(iv): Data in-transit via the internet is not deemed to be stored in a country it transits.
(v)Not sent from a country proscribed in § 126.1 of this subchapter;
(6)The taking of a defense article subject to the reexport or retransfer requirements of this subchapter on a deployment or training exercise outside a previously approved country, provided:
(i)There is no change in end-use or end-user with respect to the defense article;
(ii)The defense article is transported by and remains in the possession of the previously authorized armed forces of a foreign government or United Nations military personnel; and
(iii)The defense article is not being exported from or temporarily imported into the United States; and
(7)The transfer of a foreign defense article previously imported into the United States that has since been exported from the United States pursuant to a license or other approval under this subchapter, provided:
(i)The foreign defense article was not modified, enhanced, upgraded, or otherwise altered or improved in a manner that changed the basic performance of the item prior to its return to the country from which it was imported or a third country;
(ii)A U.S.-origin defense article was not incorporated into the foreign defense article; and
(iii)The defense article is not being exported from or temporarily imported into the United States. (b)(1) For purposes of this section, end-to-end encryption is defined as:
(i)The provision of cryptographic protection of data, such that the data is not in an unencrypted form, between an originator (or the originator's in-country security boundary) and an intended recipient (or the recipient's in-country security boundary); and
(ii)The means of decryption are not provided to any third party.
(2)The originator and the intended recipient may be the same person. The intended recipient must be the originator, a U.S. person in the United States, or a person otherwise authorized to receive the technical data, such as by a license or other approval pursuant to this subchapter.
(c)The ability to access technical data in encrypted form that satisfies the criteria set forth in paragraph (a)(5) of this section does not constitute the release or export of such technical data. \[87 FR 16411, Mar. 23, 2022, as amended at 89 FR 66214, Aug. 15, 2024; 90 FR 29723, July 7, 2025\]
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.