Skip to content
LexBuild

48 CFR § 1239.7102 - 1239.7102 Policy. 

---
identifier: "/us/cfr/t48/s1239.7102"
source: "ecfr"
legal_status: "authoritative_unofficial"
title: "48 CFR § 1239.7102 - 1239.7102   Policy."
title_number: 48
title_name: "Federal Acquisition Regulations System"
section_number: "1239.7102"
section_name: "1239.7102   Policy."
chapter_number: 12
chapter_name: "DEPARTMENT OF TRANSPORTATION"
subchapter_number: "F"
subchapter_name: "SPECIAL CATEGORIES OF CONTRACTING"
part_number: "1239"
part_name: "ACQUISITION OF INFORMATION TECHNOLOGY"
positive_law: false
currency: "2026-03-24"
last_updated: "2026-03-24"
format_version: "1.1.0"
generator: "[email protected]"
authority: "5 U.S.C. 301; 41 U.S.C. 1121(c)(3); 41 U.S.C. 1702; and 48 CFR 1.301 through 1.304."
regulatory_source: "87 FR 61159, Oct. 7, 2022, unless otherwise noted."
cfr_part: "1239"
---

# 1239.7102 1239.7102   Policy.

DOT must ensure that data protection is provided for information and information systems in accordance with current policies, procedures, and statutes, including:

(a) The Clinger-Cohen Act.

(b) The E-Government Act.

(c) Federal Information Systems Modernization Act.

(d) Federal Information Processing Standards.

(e) OMB Circular A-130, Managing Information as a Strategic Resource.

(f) 49 CFR part 10, Maintenance of and Access to Records Pertaining to Individuals.

(g) DOT Order 1351.18, Privacy Risk Management Policy.

(h) DOT Order 1351.19, PII Breach Notification Controls.

(i) DOT Order 1351.28, Records Management.

(j) DOT Order 1351.37, Departmental Cyber Security Policy.