Export information on Sophos products
Customers are encouraged to familiarize themselves with the import regulations of their country to ensure compliance with their specific regulations and to ensure timely delivery of Sophos products they may purchase.
Some Sophos products are subject to export restrictions because they include encryption technology.
Sophos software products are developed in the United Kingdom and are exported to other countries in compliance with UK export controls. In addition, some Sophos software products which contain third party code developed in other countries are exported in compliance with such countries’ export regulations. Most Sophos software products are not exported to Cuba, Iran, North Korea, Syria, or Sudan, please contact legal@sophos.com if you require further information on which Sophos products may be permitted to be exported to these countries.
See the following URL for more information on UK export controls: http://www.berr.gov.uk/europeandtrade/strategic-export-control/index.html
Sophos appliance products are manufactured in the United States and therefore such products are subject to US export regulations when they are exported from the US. In the United States, a branch of the U.S. Department of Commerce known as the Bureau of Industry and Security regulates exports through the Export Administration Regulations (EAR). These regulations spell out the export restrictions on a wide variety of goods, software, and technologies.
See the following URLs for more information on US export regulations:
http://www.bis.doc.gov/policiesandregulations/index.htm#ear
http://www.access.gpo.gov/bis/index.html
The Sophos appliance products may not be exported to Cuba, Iran, Libya, North Korea, Syria, and Sudan, but may be exported to other countries subject to the applicable import regulations of such country.
The following information may be required for shipping documentation, record keeping, or post-shipment reporting related to the Sophos appliances:
| Sophos Appliance | ECCN1 | License Exception2 | Unrestricted | CCATS3 |
|---|---|---|---|---|
| WS1000 | 5A002 (A.1) | ENC | Yes | G051630 |
| ES1000 | 5A002 (A.1) | ENC | Yes | G050803 |
| ES4000 | 5A002 (A.1) | ENC | Yes | G043583 |
- ECCN
Export Control Classification Number assigned by the U.S. Department of Commerce, Bureau of Industry and Security (BIS) in the Commerce Control List (CCL). This is the fundamental designation indicating the level of control for an item.
5A002 (Information Security) Software containing cryptography which is not controlled under the Cryptography Note of the EAR. - License Exception ENC
Sophos received a License Exception from the U.S. Department of Commerce for each of the appliance products after submitting each to a one-time significant technical review by the National Security Agency (NSA). "Unrestricted"" in the above column indicates that the software is eligible for "ENC" under Sections 740.17(a) and 740.17(b)(3) of the EAR. See the following URL for further information on the ENC License Exception: http://www.bis.doc.gov/encryption/lechart1.htm - CCATS (Commodity Classification Automated Tracking System)
This is the code number assigned by BIS to products that it has classified against the CCL.
