Welcome to the Product Data Management Initiative

By signing this document, you acknowledge and consent that when you access Department of Defense (DoD) information systems:

You are accessing a U.S. Government (USG) Information System (IS) (which includes any device attached to this IS) that is for USG-authorized use only.

You consent to the following conditions:

• The USG routinely intercepts and monitors communications occurring on this IS, and any device attached to this IS, for purposes including, but not limited to, penetration testing, communications security (COMSEC) monitoring, network operations and defense, quality control, personnel misconduct (PM), law enforcement (LE), and counterintelligence (CI) investigations.
• At any time, the USG may inspect and seize data stored on this IS.
• Communications using, or data stored on, this IS are not private, are subject to routine monitoring, interception, and search, and may be disclosed or used for any USG-authorized purpose.
• This IS includes security measures (e.g., authentication and access controls) to protect USG interests--not for your personnel benefit or privacy.
• Notwithstanding the above, using this IS does not constitute consent to PM, LE, or CI investigative searching or monitoring of the content of privileged communications, or work product, related to personal representation or services by attorneys, psychotherapists, or clergy, and their assistants. Such communications and work product are private and confidential.

All of the above conditions apply regardless of whether the access or use of an IS includes the display of a Notice and Consent Banner ("banner"). When a banner is used, the banner functions to remind the user of the conditions that are set forth in this User Agreement, regardless of whether the banner describes these conditions in full detail or provides a summary of such conditions, and regardless of whether the banner expressly references this User Agreement.

cFolders Systems Warning Statements (As of September 16, 2025)

Warning: There is the potential that information presented and exported contains Controlled Unclassified Information (CUI) in accordance with Department of Defense Instruction (DoDI) 5200.48. It is the responsibility of all users to ensure information extracted is appropriately marked and properly safeguarded.

Warning: This IS contains data including but not limited to, export-controlled information,technical data, and intellectual property, (collectively, "Data"), the export of which is restricted by the Arms Export Control Act (Title 22, U.S.C. 2751, et seq.) and (or) the Export Administration Act of 1979 (Title 50, U.S.C. App. 2401 et seq.), as amended. Export of information contained herein, which includes, in some circumstances, release to foreign nationals within the United States, without first obtaining written approval or license from the Department of State for items controlled by the Internationals Traffic in Arms Regulations (ITAR), or the Department of Commerce for items controlled by the Export Administration Regulations, (EAR), may constitute a violation of law. Violations of these export control laws are subject to civil and criminal penalties, including fines up to $1,000,000 or imprisonment up 20 years, or both.

Warnings: Pursuant to Title 10, U.S.C. 130; 32 C.F.R. 250; andthe Department of Defense Directive (DoDD) 5230.25, only qualified U.S. contractors or offerors can access export-controlled information that is needed to bid or perform on a contract with the Department of Defense or other U.S. Government Agency in connection with a legitimate business purpose for which they are certified. Upon conclusion of the need for access to Data, all Data shall be destroyed and removed from any device in accordance with DoDI 5200.48, DoDI 5230.24, ISOO Notice 2019-03, 32 C.F.R. 2002.14(f)(2), and National Institute of Standards and Technology (NIST) Special Publication (SP) 800-88, Revision 1: Guidelines for Media Sanitization. Upon request by the DLA controlling authority or designee, users will certify in writing that all Data and copies thereof have been destroyed. DLA may suspend or permanently revoke cFolders access of any user to violate this term. Moreover, if there is a violation of U.S. export control laws and regulations, it may result in DLA revoking the company's or individual's access to cFolders or DoD permanently revoking their JCP certificate, which may result in the termination of existing awards requiring access to export-controlled information.

Warnings: Pursuant to ITAR, EAR, DoDD 5230.25; and DoDI 5230.24; downloading any Data includingexport-controlled information (other than documents assigned Distribution Statement "A") from cFolders and disseminating it to an unauthorized company, organization, or individual without DLA prior written consent is prohibited. DLA may suspend or revoke the company's or individual's access to cFolders and/or DoD permanently revoking their JCP certificate, which may result in the termination of existing awards requiring access to export-controlled information. ITAR and EAR violations may result in civil and (or) criminal penalties.

Warning: Downloading export-controlled information from cFolders to locations outside of the United States or its territories is prohibited without the Defense Logistics Agency's (DLA) written prior consent. The only exception to this ruleis Canadian contractors with an active Joint Certification Program (JCP) certificate and DLA written approval who may download export-controlled information only to Canada. Any violations of this policy will be viewed as an export-control violation under the ITAR or EAR and may result in DLA revoking the company's or individual's access to cFolders. Any violations of this policy may also result in the DoD permanently revoking their JCP certificate, which may result in the termination of existing awards requiring access to export-controlled information. Please direct questions or comments to: DLAJ344DataCustodian@dla.mil.

Warning: The use of virtual private networks (VPNs) and other services that mask a user's IP address when accessing cFoldersis prohibited without DLA's prior written consent. Violation of this rule could result in the suspension or termination of access to cFolders, which may result in the termination of existing awards requiring access to export- controlled information. Please direct questions or comments to: DLAJ344DataCustodian@dla.mil.

Warning: The use of IT automation scripts or other means to download any Data including export-controlled information from cFolders is strictly prohibited. DLA may suspend or permanently revoke cFolders access of any user to violate this term.

Warning: Sharing account information with unregistered and/or unauthorized company, organization, or individual is prohibited. DLA may suspend or terminate access to cFolders of any user found to violate this term.

Warning: This IS contains Data owned or provided by the Original Equipment Manufacturers (OEM) or its successors. Users must abide by the restrictions set forth in the relevant non-disclosure agreement (NDA) as specified in DFARS 227.7103-7 or in accordance with DFARS Clause 252.227-7025 if they received the data under the performance of a contract including all applicable destruction requirements. Upon conclusion of the need for access to Data, all Data shall be destroyed and removed from any device in accordance with Part 2002, Title 32, and DoDI 5200.48. Upon request by the DLA controlling authority or designee, the users will certify in writing that all Data and copies thereof have been destroyed. Any suspected or actual breach of the restrictions set forth in the NDA may result in the removal from the qualified bidders list for that license agreement. Violations of the NDA may be grounds for legal proceedings by the Government and (or) the OEM.

USER RESPONSIBILITIES:

I understand that to ensure the confidentiality, integrity, availability, and security of DoD Information Technology (IT) resources and information, when using those resources, I shall:

• Safeguard information and IS from unauthorized or inadvertent modification, disclosure, destruction, or misuse.
• ProtectControlled Unclassified Information (CUI), to include Personally Identifiable Information (PII), and classified information to prevent unauthorized access, compromise, tampering, or exploitation of the information.
• Protect authenticators (e.g., Password and Personnel Identification Numbers (PIN)) required for Logon Token authentication at the same classification as the highest classification of the information accessed.
• Protect authentication tokens(e.g., Common Access Card (CAC), Alternate Logon Token (ALT), Personal Identity Verification (PIV), National Security Systems (NSS) tokens, etc.) at all times. Authentication tokensshall not be left unattended at any time unless properly secured.
• Virus-check all information, programs, and other files prior to uploading onto any DoD IT resource.
• Observe all policies and procedures governing the secure operation and authorized use of an information system.

By clicking I AGREE you have read and agree to the terms of the User Agreement.

Notice Date: September 16, 2025

Password security criteria are in place for this system in accordance with DOD policy:

1. Must be a minimum of 15 characters.
2. Must begin with a letter or number.
3. New password cannot begin with special character.
4. The first three characters of the password must all be different.
5. New password must have no more than 4 letters in a row, or 4 numbers in a row. (i.e. 5678, aBcD).
6. Must have at least 2 upper case characters.
7. Must have at least 2 lower case characters.
8. Must have at least 2 numbers.
9. Must have 2 special characters.

Vendors should contact the DISA Global Service Desk for:

1. cFolders password Issues/Resets.
2. cFolders accounts will be locked after 30 days of inactivity.
3. Accounts not used within one year will be terminated.
4. DISA Global Service Desk: 1-844-347-2457, Press 5, and then speak or enter D-L-A.

Please note, wait times could be in excess of 100+ minutes, however we cannot expedite or control this request.