Please click on the links below to view the FAQ answers.
Open AllClose All

How do eligible companies apply to participate in CBP CTPAT?
Businesses must apply to participate in CBP CTPAT. Participants complete an Online electronic application on www.cbp.gov that includes submission of corporate information, a supply chain security profile, and an acknowledgment of an agreement to voluntarily participate. In completing the supply chain security profile, companies must conduct a comprehensive self-assessment of their supply chain security procedures using the CBP CTPAT security criteria or guidelines jointly developed by CBP and the trade community for their specific enrollment category. ( Online Application for CBP CTPAT ) The criteria or guidelines, available for review on the CBP website, encompass the following areas: Business Partner Requirements, Procedural Security, Physical Security, Personnel Security, Education and Training, Access Controls, Manifest Procedures, Information Security, and Conveyance Security.

What exactly are CBP expectations for the CBP CTPAT participant?
To make a commitment toward the common goal of creating a more secure and efficient supply chain through partnership. CBP understands that it has entered a new era and requires the assistance of private industry to ensure increased vigilance throughout the supply chain. CBP recognizes that just as it protects the trade and our borders, businesses must ensure that their brands, employees, and customers are protected to the best of their abilities.

Will the information our company provides to CBP CTPAT be confidential?
All information on supply chain security submitted by companies applying for the CBP CTPAT program will be confidential. CBP will not disclose a company's participation in CBP CTPAT.

As a company, we are very interested in CBP CTPAT but we are not interested in spending a lot of money or increasing our liabilities if something goes wrong. Is it still possible to participate in CBP CTPAT?
The decision to join CBP CTPAT is voluntary. Not all companies may be in a position to meet CBP CTPAT minimum security criteria or guidelines.

CBP CTPAT is also not intended to create any new 'liabilities' for companies beyond existing trade laws and regulations. However, joining CBP CTPAT will commit companies to follow through on actions specified in the signed agreement. These actions include self-assessing security systems, submitting security questionnaires, developing security enhancement plans, and communicating C-TPAT guidelines to companies in the supply chain. If a company fails to uphold its C-TPAT commitments, CBP would take action to suspend benefits or cancel participation.

How will the partnership work on an ongoing basis?
Upon satisfactory completion of the CBP CTPAT Online application and supply chain security profile, participants will be assigned a CBP CTPAT Supply Chain Security Specialist (SCSS). The SCSS will contact the newly Certified Partner and be available to the Partner for any details or concerns on the part of the Partner and his direct participation in the CBP CTPAT Program.

What kind of businesses can become members of the CBP CTPAT?
CBP CTPAT seeks to enroll companies who are directly responsible for importing, transporting and coordinating commercial import cargo into the US, including such business types as:
  • Air Carriers
  • Consolidators
  • Customs Brokers
  • Exporters
  • Foreign Manufacturers
  • Highway Carriers Long Haul/Mexico
  • Highway Carriers US/Canada
  • Highway Carriers US/Mexico
  • Importers
  • Marine Port Authority and Terminal Operators
  • Rail Carriers
  • Sea Carriers
  • Third Party Logistics Providers (3PL)

Different Minimum Security Criteria and Guidelines apply to different business types, please see U.S. Customs and Border Protection website for more details.

What Are the Minimum Security Requirements of the CBP CTPAT?
Although different Minimum Security Requirements apply to different types of businesses (see CBP website for more info), audits to certify compliance with CBP CTPAT criteria traditionally cover the following areas of attention:
  • Outside Barriers and Physical Security
  • Factory Internal Security
  • Factory Employee Security
  • Shipping Dock Security
  • Key and Seal Controls
  • Security Processes
  • Container and Merchandise Movement
  • Computer Systems Security and Controls
  • Management Commitment to a Culture of Security (*)
  • Cybersecurity and Protection from Social Engineering Threats (*)
  • Agricultural Security (*)
  • Prevention of Money Laundering and Terrorism Financing (*)

(*) Coming in 2020