Prohibition on the use of TikTok on Department of Homeland Security information technology

(a)

Definitions

In this section— (1)the term covered application means the social networking service TikTok or any successor application or service developed or provided by ByteDance Limited (or any successor entity) or an entity (or any successor entity) owned by ByteDance Limited or any such successor entity; and (2)the term information technology has the meaning given such term in section 11101(6) of title 40, United States Code, except that subparagraph (C) of such section shall not apply. (b)

Prohibition on the use of TikTok on Department of Homeland Security information technology

(1)

In general

Not later than 60 days after the date of the enactment of this Act, the Secretary of Homeland Security, in consultation with the Director of the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security, shall develop standards and guidelines for the Department requiring the removal of any covered application from information technology of the Department. (2)

Applicability

The standards and guidelines developed under paragraph (1) applies to the following: (A)Employees of the Department of Homeland Security to whom the Department has issued information technology. (B)Individuals performing work under a contract on behalf of the Department to whom the Department has issued information technology. (3)

National security and research exceptions

The standards and guidelines developed under paragraph (1) shall include the following: (A)Exceptions for law enforcement activities, national security interests and activities, and security researchers. (B)For any authorized use of a covered application under an exception, requirements for offices and components of the Department of Homeland Security to develop and document risk mitigation actions for such use.