Re-Export: The Ultimate Guide to U.S. Export Control Laws

LEGAL DISCLAIMER: This article provides general, informational content for educational purposes only. It is not a substitute for professional legal advice from a qualified attorney. Always consult with a lawyer for guidance on your specific legal situation.

Imagine you are a world-class baker who creates a highly advanced, proprietary cake mix. This isn't just any mix; it's a “dual-use” recipe that can be used to make a delicious birthday cake or, with a slight modification, a very potent industrial adhesive. You sell a large batch of this mix to a reputable bakery in France. That's an export. Now, imagine that French bakery, without your permission, turns around and sells your special mix to a third company in a country known for stealing recipes and creating dangerous chemicals. That second sale, from France to the third country, is a re-export. The U.S. government acts like you, the protective baker. It wants to ensure its sensitive “recipes”—whether they are computer chips, software, or actual weapons systems—don't end up in the wrong hands, even after they've left the United States. The concept of re-export is the legal tool that allows U.S. law to follow U.S. goods around the globe, ensuring that a product sold to an ally doesn't get quietly passed along to an adversary. For any business dealing in U.S. products, understanding this concept isn't just good practice; it's a legal necessity to avoid crippling fines and even criminal charges.

• Key Takeaways At-a-Glance:
• What it is: A re-export is the shipment, transfer, or transmission of a U.S.-origin item, software, or technology from one foreign country to another foreign country. export_controls.
• Why it matters to you: A re-export means your legal responsibility under U.S. law doesn't stop at the U.S. border; you must ensure your foreign customers are not diverting your products to prohibited destinations or end-users. compliance_program.
• The bottom line: Ignoring re-export regulations can lead to severe penalties, including fines in the millions of dollars and imprisonment, making it a critical area of legal risk for any international business. economic_sanctions.

The idea that a nation's laws can follow its goods across the globe is a relatively modern concept, born from the crucible of 20th-century geopolitics. Its roots are not in ancient commercial disputes but in the high-stakes chess match of the Cold War. Following World War II, the United States and its allies found themselves in a technological and ideological standoff with the Soviet Bloc. To maintain a strategic advantage, the U.S. passed the Export Control Act of 1949. This was the genesis of modern export controls. The primary goal was simple: prevent sensitive technology, industrial equipment, and munitions from reaching the Soviet Union and its allies, where they could be used to build up their military and industrial might. It quickly became clear, however, that simply blocking direct sales to the USSR wasn't enough. A U.S. company could sell advanced machinery to a friendly nation like France, which could then turn around and sell that same machinery to the Soviets. This “transshipment” or “diversion” was a massive loophole. To close it, the concept of the re-export was born. U.S. regulations were extended to control the “re-export” of U.S.-origin goods from one foreign country to another. This asserted U.S. jurisdiction over its products, no matter where they were in the world. After the Cold War, the focus of these controls shifted. While preventing technology from reaching rival powers remained a goal, new threats emerged. The priorities expanded to include:

• Non-proliferation: Preventing the spread of nuclear, chemical, and biological weapons.
• Anti-terrorism: Ensuring U.S. goods do not support terrorist organizations.
• Regional Stability: Controlling the flow of weapons into conflict zones.
• Human Rights: Restricting the sale of items to regimes that could use them for internal repression.

This evolution led to the two powerful regulatory systems we have today: the Export Administration Regulations (ear) for commercial and “dual-use” items, and the International Traffic in Arms Regulations (itar) for purely military items. Both systems rely heavily on the control of re-exports to achieve U.S. foreign policy and national security objectives.

Understanding re-export law requires knowing the two parallel, and sometimes overlapping, sets of rules that govern all items, software, and technology leaving the United States.

• The Export Administration Regulations (EAR): Maintained by the `bureau_of_industry_and_security` (BIS), an agency within the `department_of_commerce`, the EAR governs a vast array of items.
  • Scope: The EAR controls “dual-use” items—commercial goods that can also have military or strategic applications (e.g., high-performance computers, advanced sensors, GPS devices). It also covers many purely commercial items, as well as some less-sensitive military items. The list of controlled items is called the `commerce_control_list` (CCL).
  • The Re-Export Rule (15 C.F.R. § 734.14): The EAR defines a re-export as the “shipment or transmission of an item subject to the EAR from one foreign country to another foreign country.” This also includes “in-country transfers” and the release of technology to a foreign national within another foreign country (a `deemed_re-export`). The EAR's authority is far-reaching and is the primary tool for controlling the global movement of U.S. technology.
• The International Traffic in Arms Regulations (ITAR): Maintained by the `directorate_of_defense_trade_controls` (DDTC), an agency within the `department_of_state`, the ITAR is focused purely on national security.
  • Scope: The ITAR governs “defense articles,” “defense services,” and related technical data specifically designed or modified for military use. These items are listed on the `united_states_munitions_list` (USML). Examples include tanks, fighter jets, missiles, and military-grade electronics.
  • The Re-Export/Re-Transfer Rule (22 C.F.R. § 123.9): The ITAR is significantly stricter than the EAR. It requires prior written approval from the DDTC for any re-export or re-transfer of a USML-listed item to a new country or new end-user. There are virtually no exceptions. If an item is on the USML, it is considered a sensitive piece of U.S. military technology, and the U.S. government maintains tight control over it for its entire lifespan, no matter where it goes.

Unlike many legal concepts, the key jurisdictional difference for re-exports is not between U.S. states, but between the two main federal regulatory bodies: BIS (for EAR) and DDTC (for ITAR). A business must first determine which set of rules applies to its product, as the compliance obligations are vastly different.

To comply with the law, you must understand exactly what the government considers a re-export. The concept is broader than just shipping a box from one country to another.

First, the item in question must be “subject to” U.S. export laws. This includes:

• All items physically located within the United States.
• All U.S.-origin items, wherever they are located in the world.
• Foreign-made items that incorporate more than a certain percentage of controlled U.S.-origin content (the `de_minimis_rule` under the EAR).
• Certain foreign-made items that are the direct product of U.S. technology or software (the Foreign-Direct Product Rule).
• This applies not just to physical goods but also to software (source code and object code) and technology (technical data, schematics, engineering plans).

This is the classic definition of a re-export.

• Example: A U.S. company exports a sophisticated semiconductor manufacturing machine to Germany. The German company then sells that same machine to a customer in Singapore. The Germany-to-Singapore transaction is a re-export and may require a license from the U.S. government.

The EAR also controls the transfer of an item *within* a single foreign country if it changes the end-user or end-use.

• Example: A U.S. company gets a license to export a high-powered laser to a university in the United Kingdom for scientific research. If that university later decides to sell the laser to a private manufacturing company within the UK, that in-country transfer may require a separate U.S. re-export license, as the end-user and end-use have changed.

This is one of the most complex and misunderstood concepts. A `deemed_re-export` occurs when U.S.-origin technology or software source code is released to a “foreign national” *within a foreign country*. The “release” is legally considered a re-export to that individual's home country.

• Relatable Example: A Canadian tech company uses a proprietary U.S.-origin software design suite. The company has employees who are Canadian citizens and also an engineer who is a citizen of China. If the Canadian company allows the Chinese engineer to access the underlying source code of that U.S. software *at their office in Toronto*, the U.S. government considers that a “deemed re-export” of the technology to China. This may require a license, just as if they had physically sent the source code to Beijing.

This EAR-specific rule is a critical calculation for global manufacturers. It establishes a threshold for how much U.S. content can be in a foreign-made product before the entire product becomes subject to U.S. re-export laws.

• How it works: A foreign company builds a product (e.g., a commercial satellite in Japan). They analyze all the components. They calculate the percentage of the final product's value that is made up of controlled, U.S.-origin components.
  • 25% Rule: For most countries, if the U.S. content is below 25% of the total value, the foreign-made product is not subject to the EAR.
  • 10% Rule: For countries subject to U.S. sanctions or embargoes (e.g., Iran, North Korea), the threshold is a much stricter 10%.
• Crucially, this rule does not exist under ITAR. An ITAR component “contaminates” the entire foreign product.

• The Re-Exporter: This is the foreign person or company that initiates the transfer of a U.S.-origin item from their country to another. They bear the primary legal responsibility for ensuring compliance with U.S. law.
• The Original U.S. Exporter: The U.S. company that first sent the item abroad. They have a responsibility to inform their foreign customers of the item's export control status and any licensing restrictions. Failure to do so can lead to liability.
• The Ultimate Consignee / End-User: The final recipient of the item. U.S. law requires screening these parties against various government “blacklists” to ensure they are not prohibited from receiving U.S. goods.
• Bureau of Industry and Security (bis): The U.S. Commerce Department agency that creates, implements, and enforces the EAR. They issue licenses, conduct investigations, and impose penalties for violations.
• Directorate of Defense Trade Controls (ddtc): The U.S. State Department agency that administers the ITAR. They are the gatekeepers for all re-exports of military hardware and technology.
• Office of Foreign Assets Control (ofac): An agency within the `department_of_the_treasury` that administers and enforces economic and trade sanctions. OFAC's rules are separate from, but often overlap with, EAR and ITAR, adding another critical layer of screening for any re-export transaction.

This guide is for a non-U.S. company that has a U.S.-origin product and wants to send it to another country. Failing to follow these steps can have disastrous consequences.

1. Determine Jurisdiction: First, is the item governed by the EAR or the ITAR? The original U.S. supplier should have provided this information. If an item is ITAR-controlled (a defense article on the `usml`), you must stop and seek U.S. government authorization. The following steps primarily apply to EAR-controlled items.
2. Find the ECCN: If the item is under EAR jurisdiction, you need to know its `export_control_classification_number` (ECCN). The ECCN is an alphanumeric code (e.g., 3A001) that corresponds to a specific category on the `commerce_control_list`. If the item is not on the CCL, it is designated as `ear99`. The ECCN is the key that unlocks all licensing requirements.

1. Check the Country Chart: Using your item's ECCN, you must check the `commerce_country_chart` (Supplement No. 1 to Part 738 of the EAR). This chart tells you if a license is required to send that specific type of item to your desired destination country.
2. Screen for Sanctions: Separately, check if the destination country is under a comprehensive U.S. embargo administered by `ofac` (e.g., Cuba, Iran, North Korea, Syria). Re-exports to these destinations are almost always prohibited.

1. Check the Blacklists: You must screen the name of your customer, the end-user, and any other parties to the transaction against the U.S. Government's Consolidated Screening List. This list includes the `entity_list`, the Denied Persons List, and the Unverified List, among others. A “hit” on one of these lists is a major red flag.
2. Evaluate the End-Use: What will your customer do with the item? U.S. law prohibits re-exports that will support prohibited end-uses, such as the proliferation of weapons of mass destruction, military activities in certain countries, or terrorism. You must exercise `due_diligence` to understand the intended application.

1. Based on the combination of the item's ECCN, the destination country, the end-user, and the end-use, you can determine if a re-export license is needed. Even `ear99` items, which usually don't need a license, will require one if they are going to a sanctioned country or a prohibited end-user.
2. Look for License Exceptions: The EAR contains several “License Exceptions” that may allow you to re-export an item without a license, even if one is normally required. These are complex and have very specific criteria.

1. If you determine a license is required, you must apply for it through the BIS's online portal, called `snap-r`. You will need to provide detailed information about the item, all parties involved, and the specific end-use.
2. Do Not Proceed Without Approval: You cannot ship the item until you have the license in hand.

• Commercial Invoice: This is the primary shipping document. For controlled re-exports, it must contain a “Destination Control Statement,” which explicitly states that the goods are subject to U.S. law and cannot be diverted contrary to that law. It should also list the correct ECCN.
• BIS-711 Form (Statement by Ultimate Consignee and Purchaser): For many license applications, BIS requires this form to be completed by the final end-user. It is a signed declaration of what the item is, where it will be used, and for what purpose, helping BIS verify the legitimacy of the transaction.
• Export Compliance Program (ECP): While not a single document, an ECP is the most critical tool for any company involved in international trade. It is an internal manual that outlines a company's policies, procedures, training, and record-keeping for complying with export and re-export laws.

The most effective way to understand the seriousness of re-export laws is to examine the “cautionary tales” of companies that violated them. These are not obscure technicalities; they are major enforcement actions with billion-dollar consequences.

• Backstory: ZTE, a massive Chinese telecommunications company, used a series of shell companies to purchase U.S.-origin technology (like microchips and software) and illegally re-export it to Iran, a heavily sanctioned country. This was a systematic, multi-year conspiracy to evade U.S. export controls.
• The Violation: The company shipped hundreds of millions of dollars' worth of U.S. goods to Iran, directly violating the EAR and OFAC sanctions. They then actively obstructed the federal investigation.
• The Holding: ZTE pleaded guilty and agreed to a combined civil and criminal penalty of $1.19 billion, one of the largest penalties ever levied by the U.S. government for export control violations.
• Impact on You: This case demonstrates that the U.S. government will aggressively pursue even the largest foreign corporations for re-export violations. It also shows that the penalties are not just a cost of doing business; they are financially devastating.

• Backstory: FLIR, a U.S. company, is a leading manufacturer of thermal imaging cameras and sensors. Many of their products are controlled under the stricter ITAR regulations because of their military applications.
• The Violation: FLIR's foreign subsidiaries and employees engaged in numerous ITAR violations, including the unauthorized re-export of thermal cameras and technical data to “dual nationals”—employees who held citizenship in both an approved country and a proscribed country. This triggered the ITAR's strict rules on releasing technical data to foreign persons.
• The Holding: FLIR agreed to a $30 million settlement with the State Department. Half of that amount was suspended, to be used for implementing a robust, mandatory compliance program to prevent future violations.
• Impact on You: The FLIR case is a stark reminder of the ITAR's unforgiving nature and the importance of the `deemed_export` and deemed re-export rules. It highlights that compliance is not just about physical shipments but also about controlling access to technical data, even within your own company.

• Backstory: In 2020, BIS implemented an aggressive expansion of the Foreign-Direct Product (FDP) Rule targeting the Chinese tech giant Huawei, which had been placed on the `entity_list`. The new rule stated that even foreign-made items that were the direct product of certain U.S. software or technology could not be sent to Huawei without a license.
• The Violation: Seagate Technology, both in the U.S. and through its foreign subsidiaries, continued to sell foreign-produced hard disk drives to Huawei for over a year, incorrectly believing the drives were not subject to the new FDP rule. BIS determined they were, making the sales illegal re-exports.
• The Holding: Seagate agreed to a $300 million civil penalty, the largest standalone administrative penalty in BIS history.
• Impact on You: This case shows that U.S. export control laws are dynamic and can be expanded to cover new types of transactions. It is not enough to know the old rules; companies must stay constantly informed about changes that can affect their global supply chains.

The world of re-export controls is at the forefront of the geopolitical contest between the United States and China. This is the new Cold War, and the weapons are semiconductors, artificial intelligence, and quantum computing.

• The “Technological Decoupling”: The U.S. is increasingly using export and re-export controls, particularly the Foreign-Direct Product Rule and the `entity_list`, to slow China's technological advancement and military modernization. This has sparked a fierce debate. Proponents argue it's essential for national security. Opponents claim it harms U.S. businesses, disrupts global supply chains, and encourages other countries to design U.S. technology out of their products to avoid the reach of U.S. law.
• Controlling Emerging Technologies: How do you control something that doesn't exist yet? BIS is engaged in an ongoing process to define and control “emerging and foundational technologies” like AI, biotechnology, and quantum computing. The challenge is to craft rules that protect national security without stifling innovation and scientific collaboration.

The nature of technology and trade is forcing regulators to adapt, and we can expect significant changes in the coming years.

• The Cloud Conundrum: How do you regulate a “re-export” when the technology isn't physically shipped but resides on a server in one country and is accessed by users in multiple other countries? The rise of cloud computing and Software-as-a-Service (SaaS) is a massive challenge for a legal framework built around physical goods.
• Rise of Multilateral Controls: The U.S. is pushing its allies (e.g., in Europe and Asia) to adopt similar controls, particularly on technology sent to China. The future may see more coordinated, multilateral export control regimes, creating an even more complex web of international regulations.
• Data as the New Frontier: The next battleground for re-export controls will likely be data itself. Expect new regulations focused on controlling the transfer of large datasets, AI training models, and other intangible assets that could have significant economic and military value.

• `bureau_of_industry_and_security` (BIS): The U.S. Commerce Department agency that administers the EAR.
• `commerce_control_list` (CCL): A list of dual-use items that are controlled for export under the EAR.
• `deemed_export`: The release of controlled technology to a foreign national within the United States.
• `deemed_re-export`: The release of controlled technology to a foreign national outside the United States.
• `directorate_of_defense_trade_controls` (DDTC): The U.S. State Department agency that administers the ITAR.
• Dual-Use: An item that has both commercial and potential military or proliferation applications.
• `ear99`: A classification for items subject to the EAR but not specifically listed on the CCL, representing the lowest level of control.
• `entity_list`: A list of foreign parties that are prohibited from receiving certain items subject to the EAR without a license.
• `export_control_classification_number` (ECCN): An alphanumeric code used to categorize items on the CCL.
• `export_administration_regulations` (EAR): The set of regulations that govern the export and re-export of most commercial items from the U.S.
• `international_traffic_in_arms_regulations` (ITAR): The set of regulations that govern the export and re-export of military items.
• `office_of_foreign_assets_control` (OFAC): The U.S. Treasury Department agency that administers economic sanctions.
• Transshipment: The process of sending goods from one country to another via an intermediate country.
• `united_states_munitions_list` (USML): A list of defense articles, services, and related technology controlled by the ITAR.

• export_controls
• international_trade_law
• economic_sanctions
• ear
• itar
• deemed_export
• compliance_program