28 CFR Part 23

28 CFR Part 23 is a pivotal federal regulation that establishes crucial guidelines and standards for law enforcement agencies regarding the operation of inter-jurisdictional and multijurisdictional criminal intelligence systems in the United States. Enacted by the Department of Justice, these standards are designed to ensure the lawful and effective gathering, handling, and dissemination of criminal intelligence information while safeguarding individual privacy rights and civil liberties.

In summary, 28 CFR Part 23 serves as a cornerstone regulation that provides essential guidance to law enforcement agencies on the lawful and responsible operation of inter-jurisdictional and multijurisdictional criminal intelligence systems. By promoting adherence to privacy protections, compliance with legal standards, and fostering interagency cooperation, the regulation supports efforts to enhance public safety while safeguarding individual rights and maintaining public trust in law enforcement practices.

• 28 CFR Part 23 is a federal regulation that provides guidance to law enforcement agencies on the implementation standards for operating inter-jurisdictional and multijurisdictional criminal intelligence systems.

Access 28 CFR Part 23 Settings:

1. Click Administration.

2. Click Data Access - Classification & Retention.

3. Click 28 CFR Part 23.

4. This will open the 28CFR Part 23 page.

• Enabling the 28CFR Part 23 toggle will display the 28CFR fields during any record creation.

   

• When 28CFR details are added to any record type those records will be displayed under the 28 CFR Part 23 page-specific record type tables..

• Based on the CJIS Review info period all the records that have 28CFR Part 23 compliance will get reviewed by the administrators.

Each record will show the Last Review Date, the New Review Date and the latest Review Status.

• Based on the next review date the administrator can review the record and can retain or delete the record by selecting the options available in the review popup.  

Review, Retain, or Delete:

1. Click the action menu under the Action column for the appropriate record.

2. Click Review.

• After review, an administrator will have the option to Retain or Delete the record. This can be achieved from the action menu present under the Action column for each record within the record type tables.

After clicking Review you will be redirected to a popup window that will display the basic information of the record and two action buttons.

Click the respective Retain or Delete button from the review page. 

The review page will also show the review history details and the next review date.

• Clicking Retain will open the Comment To Retain section to add review comments. This field is mandatory.  Once comments have been entered accordingly, click Retain to complete the action.

• Clicking Delete will open the Comment To Delete section to add delete comments. This field is mandatory. Once comments have been entered, click the By checking this, you are giving permission checkbox before clicking Delete to complete the action.

After deleting or retaining the record, the review history details will be updated.

The CJIS Review Info Period and the Notification days can be modified using the Edit option present on the

Data Access - Classification & Retention Policies - Compliance page.

• Notification Days Before Due Date: An email notification will be sent to the reviewers based on the number of days set here.