I. Scope:
This policy applies to all employees and students of the University, and to all persons holding any position affiliated with the University, including but not limited to Affiliate Faculty Members, and to all University contractors and employees of contractors (hereafter referred to as “University Community Members”).
II. Policy Statement:
George Mason University is committed to promoting transparent international engagements that benefit the entire scientific ecosystem and providing our researchers with the tools they need to safely and securely assess and manage the risks associated with international activities.
The United States Government has mandated that all U.S. research institutions receiving $50M or more annually in federal research funding establish and certify that they have implemented a research security program.
A research security program must address how the institution is protecting U.S. Government-funded research, technology, and intellectual capital from being unduly influenced or illicitly obtained by Foreign Countries of Concern. The research security program must include procedures related to: foreign travel, cyber security, research security training, and export compliance training.
III. Definitions:
Foreign Country of Concern: Currently defined by the U.S. Government as China, Russia, Iran, and North Korea. See the Office of Research Integrity and Assurance (“ORIA”) research security website Research Security and International Collaborations – Office of Research Integrity and Assurance for the most up-to-date list.
Malign Foreign Talent Recruitment Program (MFTRP): As defined in the CHIPS and Science Act of 2022. To summarize, an MFTRP is a program, position, or activity sponsored by an entity in a Foreign Country of Concern involving compensation or remuneration (including in-kind compensation) in exchange for obligations or activities which are contrary to U.S. national interests and threaten U.S. researchers, the integrity and reliability of research, and the public’s trust in science (such as the unauthorized transfer of IP developed under a federal research award). See the ORIA research security website for the complete definition.
IV. Responsibilities:
Each University Community Member is responsible for complying with and ensuring their activities conform to the university’s research security program and procedures. This includes engaging with ORIA’s research security office when planning international activities, conducting international collaborations that are open and reflect the values of research integrity, and completing federally-required training, reporting, and certifications.
V. Compliance:
All University Community Members must:
- Fulfill all disclosure, certification and training requirements as prescribed by the research security program, including certifying no involvement in a Malign Foreign Talent Recruitment Program.
- Report to [email protected] any suspected compromise of research security as detailed in research security training, such as unauthorized transfer of intellectual property to a foreign entity.
- Cooperate with the University in any investigation of a research security matter.
University Community Members may contact ORIA’s research security office at [email protected] for questions, guidance, and information on how to safely engage in international activities.
Due to the importance of maintaining security of the U.S. research enterprise, the University or University Community Members may be penalized by the federal government if non-compliance is discovered. Penalties may include termination of federal awards and contracts, suspension or debarment from eligibility for federal funding, and/or suspension or denial of Title IV funds. Therefore, the University takes compliance with this policy very seriously, and University Community Members may be subject to the ordinary disciplinary process of the University if they fail to fully comply with any element of this Research Security Policy. Additionally, depending on the nature of non-compliance, they may be subject to criminal sanctions, civil liability, or both, under law.
VI. Timetable for Review:
This policy, and any related procedures, shall be reviewed every three years or more frequently as needed.
VII. Amendments:
This policy, and any related procedures, shall be reviewed every three years or more frequently as needed.
VIII. Dates:
This policy was approved and became effective March 20, 2026.
Page created: March 24, 2026