Data Under Siege: How the DOJ Is Fighting Back Against Foreign Threats

The United States faces an invisible siege. Nations like China, Russia, and Iran aren’t just eyeing our military secrets; they’re after the personal data of every American. From your health records to your location history, this information is a goldmine for adversaries aiming to undermine our security. The Justice Department’s new Data Security Program, launched under Executive Order 14117, confronts this threat head-on. It’s a decisive move to block foreign access to sensitive data, and it signals a no-nonsense approach to protecting our nation in a world where information is power.

This isn’t about fearmongering; it’s about facing reality. The program, effective since April 8, 2025, sets up what amounts to export controls on data, ensuring adversaries can’t exploit our personal information for espionage, surveillance, or worse. Critics might call it overreach, but when foreign entities can buy bulk data on the open market, doing nothing isn’t an option. The stakes are too high, and the Justice Department’s action proves America is ready to fight back.

Deputy Attorney General Todd Blanche hit the nail on the head: why would adversaries bother with complex cyberattacks when they can simply purchase our data? The 2025 Annual Threat Assessment from the U.S. Intelligence Community lays it bare: countries like China and Russia are aggressively collecting Americans’ genomic, financial, and biometric information. This isn’t speculation. Historical patterns show it. During the Cold War, the Soviet Union targeted sensitive technologies; today, the battlefield is digital, and our personal data is the prize.

Look at recent moves by China. Restrictions on U.S. tech firms and bans on American apps mirror our own concerns about espionage through platforms like TikTok. The difference? America’s response prioritizes national security over economic gamesmanship. The Data Security Program’s Compliance Guide spells out clear steps for businesses to block these risks, from encryption to audit requirements. Those whining about compliance costs need a reality check: the cost of inaction is far steeper when adversaries weaponize our data.

The private sector isn’t just a bystander; it’s on the front lines. Companies handling sensitive data, whether health providers or tech giants, have a duty to comply with these new rules. The Justice Department’s 90-day enforcement grace period, ending July 8, 2025, gives businesses a chance to get their houses in order. That’s not a free pass, it’s a call to action. Firms must adopt robust cybersecurity, monitor data flows, and report breaches. The alternative? Civil and criminal penalties that could cripple non-compliant companies.

Some argue these rules stifle innovation or burden global trade. That’s a tired excuse. The reality is, unchecked data transfers have already cost us. The Equifax breach exposed millions to risks that adversaries could exploit. The program’s FAQs and Implementation Policy make compliance straightforward, offering model contracts and best practices. Businesses that drag their feet aren’t just risking fines; they’re gambling with our national security.

Opponents of the program claim it disrupts international collaboration or infringes on privacy. Let’s set the record straight. This isn’t about snooping on Americans; it’s about stopping foreign adversaries from doing exactly that. Privacy advocates pushing for weaker rules often ignore the ethical mess of letting sensitive data flow to regimes with no regard for human rights. The Maryland Online Data Protection Act and similar state laws prove we can balance privacy and security without leaving the door open to exploitation.

As for trade concerns, the U.S.-China economic split was inevitable. China’s own restrictions on American tech show they’re playing the same game, just with less transparency. The Data Security Program doesn’t kill legitimate partnerships; it ensures they don’t become backdoors for espionage. Those crying foul need to ask: would they rather let adversaries stockpile our data unchecked? That’s not a plan, it’s surrender.

The Justice Department’s push isn’t just policy; it’s a commitment to America’s strength. By locking down sensitive data, we’re shielding our people from threats that hit closer to home than most realize. This program builds on decades of hard-learned lessons, from Cold War tech races to modern cyber battles. It’s a reminder that national security demands vigilance, not complacency. Businesses and citizens alike have a role to play, and the time to act is now.

We can’t afford to wait for another breach or scandal to wake us up. The Data Security Program is a bold step toward a safer America, one where our personal information stays out of hostile hands. It’s not perfect, but it’s a start, and it sends a clear message: our data, our rules. Let’s back this effort and keep the pressure on to protect what makes America worth defending.