NIPP implementation relies on the critical infrastructure information provided by the private sector and State, local, tribal, or territorial governments.

The NIPP recognizes that the disclosure of sensitive business or security information could cause serious damage to companies, the economy and public safety or security through unauthorized disclosure or access.

Protected Critical Infrastructure Information (PCII) Program

DHS and other Federal agencies use a number of programs and procedures, such as the Protected Critical Infrastructure Information (PCII) Program, to ensure that critical infrastructure information is properly safeguarded.

The PCII Program includes procedures that govern the receipt, validation, handling, dissemination, storage, marking and use of critical infrastructure information voluntarily submitted to the Department of Homeland Security. These procedures are also applicable to Federal, State, local, tribal, or territorial government employees or contractors supporting Federal agencies that have access to, handle, use, or store critical infrastructure information that enjoys protection under the Critical Infrastructure Information Act of 2002.