8 CCR 1507-82
DEPARTMENT OF PUBLIC SAFETY COLORADO TELECOMMUNICATIONS SECURITY REGISTRATION PROGRAM 8 CCR 1507-82 [Editor’s Notes follow the text of the rules at the end of this CCR Document.] _________________________________________________________________________ 1. Authority This regulation is adopted pursuant to the authority in Section 24-33.5-1624, C.R.S. and is intended to be consistent with the requirements of the State Administrative Procedure Act, Section 24-4-101 et seq. (the “APA”).
2. Scope and Purpose This regulation shall govern the implementation of the Colorado Telecommunications Security Registration Program, which includes the time frames for Telecommunications Providers to register with the Division, the notification to the Division as to when Telecommunication Providers are planning to remove, discontinue, or replace any critical telecommunications infrastructure equipment from a federally banned entity, and the payment of registration fees and late fees.
3. Applicability The provisions of these rules shall be applicable to all eligible Telecommunications Providers as provided by law.
4. Definitions The following definitions apply only to these rules and do not in any way apply to the rules, regulations, or procedures of telecommunications providers or other state agencies or local governments. All definitions that appear in Section 24-33.5-1624, C.R.S. shall apply to these rules. All publications, standards, or rules adopted and incorporated by reference in these rules are available for public inspection and copies are available for a reasonable charge. Information regarding obtaining copies is available by contacting the Division of Homeland Security and Emergency Management at 9195 E. Mineral Ave, Suite 200, Centennial, CO 80112 or by phone at 720-852-6600. The materials incorporated by reference in these rules may also be examined at any state publications depository library. These rules do no include later amendments to or editions of any materials incorporated by reference.
• Questions, clarification, or interpretation of these rules should be addressed in writing to: Colorado Telecommunications Security Registration Program c/o DHSEM Grants Management at 9195 E. Mineral Ave, Suite 200, Centennial, CO 80112.
“Federally banned entity” means any entity or equipment that the Federal Government has banned or imposed sanctions against, including banning or sanctions imposed by the following federal agencies and acts:
● (III) The United States Cybersecurity and Infrastructure Security Agency; ● (IV) The Federal Acquisition Security Council, established pursuant to the Federal “Secure Technology Act”, 41 U.S.C. Sec. 1322, as amended, Pub. L. 115-390, title II, § 202(a), Dec. 21, 2018, 132 Stat. 5178; and ● (V) Section 889 of the Federal “John S. McCain National Defense Authorization Act for Fiscal Year 2019”, Pub.L. 115-232 (Aug. 13, 2018).
“Telecommunications provider” means an entity that offers wireless telecommunications service for a fee directly to the public or to such classes of uses as to be effectively available to the public. ● “Telecommunications provider” does not include a municipality or a municipally owned utility.
5. Program Requirements
5.1 Registration and Initial Registration Fee
A. Telecommunication Providers will register with the Division on or before January 15th 2025 and pay a fifty (50) dollar registration fee.
B. Telecommunication Providers will provide the Division with the name, address, telephone number, and email address of the primary point of contact that will oversee the operation of telecommunications service in Colorado.
5.2 Certification and Notification
A. Telecommunication Providers will report every year on or by January 15th each year as to their progress in removing all federally banned equipment.
B. Once a Telecommunications Provider can certify compliance, they are no longer required to continue annual reporting.
5.3 Program Guidance
The DHSEM Office of Grants Management is responsible for the implementation of this program and will develop and publish guidance including the following requirements: