Salesforce is committed to the success of our customers and to ensuring our customers can continue to use our services to meet their mission and be enabled to comply with applicable data protection laws. Driven by our shared security and compliance responsibility model, compliance with data protection laws requires transparency from Salesforce with our customers in their use of our services. As part of our commitment to our customers, we’ve published this document to describe the Salesforce features customers can use when storing, processing, or managing Controlled Unclassified Information (CUI), and to assist our customers in documenting their compliance with the U.S. Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC).