CLETS compliance for California law enforcement agencies
California agencies with CLETS access answer to two documents at once: the FBI's CJIS Security Policy v6.0, and the California DOJ's CLETS Policies, Practices, and Procedures governing the state's own telecommunications system for CJI. ComplianceLattice tracks the federal foundation both share.
A federal baseline, plus an annual reporting duty
CLETS - the California Law Enforcement Telecommunications System - is how California agencies with statutory arrest powers access CJI and NCIC data in-state. The CLETS Policies, Practices, and Procedures document governs that access, and it comes with an obligation most states don't spell out as explicitly: agencies must report CLETS misuse annually. Failing to report - not just failing to prevent misuse - carries its own sanction, up to removal of CLETS service entirely.
The bulk of the underlying compliance work - access control, authentication, audit logging, incident response, and the rest of CJIS v6.0's 20 policy areas - is the same work every CJIS-connected agency in the country does. ComplianceLattice tracks that full federal baseline today, covering most of the ground before you get to California's CLETS-specific reporting obligation.
Because the annual misuse report is a procedural duty rather than a technical control, it's the kind of requirement that's easy to lose track of between audits - there's no system prompt for it the way there is for an expired certificate. If your agency is working through the CLETS Policies, Practices, and Procedures requirements now, reach out - alpha tester feedback directly shapes what we build first.
- All 20 CJIS v6.0 policy areas, the federal baseline CLETS builds on
- Recurring task tracking so the annual CLETS misuse report doesn't get missed
- Evidence vault with expiration tracking for background checks and training renewals
- One-click audit export for your CA DOJ or FBI assessor