I am looking for some feedback on how other universities are dealing with the development of Technology Control Plans (TCP) that are required for export controlled technology. It seems that just about every enterprise software we are using is subject to export controls (simply by not having an EAR99 designation) and therefore a plan needs to be put into place to prevent the unauthorized exportation of the software which involves limiting access, screening and background checks, training and certifications. We are finding that the development and the maintaining of these TCPs are significantly impacting our environment. Are other universities experiencing this same problem? How are you dealing with these requirements?