Who is legally authorized to classify or declassify national security information?
Authority to classify and declassify national security information in the United States flows from the President and is exercised through a controlled chain of delegation. It is not something any government employee can do at will. Instead, it rests on a framework set out in a series of presidential executive orders that govern how information is classified, safeguarded, and eventually released.
Where the Authority Comes From
The power to classify national security information derives from the President’s constitutional and statutory authority over national defense and foreign relations. Through executive order, the President establishes the categories of classification (commonly Confidential, Secret, and Top Secret) and designates who may apply them.
This authority is then delegated downward:
- Original classification authority (OCA): The President, the Vice President, agency heads, and certain officials specifically designated in writing may make an original decision that information requires protection. These officials are limited in number and named through formal delegation.
- Derivative classification: Most cleared employees and contractors never originate a classification. Instead, they apply markings consistent with source documents or classification guides. This is far more common than original classification but does not require an OCA.
Who Declassifies
Declassification authority generally tracks classification authority. Information may be declassified by:
- The official who originally classified it, or that official’s successor or supervisor.
- Officials with delegated declassification authority within the originating agency.
- Automatic or scheduled declassification after set time periods, subject to exemptions.
- Mandatory or systematic review processes established by executive order.
The agency that owns the information typically controls whether and when it is released, even when another body conducts the review.
Oversight
Government-wide oversight of the classification system is provided by a dedicated oversight office within the National Archives, which issues implementing guidance, monitors agency compliance, and reports on the system’s operation.
For records and information governance professionals, the practical takeaway is that classification and declassification are deliberately constrained authorities tied to specific roles and written delegations, not general discretion. To explore related guidance, see the declassification topic hub.
Sources & further reading
Authoritative government and non-profit references.
- Information Security Oversight Office (ISOO) — National Archives (NARA)
- Records management laws — National Archives (NARA)
How to cite this page
APA
RM University Editorial. (2026). Who is legally authorized to classify or declassify national security information?. Records Management University. https://www.recordsmgmt.org/questions/who-is-authorized-to-classify-or-declassify-information/
MLA
RM University Editorial. "Who is legally authorized to classify or declassify national security information?." Records Management University, 16 June 2026, www.recordsmgmt.org/questions/who-is-authorized-to-classify-or-declassify-information/.
Related questions
- Can a hospital or research university hold classified records, and how do FCL and HIPAA rules interact?
- Can a law firm representing a government client retain classified discovery, and who declassifies it after the case?
- Can a multinational company use ISO 15489 as a single recordkeeping standard across all of its countries?
- Can a private citizen request that a specific classified record be declassified?
- Can AI and machine learning reliably assist with declassification review of classified records?