# Fusion Plating — Controlled Goods Program (CGP) Canadian Controlled Goods Program compliance pack for plating shops doing defence or ITAR-adjacent work. Part of the Fusion Plating product family by Nexa Systems Inc. ## What it covers The Controlled Goods Program (CGP) is administered by Public Services and Procurement Canada (PSPC) under the *Defence Production Act*. Every Canadian entity that examines, possesses, or transfers controlled goods must be registered, must appoint an Authorized Individual, must run Personnel Security Assessments on anyone with access, and must maintain visitor, movement, and incident logs. Non-compliance is a criminal offence. This module layers the minimum record set to stay audit-ready on top of the Fusion Plating core. ## Records | Model | Purpose | |---|---| | `fusion.plating.cgp.registration` | Company CGP registration with PSPC, 5-year renewal | | `fusion.plating.cgp.authorized.individual` | AI appointment, training, state | | `fusion.plating.cgp.psa` | Personnel Security Assessment (restricted) | | `fusion.plating.cgp.visitor` | Visitor log with PSA / escort / approval | | `fusion.plating.cgp.controlled.good` | Inventory of controlled goods handled | | `fusion.plating.cgp.receipt.shipment` | Movement log with AI authorization | | `fusion.plating.cgp.security.incident` | Security incidents, PSPC notification (restricted) | | `fusion.plating.cgp.access.log` | Physical access log for controlled areas | It also extends `hr.employee` with CGP fields (`x_fc_cgp_psa_id`, `x_fc_cgp_ai`, etc.) and `res.company` with a link to the current CGP registration. ## Security CGP data is sensitive. This module introduces a **new restricted group** on top of the core `fusion_plating.group_fusion_plating_manager`: * **CGP Officer** — full access to every CGP record * **CGP Designated Official** — implies CGP Officer; top-level accountable person named in the PSPC registration `ir.rule` records enforce that PSA and Security Incident records are visible **only** to CGP Officer and above — a regular plating manager cannot see them. No users are assigned by default; admin must grant access explicitly. ## Security Plan template On install the module seeds a `fusion.plating.doc.control` record titled *"CGP Security Plan (Template)"*. Customise it to your facility and submit to PSPC as part of your registration. ## Dependencies * `fusion_plating_quality` — for `fusion.plating.doc.control` * `hr` — for employee linkage on PSAs, AIs, and access logs ## Reference Copyright (c) 2026 Nexa Systems Inc. All rights reserved. License: OPL-1 (Odoo Proprietary License v1.0)