The Uyghur Forced Labor Prevention Act (UFLPA) enforcement landscape continues to evolve, as evident in several recent developments:
On October 24, 2023, the Congressional-Executive Commission on China (the Commission)...more
On October 17, 2023, the U.S. Department of Commerce’s Bureau of Industry and Security (BIS) released two interim final rules to reinforce and expand controls on (a) advanced semiconductors and related computing items (the...more
10/27/2023
/ Bureau of Industry and Security (BIS) ,
China ,
Deadlines ,
Entity List ,
Export Administration Regulations (EAR) ,
Export Controls ,
Exports ,
Final Rules ,
Inspections ,
Manufacturers ,
Semiconductors ,
Technology Sector ,
U.S. Commerce Department
On September 20, 2023, the U.S. Department of Homeland Security released a report outlining the varied and sometimes conflicting reporting requirements that private entities face when they are victims of a cyber incident. The...more
10/17/2023
/ CIRC ,
Corporate Governance ,
Cyber Incident Reporting ,
Cybersecurity ,
Department of Homeland Security (DHS) ,
Legislative Agendas ,
Popular ,
Public-Private Entities ,
Regulatory Agenda ,
Reporting Requirements ,
Securities and Exchange Commission (SEC)
In this month’s Privacy & Cybersecurity Update, we examine Delaware’s new comprehensive data privacy law, a joint statement by 12 data protection authorities on data scraping and data protection, a district court ruling on a...more
10/3/2023
/ California Privacy Protection Agency (CPPA) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Popular ,
Privacy Laws ,
Risk Assessment ,
Risk Management ,
State and Local Government ,
State Data Privacy Laws ,
State Privacy Laws ,
Web Scraping
In this month’s Privacy & Cybersecurity Update, we analyze the Biden administration’s proposed cybersecurity labeling program for smart devices, NIST’s extensive overhaul of its cybersecurity framework, and data privacy law...more
9/6/2023
/ Biden Administration ,
California ,
California Privacy Rights Act (CPRA) ,
Colorado ,
Compliance ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Labeling ,
NIST ,
Popular ,
Privacy Laws ,
Smart Devices ,
State Privacy Laws
Over the past few weeks, the interagency Forced Labor Enforcement Task Force (FLETF) has signaled a shift in its strategy for enforcing the Uyghur Forced Labor Prevention Act (UFLPA). On July 26, 2023, the FLETF issued its...more
8/23/2023
/ China ,
Enforcement ,
Entity List ,
Forced Labor ,
Importers ,
Imports ,
International Trade ,
Popular ,
Supply Chain ,
Trade Restrictions ,
Uyghur Forced Labor Prevention Act (UFLPA)
On August 9, 2023, after more than a year of deliberations, the Biden administration finally released an executive order (the Order) directing the Department of the Treasury (Treasury) to create a new regulatory program to...more
8/11/2023
/ Advanced Notice of Proposed Rulemaking (ANPRM) ,
Biden Administration ,
CFIUS ,
China ,
Cross-Border Transactions ,
Cybersecurity ,
Executive Orders ,
Foreign Direct Investment ,
Foreign Investment ,
National Security ,
Technology Sector
In this month’s Privacy & Cybersecurity Update, we examine the newly established data privacy framework between the EU and U.S. and new consumer privacy laws in Oregon and Texas. We also review a court ruling that delayed...more
8/2/2023
/ Biometric Information Privacy Act ,
California ,
California Privacy Rights Act (CPRA) ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Framework ,
Data Privacy ,
Data Transfers ,
Disclosure ,
EU ,
European Commission ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
NYDFS ,
Oregon ,
Popular ,
Privacy Laws ,
Proposed Amendments ,
Regulatory Requirements ,
Risk Management ,
Texas
In our June Privacy & Cybersecurity Update, we review new data privacy laws in Colorado, Connecticut, Florida and Montana; Verizon’s annual Data Breach Investigations Report; AM Best’s report on cyber insurance trends; and...more
7/6/2023
/ Biometric Information Privacy Act ,
Consumer Privacy Rights ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Processors ,
Data Protection ,
Employer Liability Issues ,
Employment Litigation ,
Enforcement ,
Investigations ,
Liability ,
Negligence ,
New Amendments ,
New Legislation ,
New Regulations ,
Opt-Outs ,
Popular ,
Privacy Laws ,
State and Local Government ,
State Privacy Laws ,
Technology Sector ,
Verizon
In this month’s Privacy & Cybersecurity Update, we review new consumer privacy laws in Tennessee and Indiana, three GDPR rulings by the Court of Justice of the European Union, updates regarding future California Privacy...more
6/5/2023
/ California Privacy Protection Agency (CPPA) ,
Cyber Insurance ,
Cybersecurity ,
EU ,
European Court of Justice (ECJ) ,
Fraud ,
General Data Protection Regulation (GDPR) ,
Hackers ,
Insureds ,
Liability ,
Privacy Laws ,
State Privacy Laws ,
Wire Fraud
In this month’s Privacy & Cybersecurity Update, we look at Washington state’s passage of the first-ever state-level health data privacy law and the finalized California Consumer Privacy Act regulations. We also examine a...more
5/2/2023
/ California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Department of Health and Human Services (HHS) ,
Food and Drug Administration (FDA) ,
Fraudulent Wire Transfers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Insurance Industry ,
Medical Devices ,
Notice of Proposed Rulemaking (NOPR) ,
Popular ,
Privacy Laws ,
Reproductive Healthcare Issues ,
State Privacy Laws
In this month’s Privacy & Cybersecurity Update, we examine Iowa’s new data privacy law (the sixth state to enact a privacy law), the Biden administration’s new national cybersecurity strategy, the U.K. government’s revised...more
4/4/2023
/ Amended Regulation ,
Biden Administration ,
Consumer Privacy Rights ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Protection ,
National Security ,
Popular ,
Privacy Laws ,
State Privacy Laws ,
UK
On February 24, 2023, the U.S. Department of Commerce’s Bureau of Industry and Security (BIS) announced four new rules expanding restrictions on exports to Russia and Belarus. The revisions to the Export Administration...more
The Bureau of Economic Analysis (BEA) within the U.S. Department of Commerce collects and publishes data regarding the U.S. economy and the status of foreign investment. As part of this mission, it conducts regular, periodic...more
In this month’s Privacy & Cybersecurity Update, we analyze recent fines against Meta and their impact on the future of behavioral advertising, the timeline for the California Privacy Rights Act’s regulations to become...more
2/1/2023
/ Advertising ,
California ,
California Privacy Rights Act (CPRA) ,
Class Action ,
Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
Data Breach ,
FCC ,
Fines ,
Investigations ,
Metaverse ,
Popular ,
Privacy Laws ,
Proposed Amendments ,
Reporting Requirements ,
Settlement Agreements ,
State and Local Government ,
State Privacy Laws ,
UK
In this month’s Privacy & Cybersecurity Update, we examine the European Commission’s draft adequacy decision on the EU-U.S. Data Privacy Framework, as well as guidance from the U.K. Information Commissioner’s Office on...more
1/3/2023
/ Biometric Information Privacy Act ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Employee Monitoring ,
EU ,
European Commission ,
International Data Transfers ,
Popular ,
Privacy Laws ,
Risk Assessment ,
UK
The pandemic’s impact may be subsiding, but businesses are encountering new challenges across the globe, including the potential for an economic retrenchment, rising interest rates, shifting regulatory and litigation...more
12/14/2022
/ Acquisitions ,
Anti-Corruption ,
Antitrust Division ,
Banking Sector ,
Big Tech ,
Board of Directors ,
Bonds ,
Borrowers ,
Capital Markets ,
Capital Raising ,
China ,
Climate Change ,
Convertible Notes ,
Corporate Counsel ,
Corporate Governance ,
Corporate Restructuring ,
Creditors ,
Cross-Border ,
Cryptocurrency ,
Digital Assets ,
Due Diligence ,
Economic Sanctions ,
Enforcement ,
Environmental Social & Governance (ESG) ,
EU ,
Executive Compensation ,
Financial Services Industry ,
Forum Selection ,
Investigations ,
IRS ,
Lenders ,
Mergers ,
Money Laundering ,
Partnerships ,
Publicly-Traded Companies ,
Recessions ,
Repurchases ,
Russia ,
Securities ,
Securities and Exchange Commission (SEC) ,
Securities Litigation ,
Shareholders ,
Special Purpose Acquisition Companies (SPACs) ,
Taxation ,
Technology ,
UK ,
Vertical Mergers
Recent developments, including Russia’s invasion of Ukraine, ongoing tensions between the U.S. and China, and turmoil in the digital assets sector, have made it essential for companies — including their directors and senior...more
The proliferation of U.S. sanctions and other regulations affecting cross-border transactions has implications for directors, who may be personally liable for violations in some cases. Meanwhile, the Securities and Exchange...more
12/9/2022
/ Anti-Monopoly ,
Board Meetings ,
Board of Directors ,
China ,
Competition ,
Compliance ,
Corporate Counsel ,
Corporate Entities ,
Corporate Governance ,
Corporate Minutes ,
Corporate Officers ,
Cybersecurity ,
Disclosure ,
Documentation ,
Enforcement Actions ,
Environmental Social & Governance (ESG) ,
Exports ,
Financial Fraud ,
Financial Reporting ,
Foreign Policy ,
Joint Venture ,
Market Abuse ,
Merger Controls ,
Money Laundering ,
Non-GAAP Financial Measures ,
Revenue ,
Securities and Exchange Commission (SEC) ,
State Administration for Market Regulation (SAMR) ,
US Trade Policies
In this month’s Privacy & Cybersecurity Update, we examine the California Privacy Protection Agency’s revised draft regulations for the California Privacy Rights Act, the Federal Trade Commission’s settlement with a...more
12/6/2022
/ California Privacy Rights Act (CPRA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Direct Marketing ,
Electronic Communications ,
Enforcement ,
Federal Trade Commission (FTC) ,
Notice Requirements ,
Opt-Outs ,
Personally Identifiable Information ,
Popular ,
Proposed Regulation ,
Regulatory Agenda ,
Rulemaking Process ,
UK
In this month’s Privacy & Cybersecurity Update, we examine President Biden’s executive order to implement an EU-U.S. data privacy framework, the European Commission’s draft Cyber Resilience Act, the U.S. Treasury’s request...more
In this month’s Privacy & Cybersecurity Update, we review California’s settlement of the first-ever enforcement action under the California Consumer Privacy Act, as well as the state’s new child-focused privacy law and...more
On September 15, 2022, President Joe Biden issued an executive order (EO) “on ensuring robust consideration of evolving national security risks” by the Committee on Foreign Investment in the United States (CFIUS or the...more
In this month’s Privacy & Cybersecurity Update, we review the FTC’s proposed data privacy and cybersecurity rulemaking and the European Data Protection Board’s draft guidelines on the calculation of GDPR administrative fines....more
9/7/2022
/ Advanced Notice of Proposed Rulemaking (ANPRM) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Gramm-Leach-Blilely Act ,
Popular ,
Public Comment ,
Rulemaking Process
In this month’s Privacy & Cybersecurity Update, we examine the FTC’s blog post suggesting an increased focus on protecting consumers’ sensitive data and Plaid’s settlement to resolve a class action arising from its data...more