In October 2024, the U.S. Department of Justice (DOJ) issued a 420-page Notice of Proposed Rulemaking (NPRM) to implement Executive Order (EO) 14117, which directed DOJ to issue implementing regulations and directed the U.S....more
12/4/2024
/ Advanced Notice of Proposed Rulemaking (ANPRM) ,
Comment Period ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Department of Homeland Security (DHS) ,
Department of Justice (DOJ) ,
Executive Orders ,
Notice of Proposed Rulemaking (NOPR) ,
Privacy Laws ,
Public Comment ,
Sensitive Personal Information
President Joe Biden issued Executive Order (EO) 14117 in February 2024 to mitigate national security risks posed by threat countries’ access to sensitive personal data and government-related data. The EO directed the U.S....more
12/4/2024
/ Cybersecurity Information Sharing Act (CISA) ,
Data Security ,
Data Transfers ,
Department of Homeland Security (DHS) ,
Department of Justice (DOJ) ,
Enforcement Actions ,
New Rules ,
NPRM ,
Proposed Regulation ,
Regulatory Agenda ,
Regulatory Requirements ,
Risk Management
On July 1, 2024, the Supreme Court of the United States ruled in Moody v. NetChoice, LLC that laws regulating large social media platforms passed by Texas and Florida likely offend the First Amendment in at least some...more
7/29/2024
/ Algorithms ,
Artificial Intelligence ,
Communications Decency Act ,
First Amendment ,
Florida ,
Moody v NetChoice LLC ,
Privacy Laws ,
Regulatory Agenda ,
SCOTUS ,
Social Media ,
Technology ,
Texas
The chair of the U.S. Senate Committee on Commerce, Science, and Transportation, Maria Cantwell (D-WA), and the chair of the U.S. House Committee on Energy and Commerce, Cathy McMorris Rodgers (R-WA), released a discussion...more
4/22/2024
/ Algorithms ,
Artificial Intelligence ,
Biden Administration ,
Data Brokers ,
Data Privacy ,
Data Protection ,
Data Security ,
Enforcement ,
FTC Act ,
Legislative Agendas ,
Machine Learning ,
New Legislation ,
Preemption ,
Privacy Laws ,
Technology
Just a few years ago, the legal landscape governing health-related personal information was relatively simple: Protected Health Information (PHI) was regulated under Health Insurance Portability and Accountability Act...more
The Biden Administration recently reaffirmed its continued focus on cybersecurity by announcing an Implementation Plan for the National Cybersecurity Strategy (the Plan). The Plan provides a roadmap covering the policies and...more
8/2/2023
/ Biden Administration ,
Cloud Service Providers (CSPs) ,
Critical Infrastructure Sectors ,
Cyber Incident Reporting ,
Cybersecurity ,
Domain Names ,
Environmental Protection Agency (EPA) ,
Internet of Things ,
National Security ,
Personal Data ,
Reporting Requirements ,
TSA
The day before the California Privacy Rights Act (CPRA) became enforceable on July 1, we learned that enforcement of the first set of implementing regulations finalized by the California Privacy Protection Agency (CPPA) under...more
After years out of circulation, class-action lawsuits asserting claims under the Video Protection Privacy Act (VPPA) are now back in reruns. But early critical assessment is mixed, so it remains to be seen whether VPPA-driven...more
Following the release of President Biden’s National Cybersecurity Strategy, Acting National Cyber Director Kemba Walden explained that the Biden Administration is “expecting more” from owners and operators in critical...more
3/24/2023
/ Aviation Industry ,
Biden Administration ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Environmental Protection Agency (EPA) ,
Government Entities ,
NIST ,
Private Sector ,
Risk Assessment ,
Risk Management ,
Technology ,
TSA ,
Water
In late January, the Federal Energy Regulatory Commission (FERC) published a final rule directing the North American Electric Reliability Corporation (NERC) to develop and submit modified reliability standards for internal...more
3/8/2023
/ Bulk Electric System ,
Critical Infrastructure Sectors ,
Cyber Incident Reporting ,
Cybersecurity ,
Electricity ,
Energy Policy ,
FERC ,
Final Rules ,
NERC ,
Regulatory Agenda ,
Risk Management