Latest Publications

Share:

Something Is Better Than Nothing: UK and EU GDPR Reform Finally Arrives

In recent weeks, the EU and UK have both introduced changes to their respective versions of Europe’s landmark privacy legislation, the General Data Protection Regulation (GDPR). These reforms mark the first substantial...more

The EU’s New Cybersecurity Law for the Space Sector

On 25 June 2025, the European Commission announced its proposal for a “Space Act” that would introduce a new regulatory framework for EU space activities. The proposed framework includes cyber-resilience obligations for EU...more

The European Health Data Space – What EU Health Care Providers and Data Holders Need To Know

- On 26 March 2025, the European Health Data Space (EHDS) Regulation entered into force. The regulation establishes a comprehensive framework for health-data sharing and access in the EU, with the dual aim of supporting the...more

Texas Charts New Path on AI With Landmark Regulation

Texas has become the second state, after Colorado, to enact omnibus legislation regulating artificial intelligence (AI) systems. On June 22, 2025, Texas Gov. Greg Abbott signed into law the Texas Responsible Artificial...more

EU Data Act: Three Months To Go Before New Rules on Data Access and Sharing Take Effect

Executive Summary - The EU Data Act, whose requirements apply from 12 September 2025, establishes new rights for businesses and consumers to access data they generated using “connected devices,” limiting the exclusive...more

Cybersecurity Trends in the Digital Asset Space

After years of regulatory uncertainty, the Trump administration has signaled a new approach to digital assets, including by establishing a working group focused on digital assets and nominating crypto-friendly chairs to the...more

Key Themes From the 2025 IAPP Global Privacy Summit

On April 23 and 24, 2025, regulators, industry leaders and data privacy leaders from across the globe convened in Washington, D.C. for the 2025 International Association of Privacy Professionals (IAPP) Global Privacy Summit....more

Eight-State Consortium of Privacy Regulators Marks Shift Toward Coordinated Enforcement

In a major development for businesses subject to state data privacy laws, eight state privacy regulators have joined forces to form the “Consortium of Privacy Regulators,” a bipartisan coalition aimed at coordinating...more

District Court Rulings Could Signal Expansion of California Consumer Privacy Right of Action

In two recent rulings, judges in the U.S. Northern District of California have allowed proposed class actions under the California Consumer Privacy Act (CCPA) to proceed without an allegation of a data breach, departing from...more

FCC Council on National Security Launches Investigation of Businesses Linked to the Chinese Communist Party

In its first major initiative, on March 21, 2025, the Federal Communications Commission’s (FCC’s) newly formed Council on National Security (Council) launched an investigation into the “ongoing U.S. operations” of businesses...more

California Attorney General Warns That FCPA Violations Are Still Actionable Under State Law

Key Points -- - The FCPA remains valid and enforceable U.S. law, and violations of the law may serve as a predicate offense under state and local laws. - Companies should be prepared for continued enforcement of...more

Government Contractor Settles FCA Case Over Cybersecurity Maturity Model Certification Violations

On March 26, 2025, the Department of Justice (DOJ) entered into a settlement agreement with MORSECORP, Inc. (MORSE), resolving False Claims Act (FCA) allegations that MORSE submitted false claims for payment under Department...more

Veto of Virginia AI Bill Raises Questions About the Future of State-Level Regulation

On March 24, 2025, Virginia Gov. Glenn Youngkin vetoed the High-Risk Artificial Intelligence Developer and Deployer Act (House Bill 2094). The bill, which had passed through the Virginia Legislature in February 2025, would...more

State Attorneys General May Fill Enforcement Void Left by Shift in Federal Priorities

Key Points - - State AGs nationwide are focusing on initiatives in data privacy, cybersecurity, consumer protection and securities fraud. - Special areas of concern also include AI and online privacy and protections for...more

FTC Finalizes Long-Awaited Child Online Privacy Rule Amendments

On January 16, 2025, the Federal Trade Commission (FTC) finalized amendments to the Children’s Online Privacy Protection Act (COPPA) Rule (Final Rule) relating to the collection, use and disclosure of personal information...more

AI: Broad Biden Order Is Withdrawn, but Replacement Policies Are Yet To Be Drafted

On January 23, 2025, President Donald Trump issued an executive order titled “Removing Barriers to American Leadership in Artificial Intelligence” (Trump AI Executive Order). The Trump AI Executive Order assigns select...more

US Federal Regulation of AI Is Likely To Be Lighter, but States May Fill the Void

Key Points - - President-elect Trump appointed David Sacks, a venture capitalist, as the White House AI and crypto czar. - The Trump administration is likely to adopt a light regulatory approach to AI development and...more

The Informed Board - November 2024

At what point has a director served too long? What about term limits? A mandatory retirement age? When do a director’s skills become stale? These issues are addressed in this issue of The Informed Board, as well as why proxy...more

What Companies Can Do To Protect Against Cyberattacks … and the Litigation That Often Follows

Cyber threats continue to grow as a result of increased digitization, widespread use of cloud computing, advanced connectivity and artificial intelligence (AI), requiring boards of directors across all sectors to focus more...more

Recent SEC Cyber-Related Enforcement Actions Emphasize the Importance of Robust Disclosure Controls

On October 22, 2024, the Securities and Exchange Commission (SEC) announced enforcement actions against several technology companies for making materially misleading disclosures regarding cybersecurity risks and intrusions....more

Navigating the New Cybersecurity Landscape: Key Implications of the EU’s NIS 2 Directive

The deadline for EU countries to transpose the expanded cybersecurity directive, NIS 2, into national law is 17 October 2024, but the implementation status varies significantly from country to country. Some of the member...more

EU Standardization Supporting the Artificial Intelligence Act

With the EU’s AI Act having entered into force on August 1, 2024, companies now need to focus on its implementation. Although the AI Act will not be fully enforceable until August 2, 2027, some obligations will become binding...more

New FTC Initiative Targets Deceptive AI Claims and a Generative AI Service

The Federal Trade Commission (FTC) recently initiated an enforcement sweep called Operation AI Comply against several companies that allegedly “relied on artificial intelligence as a way to supercharge deceptive or unfair...more

142 Results
 / 
View per page
Page: of 6

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide