Webinar: Trademarks and Government Contracting
Cybersecurity and 889 Compliance in 2021: What Government Contractors Need to Know
Navigating the FAR/DFARS: The Most Confusing and Little Known Clauses
SaaS Transactions: Data-Related Issues in SaaS Agreements - Tech Podcast
Jones Day Presents: Effect of GDPR, CCPA, and FTC on Blockchains
The recently passed National Defense Authorization Act (NDAA or Act) for Fiscal Year 2025 addresses recurring areas of focus relevant to defense contracting, including supply chain risks related to China, organizational...more
To kick off the New Year, Sheppard Mullin’s Governmental Practice Cybersecurity & Data Protection Team has prepared a cybersecurity-focused 2023 Recap (including links to all of the resources the team has put out over the...more
The very definition of generative AI suggests the creation of new content based on a program training on existing data, a recipe that necessarily raises potential U.S. and EU data privacy issues, not to mention related...more
2020 saw the implementation of several game-changing regulations for government contractors. None the least of these were related to DOD’s Cybersecurity Maturity Model Certification (CMMC) and Section 889 of the National...more
The words “hodgepodge” and “patchwork” are overused in the world of risk and compliance, but they’re certainly appropriate for describing the myriad data privacy regulations popping up around the world. In 2018, the world...more
Cybersecurity, supply chain risks, data rights, software acquisitions, and cost or pricing data are among the procurement-related issues targeted in the Fiscal Year (FY) 2020 National Defense Authorization Act (NDAA), which...more
The Clearing House (the oldest banking association and payments company in the United States) recently released a model agreement as a voluntary starting point to facilitate data sharing between financial institutions and...more
BID PROTESTS, LATEST DEVELOPMENTS & TWISTS - Bid Protests: Agenda - 1. LOGCAP V and Task/Delivery Order Protest Jurisdiction 2. SpaceX and Other Transaction Authority Protest Jurisdiction 3. Potential Impact of New...more
The EU Commission issued its report on the third annual review of the functioning of the EU-US Privacy Shield (Privacy Shield) on October 23. The annual review and corresponding report is required of the Commission by the its...more
A recent ruling by the Court of Justice of the European Union (CJEU) established that companies seeking to store “cookies” that are used to track online browsing behavior must obtain “active consent.” The ruling is likely to...more
New York’s proposed data privacy law failed to materialize in the latest legislative session and is now presumed dead. New York was one of a number of states that proposed sweeping privacy legislation after the enactment of...more
Congress is moving closer toward passage of the Fiscal Year 2020 National Defense Authorization Act (NDAA). Although key differences remain between the House and Senate versions of the bill, the legislation is ultimately...more
If a company has questions about how to comply with California’s new data privacy law, it may, under a remarkable provision of that law, request an opinion from California’s attorney general (AG). This article analyzes that...more
With the recent passage of SB 220, Nevada has become the latest state to regulate consumer privacy online by allowing individuals to opt-out of certain sales of their information. Although SB 220 is not a comprehensive data...more
New York’s state legislature is considering a new data privacy law that would set the standard for data privacy in the U.S. The New York Privacy Act (the “NYPA” or the “Act”), which is currently being considered by the state...more
California legislators have passed many bills to amend the California Consumer Protection Act since the law was passed. Last week there was significant developments in the status of those bills, as we reported. In addition to...more
Partner Jay Johnson discusses the effect of various regulations on blockchains. He notes that the GDPR presents compliance obligations on data controllers, the CCPA allows consumers a right to erasure, and the FTC has notice...more
Data rights > data ownership? That’s the position taken by Privacy International in its response to the recent editorial by artist wil.i.am in The Economist which called for tech giants to pay individuals for their data:...more
Does your website or application collect user data? Does your company sell that user data to other third parties, such as advertisers? Does your company disclose this practice to your users in a privacy policy or terms or...more
In Part 1 of this series, we provided an overview of data (or knowledge) commons and some key issues to consider, but how does one actually create and manage a data commons? To find your feet in this budding field, build on...more
You may have heard of the “tragedy of the commons,” where a resource is depleted through collective action, but knowledge is different from other resources—knowledge can be duplicated, aggregated, integrated, analyzed,...more
As noted in previous posts in this series, AI tools hold great promise for applications in healthcare. To date, AI tools in healthcare primarily leverage machine learning technology – i.e., the machine’s ability to keep...more
California recently passed and signed into law a privacy bill that provides California consumers with data protections that share key features with the European Union's GDPR. While not nearly as strict or extensive as the...more
Recently the state of California passed a data privacy and security law called the California Consumer Privacy Act (“CCPA”) (Assembly Bill 375). The law, which takes effect on January 1, 2020, is aimed at establishing a...more
Have you noticed recently that when you click on most websites a notice appears stating that the host uses cookies? Many are aware that on May 25, 2018, the GDPR (“Global Data Protection Regulation”) took effect. The law...more