The fatal flaws in the 2023 CRA rule
Consumer Finance Monitor Podcast Episode: The Impact of the Election on the FTC
Federal Court Strikes Down FDA Rule on LDTs - Thought Leaders in Health Law®
Predictions regarding the 2023 CRA Rule and Section 1071 and how to prepare for expected developments
Consumer Finance Monitor Podcast Episode: Everything You Want to Know About the CFPB as Things Stand Today, and Lots More - Part 1
FCPA Compliance Report: Death of CTA
2024 Payments Year in Review: CFPB and FTC Regulatory Trends – Part One — Payments Pros – The Payments Law Podcast
Consumer Finance Monitor Podcast Episode: Alan Kaplinsky’s “Fireside Chat” with Former CFPB Leader David Silberman: His Experience During the Prior Transition from the Obama Administration to Trump
SBA’s Final Rule Is Here: Key Takeaways on Updates to HUBZone Program, Other Small Business Programs, and Various Small Business Matters
Hidden Fees in the Live-Event Ticketing and Short-Term Lodging Industries
Podcast — Drug Pricing: What’s in the New CMS Medicaid Final Rule?
Director Review Under the USPTO's Final Rule – Patents: Post-Grant Podcast
#WorkforceWednesday®: After the Block - What’s Next for Employers and Non-Competes? - Spilling Secrets Podcast - Employment Law This Week®
Employment Law Now VIII-150 - The FTC Noncompete Rule is Dead: What Now?
ERISA Blog | Changes to the HIPAA Privacy Rules A Primer for Self-Insured Group Health Plans
Sustainable Procurement: A Closer Look at the New Federal Acquisition Regulation (FAR)
Employment Law Now VIII-145 – Status Update: Injunctions for FTC Non-Compete Ban and DOL Overtime Exemption Regs
Legal Alert | Reign It In: Federal Court Enjoins DOL's Expansion of Davis-Bacon Coverage
Consumer Finance Monitor Podcast Episode: What Banking Leaders Need to Know About the U.S. Supreme Court Ruling That the CFPB’s Funding Mechanism is Constitutional Part I
Unpacking FERC's Transmission Planning and Permitting Final Rules
After a relatively slow start to 2025, the California Privacy Protection Agency (CPPA) is firing on all cylinders now. In recent weeks, the CPPA (i) revised the proposed Delete Request and Opt-out Platform (DROP) regulations...more
On January 8, 2025, the U.S. Department of Justice (Department or DOJ) issued new rules required by then-President Biden’s February 2024 Executive Order (EO) 14117 to establish a new regulatory framework aimed at “Preventing...more
The Department of Justice’s (DOJ) final rule implements President Biden’s Executive Order 14117 of February 28, 2024, on “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data...more
A groundbreaking new regulatory regime, imposing rules unlike any in existing U.S. law, may surprise many companies due to its sudden adoption and complexity. This article tries to simplify the changing regulatory landscape,...more
The Department of Justice (DOJ) released a Final Rule restricting certain transfers of Americans’ sensitive personal data to identified countries of concern or covered individuals. The Final Rule continues to assert the DOJ...more
Executive Order (EO) 14117 is a national security rule intended to mitigate national security risks posed by threat countries’ access to sensitive personal data and government-related data. The EO directed the U.S....more
On December 27, 2024, the U.S. Department of Justice (DOJ) announced its final rule on the transfer of certain bulk sensitive personal data to China, Russia, and other countries. Following this, on January 3, 2025, the U.S....more
On December 27, 2024, the US Department of Justice (DOJ) issued a final rule establishing a new national security program to prevent access to Americans’ bulk sensitive personal data and government-related data by China...more
§ 160.101 Statutory basis and purpose. The requirements of this subchapter implement sections 1171–1180 of the Social Security Act (the Act), sections 262 and 264 of Public Law 104–191, section 105 of Public Law 110–233,...more
H.R.5887, Government Service Delivery Improvement Act, Enacted - On January 4, H.R.5887 was signed into law. This bill requires certain government officials be responsible for improving government service delivery (i.e.,...more
On January 8, 2025, the Department of Justice (“DOJ”) published its Final Rule to implement President Biden’s Executive Order 14117, “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States...more
The rule imposes substantial new diligence, reporting, cybersecurity, and auditing obligations on companies. On December 27, 2024, the U.S. Department of Justice (“DOJ”) issued a final rule implementing Executive Order...more
On October 22, 2024, the Consumer Financial Protection Bureau (CFPB) issued a final rule (Rule) on personal financial data rights under Section 1033 of the Dodd-Frank Act. The Rule imposes significant new obligations on...more
The Federal Trade Commission (FTC) continues to enforce and update its Health Breach Notification Rule (HBNR) amidst a fast-changing regulatory environment. A new rule, which took effect this week, expands the scope of the...more
In 2024, the cybersecurity landscape is poised for remarkable transformations and formidable challenges, and artificial intelligence (AI) is redefining the way we defend against cyber threats, with its prevalence in...more
After an extensive comment period, the SEC announced on July 26 that it was formally adopting new rules for public companies governing cybersecurity disclosures. The rules had generated significant backlash from public...more
On July 25, 2023, the US Securities and Exchange Commission (the SEC), by a 3-2 vote, adopted final rules regarding cybersecurity risk management, strategy, governance and incident reporting by public companies (the Final...more
Almost 9 months after the California Privacy Protection Agency (CPPA) began the formal rulemaking process, the initial set of regulations under the California Privacy Rights Act (CPRA) finally became effective on March 29,...more
On Friday, February 24, the Colorado Secretary of State published “final” rules for the Colorado Privacy Act. While these rules are similar to “Version 3” of the draft rules, published by the Attorney General’s Office in...more
In response to increasingly frequent and sophisticated cybersecurity attacks on banks and bank service providers, the federal prudential banking regulators—the Office of the Comptroller of the Currency (OCC), the Board of...more
The FTC recently announced a final rule updating its GLBA Safeguards Rule to “strengthen the data security safeguards” of consumer financial information. The FTC reported that it was making these changes in response to...more
Report on Patient Privacy 20, no. 11 (November 2020) - HHS Office of the National Coordinator (ONC) for Health Information Technology (ONC) is giving health care organizations more time to meet new rules on information...more
In this month's edition of our Privacy & Cybersecurity Update, we examine the National Institute of Standards and Technology's four principles of the "explainability" of artificial intelligence and the U.K. Information...more
After what seemed like a set of fits and starts for the California Consumer Privacy Act (CCPA), which went into effect on January 1, 2020, California Attorney General Xavier Becerra announced the approval of the final...more