2024 Payments Year in Review: CFPB and FTC Regulatory Trends – Part One — Payments Pros – The Payments Law Podcast
Hidden Fees in the Live-Event Ticketing and Short-Term Lodging Industries
Recent Developments in California's Arbitration Landscape — FCRA Focus Podcast
(Podcast) The Briefing – Fake Reviews, Real Consequences: Consumer Review Dos and Don’ts
The Briefing – Fake Reviews, Real Consequences: Consumer Review Dos and Don’ts
California Employment News: Understanding the FTC Non-Compete Ban Key Insights for Employers
California Employment News: Understanding the FTC Non-Compete Ban Key Insights for Employers (Podcast)
PODCAST: Williams Mullen's Benefits Companion - IRS Clarifies Emergency Distributions Tax Exceptions
Sustainable Procurement: A Closer Look at the New Federal Acquisition Regulation (FAR)
DE Under 3: Retirement of “Chevron Doctrine” Exposed Vulnerability of OFCCP’s Overreaching Interpretations of Some of its Rules
Navigating Mass Arbitration: New Rules and Strategies — The Consumer Finance Podcast
Tackling Credit Push Fraud: Understanding Nacha's Risk Management Package (Part One) — Payments Pros: The Payments Law Podcast
Protecting Our Nation’s Data: Cybersecurity Compliance for Government Contractors
The Burr Broadcast: New Independent Contractor Rule
#WorkforceWednesday: The Department of Labor's New Rules and Rising Challenges - Employment Law This Week®
PLI's inSecurities Podcast - Addressing the “Netflix Problem” in Securities Regulation
New SEC Private Funds Rules – What Is Happening and What You Need to Know - Troutman Pepper Podcast
Episode 288 -- SEC Adopts Robust New Cybersecurity Disclosure Rules
[Podcast] The FTC Safeguards Rule: A Deep Dive into the Revisions Effective June 9, 2023
Non-Compete Agreements: An Endangered Species?
On April 8, 2025, a sweeping rule issued by the US Department of Justice (DOJ) will take effect. The rule imposes restrictions—and in some cases, outright prohibitions—on US companies in connection with certain types of data...more
On December 27, 2024, the U.S. Department of Justice (DOJ) announced its final rule on the transfer of certain bulk sensitive personal data to China, Russia, and other countries. Following this, on January 3, 2025, the U.S....more
On October 22, 2024, the Consumer Financial Protection Bureau (CFPB) issued a final rule (Rule) on personal financial data rights under Section 1033 of the Dodd-Frank Act. The Rule imposes significant new obligations on...more
On December 16, the U.S. Department of Defense’s Cybersecurity Maturity Model Certification Program (CMMC) final rule (the “CMMC Program Rule”) will become effective, to codify the CMMC requirements and assessment processes....more
On October 21, 2024, the Division of Examinations (the “Division”) of the U.S. Securities and Exchange Commission (the “SEC”) issued its annual examination priorities for fiscal year 2025. As with its 2024 examination...more
The Office of Information and Regulatory Affairs (OIRA) recently cleared the final rule for the U. S. Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) program, putting the agency one step closer to...more
Welcome to our fourth issue of The Health Record - our healthcare law insights e-newsletter. In this edition, we take a look at the Biden administration's proposed insurance rule regarding mental health and substance use...more
The September Monthly Minute highlights the DOL’s extension of existing cybersecurity guidance to health and welfare plans and also addresses the new HIPAA reproductive health privacy rule....more
In a stinging rebuke of its attempted cybersecurity-related enforcement against a public company, a federal judge recently dismissed most of the charges that the U.S. Securities and Exchange Commission (SEC) had filed against...more
Covered institutions will need to review their cybersecurity and incident response policies and procedures ahead of the applicable compliance deadline. ...more
The streak of good news in D&O litigation risk ends this year, with a rise in class action filings and bigger settlements. But the D&O market is still soft, so staying on top of the evolving risk landscape will help you...more
The SEC’s Division of Corporation Finance yesterday published five new Compliance and Disclosure Interpretations, or “C&DIs,” all concerning Item 1.05 of Exchange Act Form 8-K, Disclosure of Cybersecurity Incidents....more
As addressing cybersecurity issues continues to become a top priority throughout the financial industry, the U.S. Securities and Exchange Commission (SEC) is following suit. The SEC unanimously voted to approve a new set of...more
Last week, Erik Gerding, Director of the SEC’s Division of Corporation Finance (the Division), issued a statement providing clarification regarding the disclosure of cybersecurity incidents by reporting companies. This...more
A significant shift in cybersecurity compliance is on the horizon, and businesses need to prepare. Starting in 2024, organizations will face new requirements to report cybersecurity incidents and ransomware payments to the...more
The financial services industry has seen a litany of new data privacy and cybersecurity challenges through the first half of 2024. Financial institutions are facing unprecedented compliance hurdles resulting from the...more
The SEC’s new and proposed rules on cybersecurity and cyber-incident reporting will have a dual impact on private investment advisers and funds. First, the proposal by the SEC will impose cybersecurity related...more
Transportation services providers are increasingly facing new technology-oriented threats in day-to-day business. Recent cyberattacks and the potential for serious disruption from threat actors have drawn the attention of the...more
On April 4, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) published its much-anticipated Notice of Proposed Rule Making for the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA)....more
Most businesses in the United States will have to file incident reports—including for ransomware payments—under the Proposed Rule. The Department of Homeland Security has the authority to issue subpoenas and even penalties...more
On March 27, 2024, the Cybersecurity and Infrastructure Security Agency (CISA), an operational component of the Department of Homeland Security (DHS), posted for public inspection its long-anticipated notice of proposed...more
The federal Cybersecurity and Infrastructure Security Agency (CISA) released a draft of its proposed rule detailing how covered entities operating in critical infrastructure sectors report cyberattacks and ransomware payments...more
In a wave of SEC rulemaking this past year, representing a “new world order” event akin to Dodd-Frank, the SEC has provided itself with a fresh set of tools to increase regulatory and enforcement scrutiny on private funds....more
The U.S. Department of Defense (DoD) published a finalized rule on March 12, 2024, which expands access to defense contractors who wish to participate in the Defense Industrial Base (DIB) Cybersecurity (CS) Program....more
DORA became law in December 2022 but provides for a grace period until 17 January 2025 for organisations to put in place the necessary measures to comply. The new rules will require engagement from both an operational and...more