News & Analysis as of

Personal Data Data Security

Robinson+Cole Data Privacy + Security Insider

Clock Ticking: DOJ’s New Data Security Rule Requires Compliance by July 8

U.S. companies are running out of time to comply with a sweeping new Department of Justice (DOJ) rule that limits sharing sensitive personal data with certain foreign countries—including China, Russia, and Iran. With a hard...more

Baker Donelson

DOJ Bulk Data Rule: Key Takeaways for Healthcare and Life Sciences

Baker Donelson on

The Data Security Program (DSP), implemented by the Department of Justice's National Security Division (DOJ/NSD) under Executive Order 14117 (Preventing Access to Americans' Bulk Sensitive Personal Data and United States...more

Alston & Bird

The Digital Download – Alston & Bird’s Privacy & Data Security Newsletter – May 2025

Alston & Bird on

Selected U.S. Privacy & Cyber Updates - DOJ Settles False Claims Act Case with MORSECORP over Cybersecurity Program - On March 26, 2025, the U.S. Department of Justice (DOJ) announced that it had reached an agreement with...more

Wyrick Robbins Yates & Ponton LLP

The Justice Department’s New Rule on Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or...

On April 8, 2025, the Department of Justice’s new rule on Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or Covered Persons took effect. The rule, referred to by DOJ as the Data...more

Venable LLP

Smoothing Privacy Contracting: Six Ways to Reduce Friction in Data Processing Agreements

Venable LLP on

Negotiating a data processing agreement (DPA) is typically a necessary step when engaging vendors that handle personal data. However, these negotiations have become time consuming and complex, given the evolving privacy...more

Fisher Phillips

Court Confirms Kentucky Consumer Protection Act Doesn’t Cover Employees, But Legal Risks Remain: 5 Steps for Employers to Avoid...

Fisher Phillips on

A federal district court recently found that employees aren’t protected by Kentucky’s consumer protection law because they don’t qualify as consumers, handing a solid win to employers. The April 21 decision in Viviali v. One...more

Fisher Phillips

Hong Kong Releases New Guidelines on Generative AI in the Workplace: What Employers Should Know

Fisher Phillips on

Businesses with employees in Hong Kong should be aware of new guidelines aiming to help companies develop policies on generative AI use in the workplace. Although the new guidelines are not binding, they are meant to align...more

Jenner & Block

Client Alert: Myth Busters: Dispelling Common Misconceptions of the Department of Justice’s Data Security Program

Jenner & Block on

A month has passed since the Department of Justice (DOJ) National Security Division’s (NSD) issued its Final Rule prohibiting certain transactions involving US government data and Americans’ bulk sensitive personal data....more

Alston & Bird

UK Data Protection Regulator Fines UK Law Firm ~$80,000 Following Ransomware Incident

Alston & Bird on

On April 14, 2025, the UK data protection regulator (the Information Commissioner’s Office (“ICO”)) fined DPP Law (“DPP”) £60,000 (approximately $80,000) following a ransomware incident. In its penalty notice, the ICO found...more

Morgan Lewis - Tech & Sourcing

Data Sharing in Sports Sponsorship Contracts

Sports sponsorship contracts traditionally focus on category exclusivity and entitlements while overlooking data sharing language. However, with the rapid evolution of data usage in the industry, incorporating data sharing...more

Eversheds Sutherland (US) LLP

Navigating new compliance requirements for DOJ’s Bulk Data Rule

While the US federal government is largely scaling back its rulemaking and compliance efforts, one critical exception is where personal data and technology intersect with national security. Exemplifying this trend, on April...more

Porter Hedges LLP

DOJ Issues Data Security Program Compliance Guide

Porter Hedges LLP on

On April 11, 2025, the U.S. Department of Justice’s National Security Division (NSD) issued a Compliance Guide to provide additional information to assist companies and individuals in complying with the NSD’s Data Security...more

Perkins Coie

DOJ’s Bulk Personal Data Rule Becomes Effective–Resources for Compliance

Perkins Coie on

The new Department of Justice (DOJ) rule governing international transfers of Americans’ information, codified at 28 C.F.R. Part 202, became effective on April 8, 2025....more

ArentFox Schiff

Navigating the DOJ’s New Data Transfer Rule: Implications and Compliance Requirements

ArentFox Schiff on

On January 8, the US Department of Justice (DOJ) issued a final rule under Executive Order 14117, which established the Rule Preventing Access to US Sensitive Personal Data and Government-Related Data by Countries of Concern...more

Baker Donelson

DOJ Final Rule Applies to Anonymized, Pseudonymized, and De-Identified Data: What Data Licensors Need to Know

Baker Donelson on

What's Changed? The U.S. Department of Justice (DOJ) published a Data Security Program (DSP), pursuant to a final rule (Final Rule), which became effective on April 8, 2025....more

Robinson+Cole Data Privacy + Security Insider

Insight Into DOGE’s Access to HHS’ Systems

Becker’s Hospital Review reports that the Department of Government Efficiency (DOGE) “has access to sensitive information in 19 HHS databases and systems,” according to a court filing obtained by Wired. HHS provided the...more

Baker Donelson

DOJ Issues Additional Guidance and Clarification on the Bulk Data Transfer Rule: What U.S. Businesses Need to Know

Baker Donelson on

On April 11, 2025, the Department of Justice's National Security Division (NSD) issued additional guidance to assist U.S. organizations in understanding and complying with the Data Security Program (DSP). As discussed in our...more

Goodwin

The Impact of Trump’s Executive Order on Eliminating Information Silos

Goodwin on

Hello, everyone. My name is Allan Medina. I am a partner in Goodwin’s Washington, DC, office, with a practice focus on government investigations. I’m here with Liza Craig, who is also a partner in the DC office. We are...more

DLA Piper

China: CAC Publishes Official Q&As for Cross-Border Data Transfer Regulation

DLA Piper on

The Cyberspace Administration of China (CAC) released an important Q&A on cross-border data transfer requirements and policies in early April, providing clarification on a number of issues of concern to companies in China....more

The Volkov Law Group

DOJ Issues Data Security Program Requirements (Part I of II)

The Volkov Law Group on

Many “good government” initiatives continue to be enacted or implemented on Capitol Hill or in the Executive Branch — notwithstanding changes in political control. While working on Capitol Hill, the bulk of the legislative...more

BakerHostetler

DOJ Implements Bulk Personal Data Transfer Restrictions

BakerHostetler on

The Data Security Program (DSP) recently implemented by the U.S. Department of Justice (DOJ) will have far-reaching implications for many businesses that transfer the personal data of U.S. citizens outside the United States....more

Womble Bond Dickinson

Navigating the New DOJ Data Security Program Compliance

Womble Bond Dickinson on

On January 8, 2025, the U.S. Department of Justice (“DOJ”) issued its final rule to implement Executive Order 14117 aimed at preventing access to Americans' bulk sensitive personal data and government-related data by...more

Dorsey & Whitney LLP

DOJ Limits Enforcement During First 90 Days of US-China Data Export Rules

Dorsey & Whitney LLP on

In a Press Release issued April 11, 2025, the U.S. Department of Justice (“DOJ”) indicated that it would prioritize “facilitating compliance” over civil enforcement actions for the first 90 days of its new US-China data...more

Dacheng

A Practical Review of China's Restrictions on Cross-Border Transfer of Personal Information: Developments and Framework

Dacheng on

The cross-border transfer of personal information (hereinafter referred to as “PI,” and such transfers as “PI export”) is a routine and often essential part of business operations for companies in China—particularly...more

Goodwin

DOJ’s Data Export Rule Is In Force April 8: What You Need to Do

Goodwin on

On April 8, 2025, a sweeping rule issued by the US Department of Justice (DOJ) will take effect. The rule imposes restrictions—and in some cases, outright prohibitions—on US companies in connection with certain types of data...more

989 Results
 / 
View per page
Page: of 40

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide