The fatal flaws in the 2023 CRA rule
Daily Compliance News: May 16, 2025, The Ethics Nightmare Edition
New York State Restaurant Reservation Anti-Piracy Act Cracks Down on a "Leech Industry"
Consumer Finance Monitor Podcast Episode: The Impact of the Election on the FTC
Compliance Tip of the Day: Standing at the Turning Point
Federal Court Strikes Down FDA Rule on LDTs - Thought Leaders in Health Law®
AI Legislation: The Statewide Spotlight — The Consumer Finance Podcast
100 Days In: What Employers Need to Know - Employment Law This Week® - #WorkforceWednesday®
Breaking Down the Shifting Vaccine Policy Landscape – Diagnosing Health Care Video Podcast
Fair Lending Shake-Ups: CFPB Vacates Townstone Settlement, FHFA Ends GSEs' Special Purpose Credit Programs — The Consumer Finance Podcast
Brooklyn District Attorney Eric Gonzalez – Innovative Approach to Safety
Exploring the Administration's Regulatory Impact on Private Equity — PE Pathways Podcast
Aligning Business Goals with Legal Strategies Amid Regulatory Change – Speaking of Litigation Video Podcast
Shifting Gears: Adapting to Regulatory Changes in Auto Finance — Moving the Metal: The Auto Finance Podcast
Podcast - Hot Topics in FDA Regulation: GLP-1s, LDTs, AI and More
Consumer Finance Monitor Podcast Episode: Everything You Want to Know About the CFPB as Things Stand Today, and Lots More - Part 2
Compliance into the Weeds: The Uncertain Future of Compliance Monitors under the Trump Administration
Cannabis Law Now Podcast - From Law Firm to Board Room: The Journey of a Cannabis Entrepreneur
Daily Compliance News: April 15, 2025, The Redefining Corruption Edition
Predictions regarding the 2023 CRA Rule and Section 1071 and how to prepare for expected developments
Lawmakers expressed bipartisan support for significantly amending or eliminating some cybersecurity incident notification requirements during a recent hearing of the U.S. House Committee on Homeland Security's Subcommittee on...more
In terms of healthcare data breaches, 2024 was the worst year ever, with the records of at least 53% of the U.S. population involved and two of the biggest healthcare data breaches of 2024 ranking in the top 10 of all time. ...more
New York has released proposed cybersecurity regulations for hospitals. The regulations, which were published in The State Register on Dec. 6 and will undergo a 60-day public comment period ending on Feb. 5, are designed to...more
A flurry of legislative activity over the past year has brought meaningful changes to a variety of privacy and security provisions in state and federal law. At the state level, as in 2022, we have seen a handful of changes to...more
The Securities and Exchange Commission (“SEC”) adopted the final rules (the “Final Rules”) on July 26, 2023 that will require disclosure of material cybersecurity incidents, cybersecurity risk management, strategy, and...more
The Securities and Exchange Commission (“SEC”) voted on July 26, 2023 to adopt new cybersecurity rules, which are aimed at helping investors better understand the cybersecurity risks associated with public companies by...more
On July 26, 2023, the Securities and Exchange Commission (the “SEC”) adopted new rules requiring public companies to disclose within four business days material cybersecurity incidents they experience and to disclose annually...more
The SEC has recently voted on new rules that will require companies to disclose material cybersecurity incidents within four days and to make disclosures about their broad cybersecurity risks in their annual report. Tom Fox...more
On July 26, a divided SEC adopted a final rule outlining disclosure requirements for publicly traded companies in the event of a material cybersecurity incident. ...more
In a 3-2 vote, the Securities and Exchange Commission (SEC) adopted new cybersecurity rules yesterday (July 26, 2023) applicable to public companies. The rules, which will become effective thirty days after publication in...more
Come December 2023, public companies will have a very narrow window to report cybersecurity incidents that materially affect their companies. Companies will also have to report annually how they assess and manage...more
Iowa becomes the fourth U.S. state to provide an affirmative defense for companies that adopt a cybersecurity framework - Iowa is the fourth state—following Ohio, Connecticut, and Utah—to provide a statutory incentive for...more
On March 9, 2022, the US Securities and Exchange Commission (SEC) voted 3-1 to propose new rules and amendments under the Securities Exchange Act of 1934 that would constitute the SEC’s first attempt to adopt specific rules...more
The SEC has issued proposed rules on disclosure of cybersecurity incidents. Specifically, the SEC is proposing to: Amend Form 8-K to add Item 1.05 to require registrants to disclose information about a cybersecurity...more
Ransomware attacks are frequent and escalating as we speak. Double extortion scams are hitting companies at a dizzying pace, and catching companies, large and small, off-guard. U.S. President Joseph Biden warned Russian...more