Consumer Finance Monitor Podcast Episode: Regulators Escalate Focus on the Risks of Bank Relationships with Fintechs and Other Third Parties
DE Under 3: OFCCP Resurrects Proposal for Monthly CC-257 Employment Utilization Reports for Construction Contractors
DE Under 3: Updated EEOC COVID-19 Technical Assistance Guidance, Case Decision & Wage & Hour Division Proposed Rule
Digital Assets Regulation Framework: Commerce Solicits Public Comment
DE Under 3: EEOC & DOJ Technical Guidance for Employer’s AI Use; Upcoming EEOC Hearing; Event for Mental Health in the Workplace
Comment Deadline Approaching: Proposed Amendments Restricting Use of Prop 65 Short-Form Warnings
2BInformed: The Future of Fluoride in Drinking Water, the New TSCA Fees Rule, and the Drinking Water Contaminant Candidate List 5
Recent Actions on Ag Biotech by EPA’s Emerging Technologies Branch
III-44- A Little Help From The DOL
[WEBINAR] Laying the Foundation for Maximizing Benefits Around Emerging Technologies
[WEBINAR] Fairly (or Unfairly?) Traceable: Are Discharges Through Groundwater Subject to the Clean Water Act?
Episode 014: Business Divorce Stories: Business Appraiser Tony Cotrupe and Attorney Jeff Eilender
The US Department of Defense (DoD) published a final rule codifying the Cybersecurity Maturity Model Certification (CMMC) Program. The final CMMC rule will apply to all DoD contractors and subcontractors that will process,...more
The U.S. Department of Commerce and U.S. Department of State have been continuously easing restrictions on export-controlled trade between the United States, United Kingdom and Australia to foster technological innovation...more
The United States Department of Defense (DoD) took another big step on the path to instituting its highly anticipated Cybersecurity Maturity Model Certification 2.0 program (CMMC 2.0). Once finalized, CMMC 2.0 will establish...more
The proposed rule to implement the Cybersecurity Maturity Model Certification (“CMMC”) program in the Defense Federal Acquisition Regulation Supplement (“DFARS”) was published in the Federal Register on August 15, 2024 and...more
The Nevada Gaming Control Board (“Board”) will hold a workshop on May 23, 2024, to solicit comments on proposed amendments to Nevada Gaming Commission (“NGC”) Regulations regarding, without limitation, Regulations 5, 7A, 8,...more
By now, companies that collect, process, and store the personal data of consumers are used to a fast pace of state privacy and cybersecurity legal activity. This year, companies should also expect increased activity from...more
FCC Solicits Comment on a Proposed New Framework for Licensing Space Stations Engaged in In-Space Servicing, Assembly, and Manufacturing: In this Notice of Proposed Rulemaking (NPRM) the Federal Communications Commission (FCC...more
On April 1, 2024, the FAR Council published a new Final Rule that establishes FAR Part 40 – but without any new provisions of substance. This Final Rule becomes effective on May 1, 2024. Subsequently, the FAR Council...more
In this series of articles, we explore the different certification requirements of CMMC Levels 1, 2 and 3; the impact on contractors and external service providers; and proposed next steps... On December 26, 2023, the US...more
On April 4, 2024, the Cybersecurity and Infrastructure Security Agency (“CISA”) published for public comment a long-awaited proposed rule to implement the Cyber Incident Reporting for Critical Infrastructure Act of 2022...more
The first quarter of 2024 saw numerous developments on the export control front. This report summarizes the key developments and provides links to the relevant Federal Register notices and/or agency announcements....more
On March 15, 2022, the Cyber Incident Reporting for Critical Infrastructure Act of 2022 was signed into law. Generally, CIRCIA requires “covered entities,” defined as entities in certain critical infrastructure sectors, to...more
On January 29, 2024, BIS proposed a rule that would impose new requirements for U.S. providers of Infrastructure as a Service (“IaaS”) products and their foreign resellers. The proposed rule would require U.S. IaaS providers...more
The federal Cybersecurity and Infrastructure Security Agency (CISA) released a draft of its proposed rule detailing how covered entities operating in critical infrastructure sectors report cyberattacks and ransomware payments...more
The U.S. Department of Commerce is soliciting comment on possible restrictions on “connected vehicle” components obtained from “foreign adversaries.” On March 1, 2024, the department’s Bureau of Industry and Security (BIS)...more
On January 29, 2024, the US Department of Commerce’s Bureau of Industry and Security (the “Department”) issued a notice of proposed rulemaking seeking comment on a proposed regulation in response to the Executive Order (E.O.)...more
The US Department of Defense (DoD) has issued a proposed rule to implement its long-awaited Cybersecurity Maturity Model Certification program (CMMC 2.0). This proposed rule — released on December 26, 2023, and published in...more
On December 26, 2023, the U.S. Department of Defense (DoD) published the much anticipated proposed rule for the revamped Cybersecurity Maturity Model Certification (CMMC) 2.0 Program....more
Well, the wait is over. Just as 2023 came to a close, on December 26, 2023, the Department of Defense (“DoD”) published the much-anticipated Proposed Rule for the DoD’s Cybersecurity Maturity Model Certification (“CMMC”)...more
On December 26, the Department of Defense (DoD) published its long-awaited Cybersecurity Maturity Model Certification (CMMC) Program proposed rule, which places comprehensive cybersecurity and information security...more
The Department of Defense (DoD) delivered its proposed Cybersecurity Maturity Model Certification Program rule (CMMC) the day after Christmas this year, including several related guidance documents (listed here). The proposed...more
On December 20, 2023, the Federal Trade Commission ("FTC") announced a Notice of Proposed Rulemaking ("NPRM") to revise the Children's Online Privacy Protection Act ("COPPA") Rule to reduce the amount of information...more
The California Privacy Protection Agency (CPPA) recently met to discuss automated decision-making technology, privacy risk assessments and cybersecurity audits under the California Consumer Privacy Act (CCPA) as amended by...more
On October 3, 2023, the Federal Acquisition Regulatory (“FAR”) Council released two draft rules which would impose new cybersecurity requirements for federal contractors. Comment periods for both proposed rules were slated to...more
The Cybersecurity and Infrastructure Security Agency (“CISA”) recently revised its Secure Software Development Attestation Common Form (after receiving over 110 comments on the initial draft), and is seeking additional...more