Barry Hurewitz at WilmerHale

COVID-19: Government Poised to Use Defense Production Act to Prioritize Pandemic Related Contracts

On March 18, 2020, President Trump issued an executive order paving the way for the government to use the Defense Production Act (DPA) to prioritize and compel production of materials required to respond to the COVID-19...more

3/24/2020 / Coronavirus/COVID-19 , Defense Production Act , Emergency Management Plans , Executive Orders , Federal Contractors , State of Emergency

Commerce Department Proposes Rule to Review Broad Range of ICTS Transactions

On November 26, the US Department of Commerce issued a long-awaited proposed rule (Proposed Rule) implementing new restrictions designed to protect the US information and communications technology and services (ICTS) supply...more

12/3/2019 / CFIUS , China , Comment Period , Executive Orders , Huawei , Information and Communication Technology (ICT) , National Security , Proposed Rules , Supply Chain , Telecommunications , U.S. Commerce Department

The U.S. Administration Targets Huawei in Actions to Curtail its Involvement in U.S. Telecommunications Networks and Access to...

On May 15, 2019, President Trump issued an Executive Order (EO) declaring a national emergency and paving the way for a ban on the use of Huawei equipment and services in U.S. telecommunication networks. On the same day, the...more

5/17/2019 / Bureau of Industry and Security (BIS) , China , Executive Orders , Exports , General Licenses , Imports , National Security , Savings Clause , Supply Chain , Telecommunications , Trade Relations , Trump Administration , U.S. Commerce Department , US Trade Policies

The US Tightens Export Controls Targeting China

On August 1, 2018, the US Department of Commerce Bureau of Industry and Security (BIS) published a Federal Register notice stating that the US government had identified 44 Chinese companies as acting contrary to US national...more

8/3/2018 / Bureau of Industry and Security (BIS) , China , Export Administration Regulations (EAR) , Export Controls , FIRRMA , Foreign Policy , National Security , NDAA

Compliance Deadline Reached for DoD Contractor Security Controls Requirements

Under the Department of Defense (DoD) final Defense Federal Acquisition Regulation Supplement (DFARS) rule on Network Penetration Reporting and Contracting for Cloud Services, DoD contractors maintaining, processing, or...more

1/5/2018 / Cybersecurity , Data Protection , Data Security , Department of Defense (DOD) , DFARS , Federal Acquisition Regulations (FAR) , Federal Contractors , NIST

Five Things to Know About University Licensing

Earlier this year, WilmerHale Partners Dave Gammell, Barry Hurewitz and Jeff Johnson discussed the basics of licensing and legal considerations for university licensing agreements such as unique aspects of university licenses...more

10/13/2017 / Intellectual Property Protection , Inventors , License Agreements , Patent Prosecution , Patents , Universities

HHS Expected to Release Significant HIPAA Privacy Guidance This Year; Compliance Audits Proceed; Guide on Compliance Program...

HIPAA privacy guidance, audits, and enforcement are continuing under the new Administration. On March 27, 2017, Iliana Peters, Senior Adviser for HIPAA Compliance and Enforcement at the US Department of Health and...more

3/30/2017 / Business Associates , Covered Entities , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Audits , OCR , Popular

Department of Defense Issues Final Version of Key Cybersecurity Rule

On October 21, 2016, the Department of Defense (DoD) issued its final rule on Network Penetration Reporting and Contracting for Cloud Services, amending an interim version issued on August 26, 2015, and revised on December...more

11/3/2016 / Cloud Computing , Controlled Defense Information (CDI) , Cyber Incident Reporting , Cybersecurity , Data Security , Department of Defense (DOD) , Federal Contractors , Final Rules , Reporting Requirements

Department of Commerce Now Accepting Privacy Shield Self-Certifications: A Primer for Compliance and Self-Certification

The Privacy Shield framework is a voluntary program that provides companies with a mechanism for complying with EU data protection requirements when transferring personal data from the EU to the US. The framework is open to...more

8/8/2016 / Corporate Counsel , Data Protection Authority , Department of Transportation (DOT) , EU-US Privacy Shield , Regulatory Oversight , Self-Certification , U.S. Commerce Department , Young Lawyers

Privacy Shield Moves Forward, Company Certifications to Begin August 1

The European Commission formally adopted the EU-US Privacy Shield on July 12, 2016, ending months of legal uncertainty with a new framework for governing transatlantic data transfers after the Privacy Safe Harbor framework...more

7/13/2016 / Data Protection Authority , Data Retention , EU , EU-US Privacy Shield , European Commission , Federal Trade Commission (FTC) , International Data Transfers , Personal Data , Privacy Policy , Self-Certification , Surveillance , Third-Party , U.S. Commerce Department

Final Government Contractor Basic Data Security Rule Issued

On May 16, 2016, the Federal Acquisition Regulations (“FAR”) Council published the final FAR rule on Basic Safeguarding of Contractor Information Systems. The rule is intended to prescribe “the most basic level” of...more

5/18/2016 / Controlled Unclassified Information (CUI) , Data Security , Department of Defense (DOD) , DFARS , Federal Acquisition Regulations (FAR) , Federal Contractors , Final Rules , NIST , Reporting Requirements , Subcontracts

European Commission and U.S. Department of Commerce Release Legal Foundation of EU-U.S. Privacy Shield

On Monday, February 29th, the European Commission and U.S. Department of Commerce released a collection of documents summarizing actions taken on both sides of the Atlantic to implement the new Privacy Shield framework. This...more

3/2/2016 / Article 29 Working Group , Data Protection Authority , EU , EU-US Privacy Shield , European Commission , European Court of Justice (ECJ) , Federal Trade Commission (FTC) , International Data Transfers , Personal Data , Self-Certification , U.S. Commerce Department , US-EU Safe Harbor Framework

Iran Nuclear Sanctions Relief Implemented: New Opportunities Await Non-US Companies, but Comprehensive US Transaction and Export...

On January 16, 2016, the United States, its negotiating partners and Iran announced the arrival of Implementation Day for the Joint Comprehensive Plan of Action (JCPOA), to which the parties agreed on July 14, 2015 with...more

1/20/2016 / EU , Implementation Day , International Atomic Energy Agency , Iran , Iran Sanctions , Joint Comprehensive Plan of Action (JCPOA) , Office of Foreign Assets Control (OFAC) , SDN List , UN Security Council

Department of Defense Revises Landmark Cybersecurity Rule, Extends Deadline for Some Compliance Requirements

On December 30, 2015, the Department of Defense (DoD) issued a second interim rule on Network Penetration Reporting and Contracting for Cloud Services, amending an earlier version issued on August 26, 2015. The new, amended...more

1/11/2016 / Cloud Computing , Cyber Incident Reporting , Cybersecurity , Defense Contracts , Department of Defense (DOD) , DFARS , Popular , Subcontractors

European Union Reaches Agreement on Data Protection Law Reform

On December 15, 2015, the European Union reached an agreement on the final text of the new General Data Protection Regulation. The Regulation will replace the 1995 Data Protection Directive, which is currently the basis for...more

12/17/2015 / Binding Corporate Rules , Corporate Counsel , Cyber Incident Reporting , Data Controller , EU , EU Data Protection Laws , General Data Protection Regulation (GDPR) , Personal Data , Right to Be Forgotten

Barry Hurewitz

WilmerHale

Popular Topics by This Author

Latest Publications