The Situation: On September 10, 2024, the UK government published the third National Security and Investment Act 2021 Annual Report ("2023/2024 Annual Report"), revealing longer processing times for foreign direct investment...more
The UK Competition and Markets Authority ("CMA") launched a market study on 20 February 2024 into baby formula, the latest development in a broader focus on the food and grocery sector....more
2/27/2024
/ Antitrust Investigations ,
Baby Products ,
Competition ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
Grocery Stores ,
Manufacturers ,
Price Inflation ,
Suppliers ,
UK ,
UK Competition and Markets Authority (CMA)
Beginning October 12, 2023, the UK-U.S. Data Bridge will allow UK companies to transfer personal data to the United States using the new EU-U.S. Data Privacy Framework....more
10/17/2023
/ Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
EU ,
EU Data Protection Laws ,
Information Technology ,
International Data Transfers ,
Personal Data ,
Personally Identifiable Information ,
UK
The UK Competition and Markets Authority ("CMA") announced a review of competition and consumer protection considerations in the development and use of artificial intelligence ("AI") models....more
Since the United Kingdom implemented the National Security and Investment Act in January 2022 ("NSI Regime"), there has been a significant increase in state intervention in, and review of, business transactions in the United...more
On 2 December 2022, the European Commission proposed a new Directive aiming to unify the approach taken by its Member States to enforce European Union ("EU") sanctions and criminalize their violations (the "proposal")....more
EU and UK data protection rules each restrict transfers of personal data to third countries not regarded as having an adequate level of protection, such as the United States, China, Russia and India....more
UNITED STATES -
Regulatory—Policy, Best Practices, and Standards -
President Biden Issues Cybersecurity Executive Order -
On May 12, 2021, President Biden issued an executive order that placed new standards on the...more
8/10/2021
/ Article III ,
Biden Administration ,
California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Executive Orders ,
Facial Recognition Technology ,
Federal Trade Commission (FTC) ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Technology ,
Mobile Apps ,
Personal Data ,
Popular ,
Ransomware ,
SCOTUS ,
Standing ,
TransUnion LLC v Ramirez
United States -
Regulatory—Policy, Best Practices, and Standard -
NIST Unveils Draft Guidance to Protect Critical Infrastructure -
On October 22, 2020, the National Institute of Standards and Technology ("NIST")...more
1/8/2021
/ CNIL ,
Consumer Privacy Rights ,
Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Protection Authority ,
Data Security ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
NIST ,
Personal Data ,
Popular ,
Risk Management
The Situation: The European Union and United Kingdom have both warned companies to prepare for a no-deal Brexit.
The Result: There is a real possibility that the Brexit Implementation Period will end on 31 December 2020...more
UNITED STATES -
Regulatory—Policy, Best Practices, and Standards -
NIST Releases Revision to Security Standard -
On September 23, the National Institute of Standards and Technology ("NIST") released Revision 5 to...more
The Situation: The UK Government has expanded the scope of the UK's foreign direct investment ("FDI") screening controls to include businesses responding to the COVID-19 pandemic. In addition, the UK has lowered the...more
UNITED STATES -
Regulatory—Policy, Best Practices, and Standards -
Cybersecurity Standards Issued for Government Contractors -
On January 31, the Office of the Under Secretary of Defense for Acquisition and...more
4/1/2020
/ 5G Network ,
Artificial Intelligence ,
Canada ,
China ,
CNIL ,
Computer Fraud and Abuse Act (CFAA) ,
Coronavirus/COVID-19 ,
Cybersecurity ,
Cybersecurity Maturity Model Certification (CMMC) ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Protection Authority ,
Data Security ,
Department of Defense (DOD) ,
EU ,
European Commission ,
Executive Orders ,
Federal Trade Commission (FTC) ,
FERC ,
GAO ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Commissioner's Office (ICO) ,
Japan ,
Latin America ,
National Security ,
NIST ,
OCIE ,
OCR ,
Online Safety for Children ,
People's Bank of China ,
Public Health Emergency ,
Securities and Exchange Commission (SEC) ,
Social Media ,
State Attorneys General ,
Telehealth ,
Trump Administration ,
Unmanned Aircraft Systems
UNITED STATES -
Regulatory—Policy, Best Practices, and Standards -
NIST Releases Internal Report Regarding IoT Cybersecurity -
In September, the National Institute of Standards and Technology ("NIST") released a draft...more
12/26/2018
/ Civil Monetary Penalty ,
CNIL ,
Consumer Reporting Agencies ,
COPPA ,
Critical Infrastructure Sectors ,
Cross-Border ,
Cyber Attacks ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Data Protection ,
Department of Defense (DOD) ,
Disclosure Requirements ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Hobbs Act ,
Internal Audit Functions ,
International Data Transfers ,
Internet of Things ,
NIST ,
Popular ,
Power Grid ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act
The Situation: Interest in drone technology continues to grow across Europe....more
10/16/2017
/ Air Traffic Control Systems ,
Airports ,
Civil Aviation Authority (the CAA) ,
Commercial Use ,
Data Protection ,
Drones ,
EU ,
France ,
Germany ,
GPS ,
Italy ,
New Legislation ,
New Regulations ,
No-Fly Zones ,
Operator Training ,
Pilots ,
Registration Requirement ,
Safety Precautions ,
UK ,
Unmanned Aircraft Systems
On June 14, 2017, British Prime Minister Theresa May and French President Emmanuel Macron held a joint press conference to declare the implementation of a "very concrete" antiterrorist plan. One of the plan's three main...more
June 2017 The EMA has opened for public consultation a draft guideline for the notification of serious breaches of the Clinical Trial Protocol (Regulation (EU) No 536/2014)...more
On May 22, 2017, the European Medicines Agency ("EMA") announced the full functionality of the new EudraVigilance system for the collection and monitoring of suspected adverse reactions with medicinal products that are...more
On May 15, 2017, Sens. Charles Grassley (R-IA), John McCain (R-AZ), and Amy Klobuchar (D-MN) sent a letter to the Office of Management and Budget ("OMB") Director Mick Mulvaney prompting him to work with the Department of...more
6/30/2017
/ Canada ,
Department of Health and Human Services (HHS) ,
Drug Pricing ,
Food and Drug Administration (FDA) ,
Imports ,
Legislative Agendas ,
Medicare Prescription Drug Improvement and Modernization Act (MMA) ,
OMB ,
Pharmacies ,
Prescription Drugs ,
Secretary of HHS ,
Trump Administration
On May 15, 2017, the Food and Drug Administration's ("FDA" or "Agency") Office of Regulatory Affairs ("ORA") began implementing a "Program Alignment Initiative." The Initiative requires the ORA staff, who are charged with...more
The EMA has published a Q&A guidance for marketing authorization ("MA") holders of centrally authorized medicinal products to prepare for the United Kingdom's withdrawal from the European Union. This follows an earlier notice...more
Following their adoption by the European Parliament in April 2017, the final versions of the Medical Devices Regulation ("MDR") and In Vitro Diagnostic Regulation ("IVDR") were published in the Official Journal of the...more
French Decree n° 2017-884 of May 9, 2017, was adopted to implement certain provisions of the Legal Ordinance of June 16, 2016, with respect to biomedical research. Such research should now be referred to as "research...more
On December 28, 2016, the New York Department of Financial Services ("DFS") released a revised version of a proposed regulation that would require banks, insurance companies, and other financial services institutions...more
3/15/2017
/ Actual Injuries ,
Advertising ,
Argentina ,
Australia ,
Banks ,
Belgium ,
Big Data ,
Canada ,
China ,
Class Action ,
Colombia ,
Connected Items ,
Consumer Protection Act ,
Controlled Unclassified Information (CUI) ,
Credit Cards ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Data Protection ,
Data Protection Authority ,
Data Security ,
Databases ,
Department of Homeland Security (DHS) ,
Department of Transportation (DOT) ,
Email Policies ,
ENISA ,
EU ,
EU Data Protection Laws ,
Fair Credit Reporting Act (FCRA) ,
Federal Breach Notification Standard ,
Federal Trade Commission (FTC) ,
FinTech ,
France ,
Fraud ,
General Data Protection Regulation (GDPR) ,
Germany ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Hong Kong ,
Information Sharing ,
International Data Transfers ,
Investigatory Powers Act 2016 ,
Italy ,
Japan ,
Mexico ,
National Security ,
Netherlands ,
NIST ,
NYDFS ,
OCIE ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
SEC Examination Priorities ,
Securities and Exchange Commission (SEC) ,
Settlement Agreements ,
Singapore ,
Spain ,
Spokeo ,
Standing ,
State Data Breach Notification Statutes ,
Swiss Privacy Shield ,
Switzerland ,
TCPA ,
Telemarketing ,
UK ,
V2V ,
Web Tracking