The Digital Operational Resilience Act (DORA) regulation is part of the European Union’s (EU) strategy to enhance the overall stability of the EU financial system by ensuring that financial entities are resilient to digital...more
7/19/2024
/ Banking Sector ,
Compliance ,
Cyber Threats ,
Cybersecurity ,
Data Security ,
Digital Platforms ,
EU ,
European Banking Authority (EBA) ,
European Securities and Markets Authority (ESMA) ,
European Stability Mechanism ,
European Supervisory Authorities (ESAs) ,
Financial Institutions ,
Financial Services Industry ,
Information Technology ,
SaaS ,
Technology
On June 28, the Supreme Court issued a landmark decision on Chevron deference through its rulings on Loper Bright Enterprises v. Raimondo and Relentless, Inc. v. Department of Commerce. These decisions reversed the...more
7/17/2024
/ Administrative Procedure Act ,
Artificial Intelligence ,
Chevron Deference ,
Chevron v NRDC ,
Compliance ,
Government Agencies ,
Loper Bright Enterprises v Raimondo ,
Public Policy ,
Regulatory Authority ,
Relentless Inc v US Department of Commerce ,
Rulemaking Process ,
SCOTUS ,
Statutory Interpretation
On February 28, 2024, the Biden Administration issued Executive Order (EO) 13873, focused on restricting certain transactions involving Americans' personal data, as well as sensitive government data, to specific countries....more
3/5/2024
/ Advanced Notice of Proposed Rulemaking (ANPRM) ,
Biden Administration ,
Compliance ,
Consumer Financial Protection Bureau (CFPB) ,
Covered Person ,
Covered Transactions ,
Data Transfers ,
Department of Homeland Security (DHS) ,
Department of Justice (DOJ) ,
Due Diligence ,
Enforcement ,
Executive Orders ,
Exemptions ,
Government Agencies ,
International Data Transfers ,
Know Your Customers ,
Penalties ,
Recordkeeping Requirements ,
Rulemaking Process ,
Security and Privacy Controls ,
Sensitive Personal Information
The European Union (EU) is poised to enact the Cyber Resilience Act (CRA), a comprehensive cybersecurity regulation with major implications for software and connected device manufacturers in the United States and globally....more
1/23/2024
/ Compliance ,
Cyber Incident Reporting ,
Cybersecurity ,
Effective Date ,
Electronic Devices ,
EU ,
Manufacturers ,
Popular ,
Proposed Regulation ,
Regulatory Oversight ,
Smart Devices ,
Software ,
Software Developers
On July 26, 2023, the Securities Exchange Commission (SEC) adopted a final rule intended to augment and standardize disclosures regarding cybersecurity risk management, governance, and incident reporting. The new rule imposes...more
9/5/2023
/ Compliance ,
Compliance Dates ,
Corporate Governance ,
Cyber Incident Reporting ,
Cybersecurity ,
Disclosure Requirements ,
EDGAR ,
Final Rules ,
Foreign Private Issuers ,
Form 10-K ,
Form 20-F ,
Form 8-K ,
Publicly-Traded Companies ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Smaller Reporting Companies