A U.S. District Court in the Northern District of Texas has vacated most of the HIPAA Privacy Rule to Support Reproductive Health Care Privacy (the “Rule”) in the case of Purl v. DHHS. The ruling, which has immediate...more
7/31/2025
/ Administrative Procedure Act ,
Attestation Requirements ,
Covered Entities ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Disclosure Requirements ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Privacy Rule ,
PHI ,
Reproductive Healthcare Issues ,
Statutory Authority ,
Vacatur
US privacy lawyers have long used the “patchwork” metaphor to describe the US privacy legal landscape. Early signs suggest that metaphor may also soon apply to US AI regulation: Colorado adopted An Act Concerning Consumer...more
Last month, the Director of the Division of Corporation Finance (“Director”) of the Securities and Exchange Commission (“SEC”) issued new guidance regarding disclosures of material cybersecurity incidents via Form 8-K under...more
6/18/2024
/ Corporate Governance ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
Data Breach ,
Disclosure Requirements ,
Form 8-K ,
Information Technology ,
Publicly-Traded Companies ,
Reporting Requirements ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Securities Regulation