News & Analysis as of August 2, 2025

Sensitive Personal Information

+ Follow

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

DOJ Bulk Data Rule: Key Takeaways for Healthcare and Life Sciences

Baker Donelson on 5/22/2025

The Data Security Program (DSP), implemented by the Department of Justice's National Security Division (DOJ/NSD) under Executive Order 14117 (Preventing Access to Americans' Bulk Sensitive Personal Data and United States...more

Navigating new compliance requirements for DOJ’s Bulk Data Rule

Eversheds Sutherland (US) LLP on 5/7/2025

While the US federal government is largely scaling back its rulemaking and compliance efforts, one critical exception is where personal data and technology intersect with national security. Exemplifying this trend, on April...more

Navigating the DOJ’s New Data Transfer Rule: Implications and Compliance Requirements

ArentFox Schiff on 4/30/2025

On January 8, the US Department of Justice (DOJ) issued a final rule under Executive Order 14117, which established the Rule Preventing Access to US Sensitive Personal Data and Government-Related Data by Countries of Concern...more

DOJ Releases Its Data Security Program Compliance Guide

Pillsbury Winthrop Shaw Pittman LLP on 4/25/2025

The guide outlines the requirements of a newly implemented Data Security Program designed to prevent China, Russia and other foreign adversaries designated by the U.S. Department of Justice from accessing American’s sensitive...more

The Bulk Data Access Rule: What Advertisers Need to Know

Kelley Drye & Warren LLP on 4/23/2025

On April 11, the Department of Justice issued an extensive set of FAQs on its Bulk Data Access Rule and advised that it “will not prioritize civil enforcement actions against any person for violations” of the Rule through...more

DOJ Issues Data Security Program Requirements (Part I of II)

The Volkov Law Group on 4/18/2025

Many “good government” initiatives continue to be enacted or implemented on Capitol Hill or in the Executive Branch — notwithstanding changes in political control. While working on Capitol Hill, the bulk of the legislative...more

DOJ Releases FAQs and Compliance Guidance for Final Rule Restricting Flow of Bulk Sensitive Personal Data to China and other...

Ropes & Gray LLP on 4/15/2025

On April 11, 2025, the Department of Justice (“DOJ”) released additional detail regarding the Final Rule implementing former President Biden’s Executive Order 14117, “Preventing Access to Americans’ Bulk Sensitive Personal...more

Security Requirements and Compliance Obligations in DOJ's Final Rule on Data Transactions

Akin Gump Strauss Hauer & Feld LLP on 2/24/2025

The Department of Justice’s (DOJ) final rule implements President Biden’s Executive Order 14117 of February 28, 2024, on “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data...more

DOJ Regulations Will Restrict Data Transactions to Address National Security Concerns

Akin Gump Strauss Hauer & Feld LLP on 2/20/2025

Justice Issues Final Rule Restricting Transfer of Personal U.S. Data to Countries of Concern, Effective in April 2025

Dorsey & Whitney LLP on 1/15/2025

The U.S. Department of Justice (“DOJ”) published its final rule (“Final Rule”) on January 8, 2025, that will prohibit or restrict transfer of certain data of U.S. persons to countries of concern, including to China. The Final...more

DOJ Issues Final Rule Restricting Flow of Bulk Sensitive Personal Data to China and Other Countries of Concern

Ropes & Gray LLP on 1/9/2025

On January 8, 2025, the Department of Justice (“DOJ”) published its Final Rule to implement President Biden’s Executive Order 14117, “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States...more

DOJ Issues Final Rule Restricting Foreign Access to U.S. Data

King & Spalding on 1/8/2025

The rule imposes substantial new diligence, reporting, cybersecurity, and auditing obligations on companies. On December 27, 2024, the U.S. Department of Justice (“DOJ”) issued a final rule implementing Executive Order...more

Fortifying US Data: Proposed Rule Would Establish a New Regime To Restrict or Prohibit Certain Data Transactions With Countries of...

Skadden, Arps, Slate, Meagher & Flom LLP on 12/18/2024

On October 29, 2024, the U.S. Department of Justice (DOJ) published a proposed rule (Proposed Rule) that would restrict or prohibit certain transactions with China, Russia and other countries of concern involving U.S....more

Key Insights: DOJ's Proposed Rule to Protect Bulk Sensitive Personal Data—What Companies Need to Know

Venable LLP on 11/5/2024

Earlier this year, the Biden administration issued Executive Order (EO) 14117, which instructed the Department of Justice (DOJ) to create a framework that would prohibit certain data transactions. ...more

DOJ Issues NPRM Regarding Sensitive Data Transfers

WilmerHale on 10/29/2024

With the publication of a recent Notice of Proposed Rulemaking (NPRM), the Department of Justice National Security Division will soon become an important new regulator of transactions involving the transfer of sensitive U.S....more

DOJ Implementation and Enforcement Plans for the Sensitive Data Executive Order—What It Means for Organizations

Ankura on 5/6/2024

On February 28, 2024, President Biden signed Executive Order 14117 (the “EO”), on “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern.” The United...more

The Department of Justice Is Building a Data Security Protection and Enforcement Program

Snell & Wilmer on 4/16/2024

In response to President Biden’s Executive Order authorizing increased data privacy measures, Assistant Attorney General (AAG) Matthew G. Olsen announced that the National Security Division of the Department of Justice (DOJ)...more

Executive Order to Prevent Access to Americans' Bulk Sensitive Personal Data and Government-Related Data by Countries of Concern

Venable LLP on 3/5/2024

On February 28, 2024, the Biden Administration issued Executive Order (EO) 13873, focused on restricting certain transactions involving Americans' personal data, as well as sensitive government data, to specific countries....more

CFIUS Compliance: Your Organization’s Growth and Investment Strategy May Be a Matter of National Security

HaystackID on 11/23/2022

On Thanksgiving of 2014, I received an urgent call asking me to be in London in 24 hours. My assignment was to run the advanced forensics recovery team serving several foreign offices of Sony Pictures in the wake of a...more

19 Results

View per page

Page: of 1

Compliance › Executive Orders › Sensitive Personal Information

"My best business intelligence, in one easy email…"