News & Analysis as of September 11, 2025

Data Privacy

+ Follow

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

Avoid the October Surprise: What You Need to Know About DOJ’s New Data Security Program

Warner Norcross + Judd on 8/13/2025

The Department of Justice’s (“DOJ”) Data Security Program (“the Program”, 28 C.F.R. Part 202) went into effect on April 8 with a 90-day period of limited enforcement. With DOJ now expecting full compliance, with additional...more

FTC Consumer Protection and Privacy Enforcement Series: PADFA Enforcement—What Companies Need to Know

Wiley Rein LLP on 8/13/2025

As part of our series to provide practical insights into emerging Federal Trade Commission (FTC) priority areas for consumer protection and data privacy enforcement, we are taking a deep dive into the Protecting Americans’...more

Under the Radar: DOJ's Data Security Rules and Their Impact on Payments Companies — Payments Pros – The Payments Law Podcast

Troutman Pepper Locke on 8/5/2025

In this episode of Payments Pros, Carlin McCrory is joined by Pete Jeydel, a partner in the firm's White Collar Litigation + Investigations Practice Group, to discuss the new Department of Justice (DOJ) Data Security Program...more

What the Sensitive Data Rule means for “bulk data” and National Security compliance

Constangy, Brooks, Smith & Prophete, LLP on 8/1/2025

As of July 9, the U.S. Department of Justice has begun full enforcement of a sweeping new data regulation known as the Sensitive Data Rule, or “SDR.” Implemented under President Biden’s Executive Order 14117, the SDR marks a...more

No Password Required: Former Lead Attorney at U.S. Cyber Command, Cyber Law Strategist, and Appreciator of ‘Mad Men’ Hats

Carlton Fields on 7/29/2025

On this episode, hosts Jack Clabby of Carlton Fields and Kayley Melton, executive director of operations at the Cognitive Security Institute, sit down with Kurt Sanger — a seasoned cyber law leader and former deputy general...more

FTC Looks to Leverage PADFAA Enforcement to Help Limit Exposure of Consumer Data

Morrison & Foerster LLP on 7/23/2025

In recent comments, Commissioner Holyoak signaled that the Federal Trade Commission will prioritize enforcement of the Protecting Americans’ Data from Foreign Adversaries Act (PADFAA), a law that empowers the FTC to police...more

DOJ Begins Enforcement of New Data Security Program

Proskauer - Minding Your Business on 7/21/2025

On July 9, 2025, the Department of Justice (“DOJ”) commenced enforcement of its new Data Security Program (“DSP”) to prevent foreign adversaries from accessing sensitive U.S. data. Created earlier this year, the program seeks...more

The EU’s New Cybersecurity Law for the Space Sector

Skadden, Arps, Slate, Meagher & Flom LLP on 7/9/2025

On 25 June 2025, the European Commission announced its proposal for a “Space Act” that would introduce a new regulatory framework for EU space activities. The proposed framework includes cyber-resilience obligations for EU...more

Are You Ready for the Department of Justice’s Bulk Data Transfer Rule?

Alston & Bird on 6/24/2025

On July 8, 2025, the Department of Justice (“DOJ”) is set to lift its self-imposed pause on enforcing certain violations of its Rule Preventing Access to US Sensitive Personal Data and Government-Related Data by Countries of...more

Clock Ticking: DOJ’s New Data Security Rule Requires Compliance by July 8

Robinson+Cole Data Privacy + Security Insider on 5/23/2025

U.S. companies are running out of time to comply with a sweeping new Department of Justice (DOJ) rule that limits sharing sensitive personal data with certain foreign countries—including China, Russia, and Iran. With a hard...more

Navigating new compliance requirements for DOJ’s Bulk Data Rule

Eversheds Sutherland (US) LLP on 5/7/2025

While the US federal government is largely scaling back its rulemaking and compliance efforts, one critical exception is where personal data and technology intersect with national security. Exemplifying this trend, on April...more

Navigating the DOJ’s New Data Transfer Rule: Implications and Compliance Requirements

ArentFox Schiff on 4/30/2025

On January 8, the US Department of Justice (DOJ) issued a final rule under Executive Order 14117, which established the Rule Preventing Access to US Sensitive Personal Data and Government-Related Data by Countries of Concern...more

Episode 366 -- DOJ Issues Data Security Program Requirements

The Volkov Law Group on 4/27/2025

Could your routine data transfers now violate federal law? The DOJ’s new Data Security Program (DSP) targets the flow of U.S. sensitive personal and government data to foreign adversaries — and the clock is ticking. In this...more

DOJ Releases Its Data Security Program Compliance Guide

Pillsbury Winthrop Shaw Pittman LLP on 4/25/2025

The guide outlines the requirements of a newly implemented Data Security Program designed to prevent China, Russia and other foreign adversaries designated by the U.S. Department of Justice from accessing American’s sensitive...more

The Bulk Data Access Rule: What Advertisers Need to Know

Kelley Drye & Warren LLP on 4/23/2025

On April 11, the Department of Justice issued an extensive set of FAQs on its Bulk Data Access Rule and advised that it “will not prioritize civil enforcement actions against any person for violations” of the Rule through...more

DOJ Issues Data Security Program Requirements (Part I of II)

The Volkov Law Group on 4/18/2025

Many “good government” initiatives continue to be enacted or implemented on Capitol Hill or in the Executive Branch — notwithstanding changes in political control. While working on Capitol Hill, the bulk of the legislative...more

DOJ Final Rule Targets Cross-Border Data Transfers: Key Implications for U.S. and Foreign-Owned Companies Operating in the U.S.

Baker Donelson on 4/9/2025

In the final days of the Biden administration the U.S. Department of Justice (DOJ) issued a sweeping set of regulations which are in effect as of yesterday, April 8, 2025. The regulations focus on cross-border data transfers...more

AI Watch: Global regulatory tracker - China

White & Case LLP on 4/1/2025

Artificial intelligence (AI) has made enormous strides in recent years and has increasingly moved into the public consciousness. Explore Trendscape Our take on the interconnected global trends that are shaping the business...more

AGs Urge Congress to Ban DeepSeek AI from Government Devices

Cozen O'Connor on 3/14/2025

A coalition of 21 Republican AGs, led by Montana AG Austin Knudsen, is urging Congress to pass the No DeepSeek on Government Devices Act, which would prohibit downloading and using DeepSeek’s AI software on government...more

AI Reporter - March 2025

Benesch on 3/13/2025

Google removed its organizational ban on the use of AI for weapons and surveillance systems. The change eliminates key portions of the tech giant’s AI Principles that banned such uses. These principles, established in 2018,...more

New DOJ Restrictions on Cross-Border Data Transactions Take Effect April 8: Ten Questions as Your Business Prepares to Comply

Wiley Rein LLP on 3/6/2025

The U.S. Department of Justice’s (DOJ) sweeping new rule on cross-border data transactions is set to take effect in substantial part next month, with broad implications for companies that transfer U.S. personal data or...more

Security Requirements and Compliance Obligations in DOJ's Final Rule on Data Transactions

Akin Gump Strauss Hauer & Feld LLP on 2/24/2025

The Department of Justice’s (DOJ) final rule implements President Biden’s Executive Order 14117 of February 28, 2024, on “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data...more

Corporate Transparency Act Reporting Obligations Reinstated; Deadline Extended 30 Days

Nelson Mullins Riley & Scarborough LLP on 2/20/2025

On February 19, 2025, FinCEN released a statement that BOI reporting obligations under the CTA are back in effect, after a recent U.S. District Court decision in the ongoing case of Smith et al. v. U.S. Department of the...more

DOJ Regulations Will Restrict Data Transactions to Address National Security Concerns

Akin Gump Strauss Hauer & Feld LLP on 2/20/2025

Data, Deals, and Diplomacy, Part III: DOJ Issues National Security Final Rule with New Data Compliance Obligations for...

Sheppard Mullin Richter & Hampton LLP on 1/30/2025

On January 8, 2025, the Department of Justice (“DOJ”) published its final rule addressing Executive Order (E.O.) 14117, “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data...more

42 Results

View per page

Page: of 2

Compliance › National Security › Data Privacy

"My best business intelligence, in one easy email…"