Episode 384 -- Third-Party Risks and Sanctions
New FLSA Notice Standard, DOL’s PAID Program, Axed Wage and Hour Penalties - #WorkforceWednesday® - Employment Law This Week®
Compliance into the Weeds: A Deep Dive into Cadence Design Systems’ Export Control Violations
False Claims Act Insights - The Mathematics of Nuclear FCA Verdicts
Episode 379 -- Update on False Claims Act and Customs Evasion Liability
Compliance into the Weeds: Sanctions Compliance Failures: Lessons from Harman International and Interactive Brokers
Daily Compliance News: July 23, 2025 the Pardon in the Wind? Edition
Episode 378 -- Update on Export Controls and Sanctions Enforcement
False Claims Act Insights - Bitter Pills: DOJ Targets Pharmacies for FCA Enforcement
From Permits to Penalties: A Deep Dive Into Coastal Development Law
10 For 10: Top Compliance Stories For the Week Ending June 21, 2025
Daily Compliance News: June 16, 2025, The Golden Share Edition
PODCAST: Williams Mullen's Benefits Companion - Forfeitures Under Fire
GILTI Conscience Podcast | Navigating Brazil's New Transfer Pricing Landscape: A Shift to OECD Standards
Episode 371 -- DOJ's New Corporate Enforcement Program
REFRESH Nonprofit Basics: Federal Tax Filing Deadlines and Penalties
Episode 369 -- Stepping Into the Enforcement Spotlight -- Customs and Border Patrol and Import Enforcement
Insider Transaction Traps for the Unwary
Nonprofit Basics: Federal Tax Filing Deadlines and Penalties
JONES DAY PRESENTS®: Harmonizing Global Protections: The EU Trade Secret Directive
On June 20, 2025, the Texas governor signed two bills amending the Texas Data Broker Act (also the “Act”) into law (SB 2121 and SB 1343). Both bills went into effect on September 1, 2025. ...more
Like most U.S. states, Maine has a statute that requires investigations and sometimes notice to third parties after data breaches. The statute—the Notice of Risk to Personal Data Act—took effect in 2005. This article...more
On July 28, the CPPA released a stipulated final order to impose a $55,400 administrative fine on a data broker for failing to register with the agency by the January 31, 2024, deadline as required by California’s Delete Act....more
Ontario’s Information and Privacy Commissioner (IPC) has released a new Privacy Management Handbook (Handbook) aimed at assisting small healthcare organizations to meet their privacy obligations under Ontario’s health...more
Cross-border marketing of products or services by an overseas company (a body corporate incorporated outside of Bermuda) to customers in Bermuda could be construed as carrying on business in Bermuda and, if so, would be...more
On June 11, 2025, two new pieces of legislation in Alberta came into effect: (1) the Protection of Privacy Act; and (2) the Access to Information Act. Both pieces of legislation are expected to significantly impact...more
The Italian Data Protection Authority (the Garante) has issued its first GDPR fine for, among other breaches, unlawful retention of metadata from employees’ emails and web browsing activities. The decision applies, for the...more
On March 12, 2025, the Board of the California Privacy Protection Agency (“CPPA”) issued a decision requiring American Honda Motor Co. (“American Honda”) to change its business practices and pay a $632,500 fine for making it...more
On 2 February 2025, the first provisions of the EU’s groundbreaking AI Act started to apply. These provisions include a range of AI-related practices that are now prohibited and a duty on companies to introduce AI literacy...more
2024 was a busy year for state consumer data privacy laws in the United States. Seven states enacted comprehensive data privacy statutes throughout the year, and laws enacted in 2023 went into effect in Montana, Florida,...more
To round out this year’s series on new state consumer privacy laws, we are covering the statute passed by Kentucky earlier this year. Please also keep your eye out for our 2024 round-up article that will be published soon, as...more
We are moving westward this week from Iowa to Nebraska in our series of articles providing in-depth summaries of state consumer privacy laws taking effect across the nation. Nebraska Governor Jim Pillen (R) signed the...more
The enactment of Brazil's proposed AI Regulation remains uncertain with compliance requirements pending review. Laws/Regulations directly regulating AI (the “AI Regulations”) Brazil intends to regulate AI through Bill...more
In Argentina, data protection is governed by comprehensive legislation aimed at safeguarding individuals' personal data. Below you will find an outline of the key aspects including governing legislation, exploring their scope...more
Oregon recently joined Vermont and California as the third state requiring data broker registration before collecting, selling, or licensing “brokered personal data.” Several types of entities are exempt from the law. These...more
Report on Patient Privacy Volume 23, no 7 (July 2023) In two public talks this spring, Melanie Fontes Rainer, director of the HHS Office for Civil Rights (OCR), said completing the 2021 proposed regulation extensively...more
In June, Texas became the tenth state with a comprehensive privacy law. The Texas Data Privacy and Security Act (“TDPSA”) contains familiar provisions from other state privacy laws regulating the collection, use, processing,...more
The Volunteer State became the eighth state to enact a comprehensive data privacy law after Gov. Bill Lee (R) signed the Tennessee Information Protection Act (“TIPA”) into law yesterday, May 11. Tennessee joins a growing...more
In February 2023, the Brazilian National Data Protection Authority (ANPD) published the rules for the application of sanctions and the methodology for calculating fines for violation of their General Data Protection Law...more
The start of 2023 has brought with it significant changes to data privacy – new state laws concerning data privacy came into effect January 1 (the California Privacy Rights Act and the Virginia Consumer Data Protection Act),...more
The Committee on Foreign Investment in the United States (CFIUS) is a U.S. government interagency committee with the responsibility to review foreign investments in U.S. businesses and real estate transactions for national...more
This article discusses briefly the various possible liabilities for data protection breaches under China’s main laws, regulations and statutory instruments governing the protection of personal information. Introduction -...more
On November 1, 2021, the Personal Information Protection Law of the People’s Republic of China (the “PRC”) (the “Personal Information Protection Law”) went into effect, two months after the Data Security Law of the PRC (the...more
Despite the great strides companies have made to mitigate the risks associated with security breaches, including putting insurance in place to cover those risks, cyber criminals have remained two steps ahead, finding new and...more
One of the challenging things about HIPAA (Health Insurance Portability and Accountability Act) enforcement is the fact that both the Office for Civil Rights and State AGs have jurisdiction to assess fines and penalties for...more