Final Rule on Supply Chain Risk Fails to Provide Additional Guidance, Protection, or Relief from Uncertain Application
Client Alert | 1 min read | 11.02.15
On October 30, DoD published a final rule (a) requiring evaluation of supply chain risk when acquiring information technology that is either a covered National Security System ("NSS"), part of a covered NSS, or in support of a covered NSS; and (b) authorizing DoD to exclude primes or subs from a particular procurement if they fail to mitigate identified supply chain risks adequately. DoD made relatively modest changes to the 2013 interim rule (e.g., removing the flow-down requirement applicable to subs at any tier) but largely rejected industry input (e.g., declining to identify specific standards or controls to mitigate supply chain risk and declining to create a mechanism for challenging exclusion from a particular source selection).
Contacts
Partner and Crowell Global Advisors Senior Director
- Washington, D.C.
- D | +1.202.624.2698
- Washington, D.C. (CGA)
- D | +1 202.624.2500
Insights
Client Alert | 5 min read | 03.22.26
EU Pharma Package: Regulatory Data Protection Compromise Proposal
In our second alert in this EU Pharma Package Series, we provided a detailed overview of the diverging positions of the European Commission (Commission), the European Parliament (Parliament), and the Council of the European Union (Council) on one of the most debated and anxiously anticipated topics, the regulatory data protection (RDP). While all EU institutions proposed a modulation system, they differed significantly in terms of the baseline period and the structure of the possible extensions.
Client Alert | 1 min read | 03.20.26
Client Alert | 6 min read | 03.20.26
Client Alert | 10 min read | 03.19.26
