Privacy for Everyone! New FAR Rule Imposes Mandatory Training Requirements for Employees Handling PII
Client Alert | less than 1 min read | 12.28.16
After years of consideration, DoD, GSA, and NASA have published a final rule requiring contractor employees who handle personally identifiable information (PII) or work with a system of records to complete initial and annual privacy training that addresses specified elements, including the Privacy Act, working with PII, and the contractor’s incident response plan. The final rule – effective January 19, 2017, and applicable to all contracts including those for commercial items and those below the Simplified Acquisition Threshold – also requires contractors to identify each covered employee, maintain records indicating that its employees have completed the requisite training, and to provide these records to contracting officers upon request.
Contacts
Partner, Crowell Global Advisors Senior Director
- Washington, D.C.
- D | +1.202.624.2698
- Washington, D.C. (CGA)
- D | +1 202.624.2500
Insights
Client Alert | 4 min read | 03.05.26
The U.S. Department of Labor (DOL) has proposed another revision to independent contractor regulations, one that would provide for more leeway in classifying workers as contractors. DOL’s proposed rule, published on February 26, 2026, would rescind the Biden DOL’s March 2024 independent contractor regulation and reinstate a framework substantially tracking the prior Trump rule of January 2021. The proposed rule would also apply the narrower analysis to worker classifications under the Family and Medical Leave Act (FMLA) and the Migrant and Seasonal Agricultural Worker Protection Act (MSPA). The comment period closes in late April 2026; until then, the 2024 rule remains in effect for purposes of private litigation.
Client Alert | 8 min read | 03.05.26
Client Alert | 4 min read | 03.04.26
Sixth Circuit Finds EFAA Arbitration Bar to Entire Case — Not Just Sexual Harassment Claims
Client Alert | 3 min read | 03.02.26
