DOD Proposed New Cybersecurity Rules
Client Alert | 1 min read | 03.08.10
On March 3, DoD issued a notice of, and requested comments on, proposed rules levying information security requirements for safeguarding unclassified "DoD information" and reporting security breaches when contractors and subcontractors may have such information "resident on or transiting" their information systems. The proposed rule not only mandates that contractors "shall provide adequate security to safeguard DoD information," but also (1) requires flowdown to subcontractors; (2) establishes extreme standards in some areas (e.g., "best level of security and privacy available"); (3) incorporates National Institute of Standards and Technology (NIST) standards in some areas, but not others; and (4) acknowledges that the contractor will still need to comply with all other applicable security standards, such as "CPI, PII, For Official Use Only, Privacy Act, ITAR, EAR, and HIPAA."
Contacts
Insights
Client Alert | 6 min read | 02.24.26
Artificial Intelligence and Human Resources in the EU: a 2026 Legal Overview
The year 2026 marks a major regulatory turning point for European companies using or considering the use of artificial intelligence in their human resources (HR) processes. The Regulation (EU) 2024/1689 on artificial intelligence (the AI Act) is entering a critical implementation phase, while the European Commission's "Digital Omnibus" package will clarify several obligations and modify certain deadlines.
Client Alert | 3 min read | 02.24.26
DOJ v. OhioHealth Confirms Antitrust Enforcers’ Continued Focus on Health Care Markets
Client Alert | 4 min read | 02.24.26
Client Alert | 4 min read | 02.24.26
State-Level Merger Control Grows: California Joins “Mini-HSR” Trend with Senate Bill 25
