Insights

Professional
Practice
Industry
Region
Trending Topics
Location
Type

Sort by:

Client Alerts 18 results

Client Alert | 3 min read | 03.26.25

FedRAMP 20x: Proposed Framework Aims To Increase Automation and Efficiency

On March 24, 2025, the Federal Risk and Authorization Management Program (FedRAMP) unveiled “FedRAMP 20x,” a proposal to make FedRAMP more efficient by automating FedRAMP security assessments and continuous monitoring, simplifying required technical controls, and leaning on industry to provide tooling and solutions to support automation. 
...

Client Alert | 6 min read | 02.26.25

Targeted Policy Action Against Ransomware Attacks Emerging as a Key Global Cybersecurity Trend

As digitalization has become more ubiquitous and attacks surfaces widened, the number of cyberattacks have correspondingly increased. In 2024, ransomware attacks in particular grew in their frequency and impact. In an effort to enact more stringent policy approaches, governments introduced over 170 data protection laws between 2023 and 2024. With not a single company immune from these regulatory winds, industry must keep a close watch.
...

Client Alert | 4 min read | 02.21.25

An Un[waiver]ing Commitment to CMMC: The Department of Defense Issues Guidance for Determining Assessment Levels

Amidst a flurry of executive cost-cutting, the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification program—often known just as “CMMC”— appears to be defying the odds and only picking up steam. Marking the first CMMC developments under the new administration, the DoD has published guidance that previews what to expect once CMMC is finalized. These developments suggest that the current administration intends to pick up where it left off, having first introduced the CMMC program during President Trump’s first term.
...

Publications 4 results

Publication | 01.28.25

Asia-Pacific Strives to Keep Pace with Cyber Threats

The Asia-Pacific (APAC) region witnessed a rapid digital transformation in 2024, powered by its connectivity and technological innovations. However, these advancements have introduced new vulnerabilities into the region’s digital ecosystem, which more sophisticated and nuanced cyber threats are already exploiting. In Q2 2024 alone, the APAC region experienced an average of 2,510 weekly cyberattacks per organization, marking a 23 percent increase compared to the same period in 2023.
...

Publication | 01.28.25

How Businesses Can Navigate China’s Data Regulations in 2025

The People’s Republic of China’s data protection laws have evolved rapidly in recent years, reflecting the global trend towards greater data privacy and security. The cornerstone of this legal framework has been a trio of measures: the Cybersecurity Law (CSL), the Data Security Law (DSL), and the Personal Information Protection Law (PIPL). These three laws collectively govern the whole lifecycle of data processing.
...

Publication | 05.14.24

Global Developments: New Actions in the Asia-Pacific

Privacy and Cybersecurity Outlook: The 2024 Landscape
Across the Asia-Pacific (APAC), the past year has brought defining developments for privacy and cybersecurity regulations in the region. A number of countries have implemented new or updated existing policy instruments—a testament to the growing relevance of a strong privacy and cybersecurity framework in the face of rapid global digital transformation. Topline 2023 changes and actions across APAC have included Vietnam’s Decree on Personal Data Protection; Bangladesh’s Cyber Security Act and draft Data Protection Act; amendments to Taiwan’s Cyber Security Management Act; and Indonesia’s Presidential Regulation Number 47 of 2023 on Cyber Crisis Management and National Cyber Security Strategy.
...

Events 1 result

Event | 07.19.23 - 07.20.23

IAPP Asia Privacy Forum 2023

Kate Growley, a Director in Crowell &Moring International, will be speaking at this year's IAPP Asia Privacy Forum taking place July 19-20th in Singapore. Her presentation, "Approaching Privacy in Ethical AI: The Pros, Cons and Grays" will take place on July 20th at 3:30 p.m. SGT.

Webinars 2 results

Webinar | 04.22.25, 11:00 AM EDT - 12:00 PM EDT

The Evolving AI Legal and Policy Landscape: Mid-2025 Update

With the launch of Crowell’s Evolving AI Legal and Policy Landscape tracker in 2023, we formed a team of attorneys and policy professionals tasked with monitoring and reporting on the most notable developments around AI. Join us for a roundtable discussion regarding worldwide legal and policy developments since July 2024 and what you need to know in 2025. Our presenters Jillian Ambrose, Sari Depreeuw, Kate Growley, and Linda Malek will explore...

Webinar | 07.25.24, 12:00 PM EDT - 1:00 PM EDT

The Evolving AI Legal and Policy Landscape: Mid-2024 Update

Since the November 2022 release of ChatGPT, generative AI has been a regulatory accelerator for governance of AI writ large. Individuals, organizations, industries, and governments across the world have grappled with the implications of AI, including how it is and could be regulated using existing and new legal frameworks. For example, since our December 2023 update:
...

Speaking Engagements 1 result