Congress or FTC? What about SEC? Where U.S. federal privacy legislation efforts stand in 2023
By 
Aaron Nicodemus2023-02-28T14:00:00
Could Congress pass comprehensive federal data privacy legislation in 2023? If not, could another government agency step into the breach?
Experts believe there are several possibilities.
At the federal level, the regulation most likely to be enacted in 2023 with an impact on data privacy won’t come from Congress or the Federal Trade Commission (FTC) but could instead be contained within a cybersecurity rule under consideration by the Securities and Exchange Commission (SEC), said Vivek Mohan, partner at Gibson Dunn and former senior global privacy law and policy attorney at Apple.
Related articles
-
PremiumAs final CPRA rules trickle out, a reminder companies must ‘grow with the law’
If companies haven’t started the process of coming into compliance with the California’s sweeping new privacy law, they need to begin now.
-
News BriefIowa privacy bill signed into law; effective 2025
Iowa became the sixth U.S. state to pass comprehensive data protection legislation allowing residents control over how their personal information is accessed and shared.
-
OpinionTen things I’d like to see happen in 2023 (2022 in review)
Expect big developments for the compliance profession in 2022 to continue to take center stage in the year ahead, including CCO certifications, climate-related disclosures, and more.
More from Regulatory Policy
-
News BriefFDIC eases leverage rules for banks, citing lower risk burdens
The U.S. Federal Deposit Insurance Corporation issued a final rule to change the leverage capital requirements for both large and community banks. The agency said the modification will ”reduce disincentives a banking organization may have to engage in lower-risk activities.”
-
ArticleU.K. Cyber Security and Resilience bill set to regulate critical infrastructure suppliers
Suppliers to the U.K. critical infrastructure will face new regulations to ensure they are protected from cyberattacks. The Cyber Security and Resilience Bill, introduced on November 12, also raises penalties for breaches and expands regulator powers to label certain suppliers as critical.
-
ArticleFCC rolls back Biden-era cybersecurity requirements for telecoms
Telecommunication companies are now on the honor system to protect their networks from cyber attacks, following a Federal Communications Commission (FCC) vote that removed requirements that they harden their networks.