On February 6-7, in Washington D.C., the American Conference Institute (ACI) is hosting a conference titled “International Technology Transfers, Cloud Computing & Deemed Export Compliance.” [Read more…]
A subject that receives little attention (academically or in practice) is the intersection of three distinct, yet often overlapping, compliance areas: (1) data privacy; (2) information security; and (3) export compliance. [Read more…]
The U.S. export control regime is vast, complex, and constantly changing. At least sixteen federal agencies are responsible for the enforcement of roughly thirty distinct, yet often overlapping, federal statutes and regulations.
Generally, the goal of this regime is to control the export and re-export of U.S. items for the purposes of: national security; foreign policy; short supply; reduction of nuclear proliferation; limitation of chemical and biological warfare; antiterrorism; crime control; enforcement of economic embargoes; and compliance with U.N. resolutions. [Read more…]
HIPAA stands for “Health Insurance Portability and Accountability Act.” HIPAA applies equally to “Covered Entities” (Health Plans, Health Providers, and Healthcare Clearinghouses) and “Business Associates” of Covered Entities.
Under the “Security Rule,” Covered Entities (and Business Associates) must maintain reasonable and appropriate administrative, technical, and physical safeguards for the protection of “Electronic Protected Health Information” (ePHI). [Read more…]
ITAR stands for “International Traffic in Arms Regulations.” It is overseen by the Department of Defense Trade Controls (DDTC), part of the U.S. Department of State.
To paraphrase the general rule: before a U.S. person may export or temporarily import a “defense article” or “defense service” to or from a foreign person, it must obtain approval from the DDTC. [Read more…]