Regulatory & Statutory Developments

Sure, America has the Grand Canyon, baseball, and apple pie, but you know what it doesn’t have? A nationwide data protection law. Instead, data protection has been left up to a pastiche of state laws, regulations, and enforcement actions that demand many companies choose one state law to rule them all. California led the pack, being the first to pass a data protection law, the California Consumer Privacy Act of 2018, going into effect January 1, 2020. Following California, only four other states have successfully enacted a data protection law, with Colorado and Virginia passing such laws in 2021 and Utah and Connecticut in 2022.

Continue Reading Coming Soon? The American Data Privacy and Protection Act (SPOILERS)

In 2006, the documentary An Inconvenient Truth chronicled former Vice President Al Gore’s efforts to educate the public on the consequences of climate change. In the sixteen years since the Academy Award-winning film was released, public interest in the impact that greenhouse gas (GHG) emissions have had, are having, and will have on our planet has increased exponentially. Most recently, at the 27th U.N. Climate Conference (COP27), countries from around the globe came together to discuss the implementation of battle plans to combat climate change. One such plan, which was discussed at COP 27 by President Biden, is a new Proposed Rule that would require “significant” and “major” federal contractors to disclose their GHG emissions and climate-related financial risk as well as set science-based targets to reduce their GHG emissions. If and when the Proposed Rule is finalized, it will have seismic implications for contractors, in that it ties contractor responsibility (i.e., a contractor’s ability to receive federal awards) to compliance with these requirements.
Continue Reading An Inconvenient Requirement: New Proposed Rule Would Require Federal Contractors to Disclose Greenhouse Gas Emissions

The U.S. Department of Justice (DOJ) Procurement Collusion Strike Force (PCSF, or Strike Force) celebrates its third anniversary this month. Formed in November 2019 as an interagency partnership consisting of DOJ’s antitrust prosecutors, lawyers in 13 U.S. attorneys’ offices, and investigators from the FBI and federal Offices of Inspector General, the Department of Defense, the General Services Administration, and the U.S. Postal Service, the Strike Force leverages joint resources to investigate public procurement crimes, employ complementary enforcement and prosecution strategies, eliminate anticompetitive collusion and fraud, and promote the integrity of government procurement. Employing education and state-level liaising, the Strike Force has been remarkably omnipresent and successful in that short time, despite numerous pandemic-related interruptions/delays in the courts. The pace of the Strike Force’s enforcement activity has quickened dramatically in 2022—and shows no signs of slowing in 2023.
Continue Reading DOJ’s Procurement Collusion Strike Force: Widening Its Stride on Its Third Anniversary

According to the Office of Federal Contract Compliance Programs (OFCCP), since 2019, Will Evans, a reporter for the Center for Investigative Reporting, has sought the Employment Information Report (EEO-1) data of federal contractors through a Freedom of Information Act (FOIA) request to OFCCP. Mr. Evans amended his FOIA request on June 2, 2022, and now seeks the Type 2 Consolidated EEO-1 Report demographic data of federal prime contractors and first-tier subcontractors for 2016–2020. OFCCP estimates that this impacts approximately 15,000 contractors and first-tier subcontractors.

What does this mean? Absent an objection, OFCCP could disclose your company’s Type 2 Consolidated EEO-1 Reports Component 1 data for 2016–2020 in response to Mr. Evans’s FOIA request.

What is an EEO-1 Report? The EEO-1 Report is the form used annually by the Equal Employment Opportunity Commission and OFCCP to collect a summary of an employer’s workforce data.Continue Reading Attention Federal Contractors and First-Tier Subcontractors: Your EEO-1 Reports May Be Responsive to an OFCCP FOIA Request, and You Have Only until September 19, 2022, to Object.

For just shy of a decade, the Defense Industrial Base (DIB) has had to operate under rules dictating the safeguarding of Controlled Unclassified Information, along with a strict 72-hour notification requirement if/when/should a “cyber incident” occur. For the uninitiated, these are the requirements found in the Department of Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012. And for a large swath of government contractors, these requirements have been more bane than benefit, as many have struggled to meet the DFARS’ stringent requirements.Continue Reading Critical Infrastructure Industry Drafted: Welcome to the Cyber War

Regardless of whether they were eagerly anticipated or begrudgingly unavoidable, the changes promised to the Buy American Act (BAA) early last year have at last arrived, or at least are quickly approaching. On March 4, 2022, the Federal Acquisition Regulation (FAR) Council released its long-anticipated Final Rule implementing important revisions to the BAA provisions of the FAR and incorporating the requirements outlined in President Biden’s January 28, 2021 executive order, “Ensuring the Future Is Made in All of America by All of America’s Workers.” Although the Final Rule, for the most part, conforms with the Proposed Rule issued in July 2021 (which we previously discussed here), the most notable aspect may be that the Final Rule’s effective date was delayed until October 25, 2022. This generous gap provides contractors with roughly 235 days to fortify their compliance efforts and ensure that necessary policies and procedures are in place to meet the necessary supply chain and regulatory changes imposed by the Final Rule — well  in advance of Halloween.
Continue Reading With Just a Little Ado: Significant Buy American Changes Are Coming Before Halloween

With Spring Training just a few weeks away it looks like the Biden Administration is stepping up to the plate to ensure the plans in its $1 trillion Infrastructure Investment and Jobs Act can avoid strikes. On February 4, 2022, President Biden signed the Executive Order on the Use of Project Labor Agreements for Federal Construction Projects (the Executive Order), which requires the federal government, in an effort to avoid potential labor disputes and delays in any “large-scale construction contract” (a project valued at over $35 million), to use project labor agreements before awarding a contract. The Executive Order is effective immediately, and construction contractors should begin seeing it applied in future and maybe even pending solicitations or orders. How, exactly, the Executive Order will appear in immediate solicitations is unclear, but the FAR Council is tasked with implementing the Executive Order within 120 days before promptly issuing a final rule. Before that happens, let’s tap the mud off the cleats and make sure you’re ready to play ball.
Continue Reading PLAy Ball! Executive Order Directs Project Labor Agreements for Construction Projects Over $35 Million

The Cybersecurity Maturity Model Certification version 2.0 (CMMC 2.0) is here! Like a song you’ve heard before, the revised standards are a throwback but no less significant change to the standards that have evolved over the past three and a half years. McCarter & English Government Contracts and Global Trade co-leaders Alex Major and Franklin Turner detail the changes coming to federal contractors in a Feature Comment for Thomson Reuters’ The Government Contractor. Set against the recent Beatles documentary, the comment examines the impact of the Department of Defense’s most recent effort while detailing what contractors need to do before its new standards go into effect.
Continue Reading Get Back: DOD Retreats While Revealing Plans for CMMC 2.0

Judge R. Stan Baker of the US District Court for the Southern District of Georgia issued an order (Order) on December 7, 2021, enjoining the federal government “from enforcing the vaccine mandate for federal contractors and subcontractors in all covered contracts in any state or territory of the United States of America.” This comes on the heels of the November 30, 2021 order by a federal court in Kentucky (see our article here) blocking the federal government’s ability to enforce the obligation embedded in clauses in federal government contracts and other instruments requiring employees of federal contractors with covered contracts in Kentucky, Ohio, and Tennessee to be fully vaccinated by January 18, 2022.
Continue Reading Georgia Federal Court Blocks Federal Contractor COVID-19 Vaccine Mandate Nationwide

The Government’s enforcement of contract provisions implementing the COVID-19 vaccine mandate with regard to federal contractors and subcontractors required by President Biden’s Executive Order 14042 (the EO) was preliminarily enjoined by a federal court in Kentucky in a case brought by the states of Kentucky, Ohio, and Tennessee (and two Ohio sheriffs). In his Opinion and Order of November 30, 2021 (the Order), Judge Gregory F. Van Tatenhove of the US District Court for the Eastern District of Kentucky (the Kentucky court) concluded, among other findings, that it was likely that the President exceeded his authority under laws delegating to the President management of federal procurement and requiring federal agencies to engage in “full and open competition” procurements. The court also raised concerns about whether the President’s actions violated the Tenth Amendment of the Constitution and the “nondelegation doctrine,” a constitutional principle recognized by the US Supreme Court that Congress does not have unlimited discretion in delegating to the President the power to make laws.
Continue Reading Federal Contractor Vaccine Mandate Enjoined in Kentucky, Ohio, and Tennessee: The Implications