On March 15, 2022, President Biden signed into law the Cyber Incident Reporting for Critical Infrastructure Act of 2022. This follows increased reporting of cyber threats facing critical infrastructure sectors, particularly the energy sector.

A new U.S. Supreme Court decision holds that federal courts cannot enforce or vacate arbitration awards under Sections 9 and 10 of the Federal Arbitration Act unless they have an independent jurisdictional basis to consider the case.

Companies doing business in the United States should start preparing for the Utah Consumer Privacy Act, which was signed into law on March 24, 2022, and will go into effect on December 31, 2023. The law is more business-friendly than existing omnibus state privacy laws, in that it generally provides fewer consumer rights and company obligations.

In rapid succession, the following occurred:

The U.S. Federal Communications Commission is seeking public comment on vulnerabilities that threaten the security and integrity of the Border Gateway Protocol, which is central to the internet's global routing system. The BGP's design is widely deployed and lacks security features to ensure trust in the information being exchanged.

For the second year in a row, amidst a wave of biometric lawsuits in other states, Maryland legislators have introduced a new biometric privacy law mimicking the Illinois Biometric Information Privacy Act (BIPA).

The FCC has unanimously adopted an order to revoke China Unicom Americas' section 214 authorizations. This action follows the FCC order in October 2021 to revoke China Telecom Americas' authorizations.

Businesses that allow customers to sign up for automatically renewing subscriptions must comply with a patchwork of state and federal regulations that apply to such subscriptions. The Federal Trade Commission recently issued an Enforcement Policy Statement Regarding Negative Option Marketing that addresses recurring subscription programs.