Morrison Foerster is an international law firm with lawyers practicing throughout the United States, Asia, and Europe. Click to discover more.

Morrison Foerster

common-default.jpeg

Terms / Notices

Cookies

Privacy Policy

Reporting Hotline

Attorney Advertising

Alumni

  Linkedin

MoFo LinkedIN

  Facebook

MoFo Facebook

YouTube

MoFo Youtube

Morrison Foerster - Footer

How the New DOJ Rules on Sensitive Bulk Data Will Impact Your Company

You have not solved the recaptcha challenge yet or session expired, try again.

Email Disclaimer

Disclaimer

Unsolicited e-mails and information sent to Morrison Foerster will not be considered confidential, may be disclosed to others pursuant to our <a href="https://www.mofo.com/about/privacy-policy.html">Privacy Policy</a>, may not receive a response, and do not create an attorney-client relationship with Morrison Foerster. If you are not already a client of Morrison Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

Feedback

mofo-logo-2022.svg

People

Capabilities

Resources

About

Culture

Offices

Careers

Stay Connected

The clock is ticking – U.S. companies that share “sensitive bulk data” with non-U.S. entities have until early April to comply...

The clock is ticking – U.S. companies that share “sensitive bulk data” with non-U.S. entities have until early April to comply with the new requirements under DOJ’s Sensitive Bulk Data Security Regulation. The new rules will have wide-ranging implications for most companies, even if they do not directly share information with countries such as China, Russia, Cuba, Venezuela, and Iran, because they also cover data accessible to vendors, employees, and investors. Join Morrison Foerster partners Miriam Wugmeister and Brandon Van Grack as they discuss the final rules and the implications for U.S. companies.<a href="https://www.veracast.com/webcasts/mofo/mcle-programs/KtJu6v.cfm" target="_blank">Register</a> to the event.<hr>

Sign Up

Few lawyers in the world have Miriam Wugmeister’s breadth and understanding of privacy and data security laws, obligations, and practices. As co-chair of Morrison Foerster’s preeminent global Privacy + Data Security Group, Miriam is regularly called upon by some of the world’s largest and most complex multinational organizations to confront their most difficult U.S. and international privacy and cybersecurity challenges. Ranked among the top in the profession by all major directories, her clients say: “Miriam is the best privacy counsel in the country that I have ever worked with. Her advice is always spot-on, practical, and helpful, and her judgment is impeccable.” “Miriam is a true leader in her field. I appreciate her brilliance and expertise.” “She keeps up with a rapidly evolving area and is quick to answer the most challenging questions with practical guidance a business can use.” (Chambers USA).Miriam’s counsel is particularly prized for complex global privacy and data security incidents. She has navigated some of the largest and most consequential incidents in history, including assisting Mandiant when it discovered and warned the world about the SolarWinds compromise. Having helped hundreds of clients respond to cybersecurity incidents, Miriam is called upon to advise and educate boards of directors regarding cybersecurity and the key role that boards play in understanding and overseeing the potential risks. Miriam works with companies to develop comprehensive customized incident response plans, train staff, conduct extensive tabletop exercises, and address key issues with executive management. While she regularly advises clients on responses to ransomware attacks and other cyber extortion incidents, she works on all other aspects that arise in the context of large security incidents including communication strategies, notifications to customers, consumers, and regulators; public disclosures; interactions with law enforcement globally; litigation; and investigations by regulators around the world. Miriam advises organizations on the planning and execution of complex global compliance efforts and defends regulatory matters relating to privacy and cybersecurity in the United States and internationally.Miriam serves as a board member of the <a href="https://sustainability.adp.com/adp-innovation-strategy.html#:~:text=In%20harnessing%20the%20power%20of%20big%20data%20through,that%20involve%20artificial%20intelligence%2C%20ML%20and%20big%20data." target="_blank">ADP AI & Data Ethics Committee</a> and is a leader in <a href="/capabilities/artificial-intelligence" target="_self">MoFo’s AI Group</a>, a cross-practice team that provides sophisticated, full-service representation to a wide range of clients with companies that both develop and use cutting-edge, rapidly changing technology in the AI space. Miriam uses her extensive industry experience and collaborative global approach to provide her clients with fast access to the newest trends and developments in AI.As founder and leader of the Global Privacy Alliance (GPA), Miriam encourages the development of rational privacy laws around the world and monitors privacy practices, laws, and regulations globally. On behalf of the GPA’s members, she takes an active role in anticipating upcoming privacy legislation and educating regulators on the commercial implications of proposed regulations.Chambers USA and Chambers Global recommend Miriam in the top tier of privacy and data security lawyers worldwide, with clients commenting to Chambers USA that she is “extremely practical and phenomenally smart. Just about one of the best privacy advisers there is,” and The Legal 500 US recognizing her as a leading lawyer for her “professionalism and strong international presence.” For her work in data protection and privacy, Miriam was an inaugural inductee into The Legal 500 Hall of Fame, which is comprised of outstanding U.S. lawyers who have been recommended as The Legal 500’s Leading Lawyers for the last six consecutive years. The Cybersecurity Docket has recognized Miriam as one of its Incident Response 50, a list of the top data breach response lawyers globally. She has been named one of Financial Times’ Top 10 Innovative Lawyers in North America and a National Law Journal Cybersecurity and Data Privacy Trailblazer for her breakthrough work in this space. Miriam was also previously designated as an Ethisphere Attorney Who Matters and a BTI Client Service All-Star.

Miriam Wugmeister

Partner

Brandon L. Van Grack co-chairs Morrison Foerster’s National Security and Crisis Management groups. His practice focuses on investigations, criminal defense, and compliance matters involving export controls and sanctions, foreign investment, and cyber incidents. Brandon’s arrival to the firm follows more than a decade of service at the U.S. Department of Justice (DOJ), where he held multiple senior positions. In those positions, he helped manage the U.S. government’s tools to address perceived national security threats in China and Russia, oversaw every criminal investigation involving sanctions and export controls, and was Chief of DOJ’s Foreign Agents Registration Act (FARA) Unit.Brandon’s leadership and breadth of national security experience offers clients in the financial services, technology, artificial intelligence, defense, media, and communications sectors unmatched insider enforcement perspective across the entire national security landscape, including sanctions, the Committee on Foreign Investment in the United States (CFIUS), export control, cybersecurity matters, and FARA.<h4>Investigations & White Collar Defense </h4>At the DOJ, Brandon led and supervised some of the government’s most significant corporate investigations and resolutions across the national security spectrum. As Counsel to the Assistant Attorney General for National Security, and a Trial Attorney in the Counterintelligence & Export Control Section, he worked on the resolution of almost every significant corporate matter pertaining to export control and sanctions violations in the last decade and is one of the few attorneys to have managed the DOJ’s Voluntary Self‑Disclosure Program for export control and sanctions violations. As Chief of the FARA Unit, he directed scores of investigations of companies for acting as unregistered foreign agents. He also served as Senior Assistant Special Counsel for Special Counsel Robert S. Mueller III’s investigation of the Russian government’s efforts to interfere in the 2016 presidential election, handling some of the office’s most significant matters.Brandon also managed significant corporate investigations and resolutions across the national security spectrum. As Counsel to the Assistant Attorney General for National Security, and a Trial Attorney in the Counterintelligence & Export Control Section, he worked on the resolution of almost every significant corporate matter pertaining to export control and sanctions violations in the last decade and is one of the few attorneys to have managed the DOJ’s Voluntary Self‑Disclosure Program for export control and sanctions violations. As Chief of the FARA Unit, he directed scores of investigations of companies for acting as unregistered foreign agents.<h4>Sanctions, Export Control, & Foreign Investment</h4>As Counsel to the Assistant Attorney General, Brandon oversaw every criminal investigation involving export control and sanctions and led the DOJ’s response to the Obama Administration’s rollback of sanctions targeting Iran—the Joint Comprehensive Plan of Action (JCPOA). As a Trial Attorney, he prosecuted more than 30 export control and sanctions cases, including first-ever cases involving North Korea, weapons of mass destruction, and the Atomic Energy Act. In the first Trump Administration, Brandon led DOJ’s review of transactions involving foreign influence before CFIUS and Team Telecom; he also managed the DOJ’s review of transactions before CFIUS during the Obama Administration.<h4>FARA & the Lobbying Disclosure Act</h4>As Chief of the FARA Unit in the first Trump Administration, and the first official to supervise all foreign influence matters across the DOJ, Brandon revitalized and transformed the enforcement of FARA. Following the DOJ’s announcement making FARA an enforcement priority, he supervised a team of 40 attorneys and staff that opened a record number of investigations, pursued a record number of enforcement actions, secured a record number of registrations, and obtained the first civil injunction involving FARA in nearly three decades. Brandon also directed the review of Lobbying Disclosure Act (LDA) filings for criminal violations and regulated the exemption under FARA for LDA registrants. He also wrote the book on FARA enforcement for the American Bar Association.<h4>Cybersecurity </h4>As a long-time prosecutor, including as a Special Assistant U.S. Attorney for the U.S. Attorney’s Office for the Eastern District of Virginia, Brandon directed complex cyber investigations, including multiple matters involving state-sponsored cyber attacks. He prosecuted the first person convicted as a cyberterrorist and led the investigation of an international hacking group for identity theft, extortion, and dozens of spearphishing attacks against public and private entities. He also collaborated with other government agencies, such as the Securities and Exchange Commission, Federal Bureau of Investigation, and the Department of Homeland Security, to facilitate cooperation from corporate victims and disseminate threat information.During his time at the DOJ, Brandon handled the entire range of national security matters. He led and supervised investigations and prosecutions involving espionage, economic espionage, mishandling of classified information, and theft of trade secrets. He also directed investigations involving treason, mutiny, the Neutrality Act, and the Logan Act.Brandon has been widely recognized for his deep experience in handling national security matters, and keynotes and speaks at industry conferences involving export control and sanctions, CFIUS, FARA, and political law. He has received numerous awards for his work, including the Attorney General’s Award for Distinguished Service (2018), the FBI Director’s Award for Outstanding Cyber Investigation (2017), the Director of National Counterintelligence’s Award for Excellence (2019), the Homeland Security Investigations Executive Associate Director’s Award for Outstanding Counterproliferation Investigation (2014), and five awards from the Assistant Attorney General for National Security.Brandon regularly provides insight on national security issues and DOJ matters with national media. He is a frequent contributor on cable news, including MSNBC’s The Rachel Maddow Show, Deadline: Whitehouse and All In with Chris Hayes, ABC's Good Morning America, NBC's Meet the Press, CNN, BBC News, Sky News and NHK World. He also regularly appears on NPR’s Morning Edition. He has been quoted on a variety of national security topics in the Wall Street Journal, New York Times, and Washington Post, among others,Brandon is also a Contributing Editor to the Lawfare blog and co-host of <a href="https://www.lawfaremedia.org/podcasts-multimedia/podcast/the-regulators-series" target="_blank">The Regulators</a> podcast, where he speaks with key U.S. government regulators in the national security space, including leaders at OFAC, CFIUS, the Bureau of Industry and Security, DOJ, FinCEN, the Office of Information and Communications Technology and Services (ICTS), and FBI.

Brandon L. Van Grack

Privacy + Data Security

National Security, CFIUS, FARA, Sanctions + Export Controls

How the New DOJ Rules on Sensitive Bulk Data Will Impact Your Company

12 Feb 2025 12:00 PM - 1:00 PM EST