Sample Forms, Policies, and Contracts
Sample Employee Photo Release Form
This sample form can be used to give an employer permission to take or use photographs of an employee.
This sample form can be used to give an employer permission to take or use photographs of an employee.
The Indian data protection legal regime is proposed to undergo a major overhaul with the enforcement of the Digital Personal Data Protection Act.
This article discusses in-house counsel internal strategies for compliance, including training of key stakeholders and conducting gap assessments.
Learn ten tips for in-house lawyers on how they can help their organization prepare for responding to potential data breaches and incidents.
This quick reference guide provides information related to data breach notification laws. It includes a list of data breach reporting deadlines for state and federal agencies.
This is a sample letter for notifying individuals that their personal information may have been subject to unauthorized access or disclosure as the result of a data breach.
This is sample tool helping organizations assess whether a security incident involving personal information would require notification under the HIPAA breach notification rule (under the US Health Insurance Portability and Accountability Act).
The threat of ransomware attacks and their potential damage on organizations continues. This checklist includes steps organizations can take to minimize the likelihood and the effects of a successful attack.
Overview of enacted legislation in the European Union and the United States to regulate the development and use of artificial intelligence. Current as of February 19, 2025.
On January 15, 2025, the US Department of Commerce Bureau of Industry and Security (BIS) published an interim final rule (IFR) that imposes new controls on advanced computing integrated circuits (Advanced ICs) and certain artificial intelligence (AI) model weights.
These new controls build upon and expand BIS’ existing suite of export controls on Advanced ICs and semiconductor manufacturing equipment and are intended to prevent adversaries and malicious actors from accessing the most advanced US AI models and the large clusters of Advanced ICs necessary to train such models.
Article 4 of Regulation (EU) 2024/1689 ("AI Regulation") entered into force in February 2025, establishing a further obligation for companies in connection with the use of artificial intelligence ("AI"): Ensuring AI literacy.
This article discusses what AI literacy actually means, what extent are companies subject to this obligation, and what are the consequences of non-compliance.