Insights Search

Alexa Chally, Sean Dao, Bader Thabti, and Joshua Hayes outline the complex legal and infrastructure challenges in developing AI-ready data centers, highlighting the immense power demands, evolving regulatory frameworks, and the importance of tailored power purchase agreements (PPAs). They emphasize that successful development requires coordinated legal strategies across energy, finance, and technology sectors to support AI’s accelerating growth.

On January 13, 2025, Texas Attorney General Ken Paxton (“Texas AG”) filed the first-ever enforcement action under the Texas Data Privacy and Security Act (“TDPSA”) against insurance company Allstate and its subsidiary, Arity (collectively, “Defendants”).

On January 13, 2025, the Securities and Exchange Commission (“SEC”) filed a settled enforcement action against Ashford Inc. (“Ashford” or “the Company”), a company that provides products and services to the real estate and hospitality industries, for making false and misleading disclosures about a cybersecurity incident that exposed sensitive hotel customer information.

Proposed cybersecurity regulation may face changes or challenges in view of the incoming Trump administration that is intent on reducing the perceived regulatory burden on American companies and streamlining government operations. Still, the incoming administration is not likely to dismiss the importance of cybersecurity for the nation, but will aim to balance the need for collaboration and awareness with the reasonable demands on the private sector.

On October 15, 2024, the Department of Defense (“DoD”) released its final rule (the “Final Rule”) formally establishing the Cybersecurity Maturity Model Certification (“CMMC”) program, nearly three years after first announcing its plan for the initiative.

Welcome to Vinson & Elkins’ Securities and ESG Updates.

The Texas Data Privacy and Security Act (“TDPSA” or the “Act”) came into effect on July 1, 2024.

The story of artificial intelligence (“AI”) is one of technological promise and societal challenge, and its impact on the U.S. electric power grid is fast becoming a pivotal chapter.

The facts are an oft-told business email compromise horror story: a hacker interjects themselves into an email discussion of a business deal, changes the wire instructions to their own account, and disappears with the misdirected funds.

On February 28, 2024, President Joe Biden issued a landmark Executive Order titled “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern” (the “Order”).

Public companies are now required to comply with new cybersecurity disclosure requirements in their Annual Reports on Form 10-K for fiscal years ending on or after December 15, 2023.

In this program, we focused on SEC developments affecting, and practical aspects of preparing for, public companies’ annual meetings and annual reports.