On March 26, 2026, a bipartisan group of U.S. lawmakers introduced H.R. 8094, titled the “AI Foundation Model Transparency Act of 2026” (“AI FMTA”). At its core, the AI FMTA would require developers of certain large AI Models, like ChatGPT or Claude, to publicly disclose key information about how the models are trained, what the […]

The post

From March 22–25, the National Association of Insurance Commissioners (“NAIC”) held its 2026 Spring National Meeting in San Diego, California. During the meeting, the Innovation, Cybersecurity, and Technology Committee, along with its working groups on Third-Party Data and Models, Big Data and Artificial Intelligence, and Cybersecurity, addressed key developments regarding ov...

On March 30, 2026, California Governor Gavin Newsom signed Executive Order N-5-26 (the “Order”), aimed at governing the responsible procurement and deployment of Generative Artificial Intelligence (“GenAI”) across California’s state government. The Order builds on the foundation laid by Executive Order N-12-23, issued in September 2023, by directing a series of actions across...

Connecticut lawmakers have introduced legislation that, if enacted, would significantly expand breach-response obligations for organizations affected by large-scale cybersecurity incidents. As proposed, Raised Senate Bill 117 (SB 117), would create a new category of “massive” data breaches and impose mandatory forensic investigation and reporting requirements that go well bey...

On March 18, 2026, the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert (the Alert) urging U.S. organizations to harden their endpoint management systems following the March 11, 2026 cyberattack against medical technology firm Stryker Corporation (Stryker), which disrupted Stryker’s internal Microsoft environment. CISA stated that it is conducting enhan...