John Surma

2 months ago | natlawreview.com | Simon J. McMenemy |Christie R. Galinski |Loren Opper |John Surma

On January 15, 2025, the Federal Trade Commission announced a proposed order against web hosting company GoDaddy Inc. and its operating subsidiary GoDaddy.com, LLC, (collectively, “GoDaddy”) for unfair or deceptive acts or practices in violation of Section 5 of the FTC Act, and issued guidance for customers of web hosting services on security practices in light of the settlement.

Dec 18, 2024 | jdsupra.com | John Surma

On December 11, 2024, the Occupational Safety and Health Administration (OSHA) issued a statement that it had finalized a rule amending 29 C.F.R. 1926.95(c) to require construction employers to make personal protective equipment (PPE) available that “properly fits” their employees. Quick Hits On December 11, 2024, OSHA finalized a rule requiring construction employers to provide properly fitting PPE, effective January 13, 2025, though it faces potential rollback due to political opposition.

Nov 8, 2024 | jdsupra.com | John Surma |Ryan Swink

In May 2023, in the wake of a ruling by the Supreme Court of the United States that U.S. district courts have jurisdiction to consider structural constitutional claims against administrative agencies, we predicted that the Occupational Safety and Health Administration’s (OSHA) adjudication procedures would be subject to a slew of constitutional challenges. It appears that our prediction is coming to fruition.

Nov 8, 2024 | jdsupra.com | John Surma |Ryan Swink

Although cannabis remains illegal under federal law, that has not prevented the Occupational Safety and Health Administration (OSHA) from enforcing the Occupational Safety and Health Act (OSH Act) against cannabis-related businesses.

Nov 7, 2024 | natlawreview.com | David Ettinger |Jenny Li |John Surma |Ryan Swink

This week, Schneider Electric confirmed that it is investigating a security incident involving its JIRA internal development platform. The attacker group, “Grep,” allege that it stole 40 GB of data from the JIRA platform by using stolen credentials, including “75,000 unique email addresses and full names for Schneider Electric employees and customers.” Grep posted on a dark web site that it is demanding $125,000 to not leak the data.