Brian Egan and David Hanke/courtesy photos Brian Egan and David Hanke/courtesy photos

Proposed regulations for national security reviews of deals involving foreign investments in U.S. companies that store large amounts of "sensitive personal data" will likely mean scrutiny of many more transactions than before, lawyers said.

Given the definition of "sensitive data" under the draft rules, insurance companies—especially those insuring government personnel; biotech, healthcare, and health technology companies; and those with data-driven business models—are likely to be swept up, experts said. The law expands jurisdiction of the Committee on Foreign Investment in the U.S. (CFIUS) over transactions involving businesses with data on individuals that "may be exploited in a manner that threatens to harm national security," according to the text of the draft regulations.

Complete your profile to continue reading and get FREE access to Treasury & Risk, part of your ALM digital membership.

Your access to unlimited Treasury & Risk content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Thought leadership on regulatory changes, economic trends, corporate success stories, and tactical solutions for treasurers, CFOs, risk managers, controllers, and other finance professionals
  • Informative weekly newsletter featuring news, analysis, real-world case studies, and other critical content
  • Educational webcasts, white papers, and ebooks from industry thought leaders
  • Critical coverage of the employee benefits and financial advisory markets on our other ALM sites, PropertyCasualty360 and ThinkAdvisor
NOT FOR REPRINT

© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

MP McQueen

MP McQueen is editor-at-large, and can be reached at [email protected]