DOJ and HHS Extend Web Accessibility Deadlines to 2027–2028
The Department of Justice and the Department of Health and Human Services have extended web accessibility compliance deadlines by one year to provide additional time for implementation.
Policy
Contributing Editor: Jarret Cummings, Senior Advisor for Policy and Government Relations, EDUCAUSE
Content begins below.
-
-
White House Unveils National AI Legislative Framework
The White House has proposed a national artificial intelligence framework that seeks to establish a uniform federal standard, prioritizing the preemption of state regulations while focusing on child safety, energy cost protections, and American technological competitiveness.
-
Trump Administration Releases Cyber Strategy
The Trump administration has released a new cyber strategy outlining a more assertive federal approach to cybersecurity, emphasizing coordination, deterrence, and enforcement. The president also issued a companion executive order that elevates the federal response to cybercrime and fraud through stronger coordination of government efforts, private-sector partnerships, and expanded support for state and local governments.
-
CISA Announces Town Hall Meetings on CIRCIA Regulations
The Cybersecurity and Infrastructure Security Agency has announced a series of virtual town hall meetings to seek additional input on proposed regulations under the Cyber Incident Reporting for Critical Infrastructure Act.
-
Trump Signs AI Executive Order as States Implement AI Laws
In December 2025, President Trump issued an executive order establishing a national artificial intelligence (AI) policy framework, challenging stricter state AI laws, and tying certain federal funding to state compliance.
-
New Agency Head Appointed at FSA While Policy Activity Remains Uncertain
Richard Lucas has been appointed as the chief operating officer of the U.S. Department of Education Office of Federal Student Aid. However, specific details on the agency's plans to establish cybersecurity compliance obligations have yet to emerge.
-
Follow-Up: What Tech Leaders Need to Know About Federal Policy and Higher Ed
Sophie talks with John O'Brien and Jarret Cummings to respond to audience questions submitted at the 2025 EDUCAUSE Annual Conference live podcast recording.
-
Spring 2025 Regulatory Agenda Highlights
The Trump administration released the Spring 2025 Unified Agenda of Regulatory and Deregulatory Actions in September. The Regulatory Agenda outlines regulatory activities under development across federal departments and agencies and includes updates on several regulations that EDUCAUSE has been monitoring.
-
What Tech Leaders Need to Know About Federal Policy and Higher Ed
Sophie and Jenay discuss U.S. federal policy updates and higher education with John O'Brien and Jarret Cummings live at the 2025 EDUCAUSE Annual Conference in Nashville.
-
DFARS Changes to Integrate CMMC Requirements Effective November 10
The final version of changes to defense contracting regulations implementing the Cybersecurity Maturity Model Certification Program has been released, beginning a three-year phase-in period for incorporating contractor self-assessment or third-party certification requirements in all Department of Defense contracts involving Federal Contract Information or Controlled Unclassified Information.
-
{{item.listSponsoredContentLabel}}