Tech & Sourcing @ Morgan Lewis

Cyber regulations are crucial for the protection of individuals and businesses and aid in risk minimization; failure to comply with these regulations can result in severe consequences such as financial penalties, legal action, reputational damage, and potential breach of sensitive or confidential information. Analysts have identified some key cyber regulations to watch in the coming months.

In a recent LawFlash, a team of Morgan Lewis lawyers discussed the US Court of International Trade and the US District Court for the District of Columbia’s ruling that invalidated President Donald Trump’s actions imposing tariffs pursuant to the International Emergency Economic Powers Act of 1977, and the temporary, administrative stay granted by the US Court of Appeals for the Federal Circuit while it considers whether to stay the orders during the pendency of the government’s appeal of the ruling. These recent events demonstrate the continued uncertainty businesses and consumers face in light of this economic policy.

Emerging technologies, including readily available, highly competent generative artificial intelligence (AI), have raised questions about the future of work. To adapt to these changes and stay ahead of future challenges, companies should evaluate their approach to workforce allocation and employee training, including upskilling, reskilling, and outsourcing.

During the Biden administration, there was a push to prioritize and modernize cybersecurity responses, and the National Institute of Standards and Technology (NIST) agreed to work with the technology industry to develop a new cybersecurity framework. Now, those promises have come to fruition as NIST has provided updated industry-leading guidance in the cybersecurity field.

2025 has seen a notable push by companies to establish dedicated capability centers—or global capability centers (GCCs)—in countries with lower-cost resources and access to a strong talent pool. According to S&S Insider, the global GCC market was estimated at about $128.5 billion in 2023 and is expected to increase to more than $300 billion by 2032, growing at a rate of 13.51% CAGR. NASSCOM reports that India leads the GCC market, currently hosting over 1,700 GCCs, employing more than 1.9 million people, and having an 11% CAGR.

As noted in our recent blog, business process outsourcing (BPO) providers are promising big savings and improved outputs tied to the design and implementation of digital solutions that will monitor, quality check, facilitate, and sometimes perform the applicable business processes.

Gone are the days when a company could outsource the “people” that perform a business process without considering, and likely including in the outsourcing arrangement, the digital enablement of the underlying workflows and activities.

The business process outsourcing (BPO) market is growing at an unprecedented rate as technological advancements transform traditional BPO models to keep up with evolving business needs. As BPO service providers implement and leverage technologies, such as cloud computing, robotics, data analytics, automation, and traditional and generative AI, to streamline processes and improve productivity and quality, digital transformation is becoming a common component—and selling point—for many BPO engagements.

Data issues—collection, usage, optimization, commercialization, and protection—are at the forefront of more and more transactions in the sports industry.

Interest in offshore business centers, commonly known as global capability centers (GCCs), continues to rise as US companies across industries look to establish overseas offices and hire skilled workers to support critical business functions and technology services.