Skip to content
Longterm Wiki
Back

clear disclosure when AI contributes to consequential decisions

web
dwt.com·dwt.com/blogs/artificial-intelligence-law-advisor/2024/05...

Legal analysis from Davis Wright Tremaine covering the first comprehensive US state AI law; relevant to AI governance researchers tracking regulatory frameworks and the debate over state vs. federal AI oversight.

Metadata

Importance: 62/100news articleanalysis

Summary

Colorado enacted SB 205 (CAIA), the first comprehensive state-level AI regulation in the US, establishing a risk-based framework targeting high-risk AI systems used in consequential decisions. The law imposes notice, disclosure, risk mitigation, and opt-out requirements on developers and deployers to combat algorithmic discrimination, taking effect February 1, 2026. Governor Polis signed reluctantly, calling for federal preemption to avoid a patchwork of state regulations.

Key Points

  • CAIA is the first comprehensive US state AI law, effective February 1, 2026, regulating 'high-risk' AI in employment, insurance, housing, credit, education, and healthcare.
  • Developers must use reasonable care to prevent algorithmic discrimination and disclose impact assessments; deployers face similar obligations plus opt-out requirements for consumers.
  • The law prohibits all discriminatory AI outcomes regardless of intent, deviating from traditional anti-discrimination standards that require proof of intentional bias.
  • Colorado AG receives enforcement and rulemaking authority, meaning compliance requirements may expand before the law takes effect in 2026.
  • Governor Polis signed while expressing concern about compliance complexity and calling for federal AI regulation to preempt a patchwork of state laws.

Cited by 1 page

PageTypeQuality
Colorado Artificial Intelligence ActPolicy53.0

Cached Content Preview

HTTP 200Fetched Mar 15, 202624 KB
Mile-High Risk: Colorado Enacts Risk-Based AI Regulation to Address Algorithmic Discrimination | Davis Wright Tremaine 
 
 
 
 


 
 
 
 

 

 
 
 
 

 

 
 

 

 


 

 

 


 
 



 
 
 
 
 
 
 

 
 
 

 
 
 
 
 


 
 
 Skip to content 
 
 
 
 
 
 
 
 
 People
 
 
 
 
 Services
 
 
 
 
 Insights
 
 
 
 
 
 
 About
 
 
 
 
 Offices
 
 
 
 
 Careers
 
 
 
 
 
 
 Menu Search 
 
 Search 
 
 
 
 
 Perform Search 
 
 
 
 
 
 
 
 
 
 
 

 
 
 
 
 
 
 
Insights 
 
 
 Artificial Intelligence
 
 
 
 
 
 Mile-High Risk: Colorado Enacts Risk-Based AI Regulation to Address Algorithmic Discrimination
 


 
 
 Colorado’s AI Act is the first comprehensive law regulating AI in the United States 
 
 
 

 By Jevan Hutson, David L. Rice , and K.C. Halm 
 
 
 05.20.24
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 Share 
 
 
 
 
 
 
 
 
 Print this page
 
 
 
 
 
 
 
 
 On May 17, Colorado Governor Jared Polis signed into law the Colorado Artificial Intelligence Act ( SB 205 )("CAIA"), a measure passed out of the legislature on May 8 and now scheduled to become effective February 1, 2026. The CAIA aims to combat intentional and unintentional algorithmic discrimination through new, broad-based notice, disclosure, risk mitigation, and opt-out requirements for developers and deployers of "high-risk" artificial intelligence ("AI") systems and disclosures applicable to AI systems generally. 

 Governor Polis' signing statement acknowledged his reservations in signing the bill, noting that the measure creates a "complex compliance regime" for AI developers and deployers operating in Colorado and interacting with Colorado residents, which could add to the potential for additional states taking action, resulting in a patchwork of state laws that could tamper innovation and deter competition. In that regard, the governor also called for federal regulation of "nascent AI technologies … to limit and preempt varied compliance burdens on innovators and ensure a level playing field across states." The Governor also encouraged the legislature to reexamine the scope of discriminatory conduct in the CAIA before it takes effect, noting that the CAIA deviates from the norm by prohibiting all discriminatory outcomes from AI system use, regardless of intent.

 The law appears to build upon profiling and automated decision-making technology rules that the Colorado Attorney General finalized for compliance with the Colorado Privacy Act. The Colorado AG will also have enforcement and rulemaking authority to adopt rules to implement the extensive requirements of the CAIA, so additional requirements may follow as a result of that process. Developers and deployers may be able to leverage some of their existing Colorado Privacy Act processes to comply with the CAIA. Governor Polis signed the CAIA on May 17, 2024, and 

... (truncated, 24 KB total)
Resource ID: 1a2114875c3d5543 | Stable ID: Zjk3ZmQ0ND