Skip to main content
NOPE
In Effect Guidance AI Safety Moderate Relevance

Colombia SIC AI Circular

Colombia SIC Circular Externa 2 de 2024 (AI Data Processing)

10-point checklist for AI data processing. Mandatory PIAs for high-risk AI. Note: Separately, Colombia's Consejo Superior de la Judicatura adopted UNESCO AI Guidelines for judiciary (Dec 16, 2024).

Jurisdiction

Colombia

CO

Enacted

Unknown

Effective

Aug 21, 2024

Enforcement

Superintendencia de Industria y Comercio (SIC)

Who Must Comply

This law applies to:

  • Data controllers using AI in Colombia

Who bears obligations:

Deployer

This regulation places direct obligations on deployers (organizations using AI systems).

Safety Provisions

  • 10-point AI data processing checklist
  • Privacy Impact Assessments for high-risk AI
  • Transparency for AI decisions
  • Human oversight for significant automated decisions

Enforcement

Enforced by

Superintendencia de Industria y Comercio (SIC)

Quick Facts

Binding
Yes
Mental Health Focus
No
Child Safety Focus
No
Algorithmic Scope
Yes

Why It Matters

Most specific AI data processing guidance in Latin America. PIA requirement creates documentation obligation.

What You Need to Comply

You need: documented 10-point checklist compliance; PIA for high-risk AI; transparency; human oversight.

NOPE can help

Cite This

APA

Colombia. (2024). Colombia SIC Circular Externa 2 de 2024 (AI Data Processing). Retrieved from https://nope.net/regs/co-sic-circular-2-2024

BibTeX

@misc{co_sic_circular_2_2024,
  title = {Colombia SIC Circular Externa 2 de 2024 (AI Data Processing)},
  author = {Colombia},
  year = {2024},
  url = {https://nope.net/regs/co-sic-circular-2-2024}
}

Related Regulations

In Effect PE AI Safety

Peru AI Regulations

Peru's first comprehensive AI regulatory framework, inspired by EU AI Act. Establishes three-tier risk-based approach: prohibited uses, high-risk systems (including healthcare), and low-risk/acceptable AI. First general AI regulation in Latin America. Requires human oversight, transparency, and risk assessments for high-risk AI including healthcare applications.

In Effect SV AI Safety

El Salvador AI Law

First comprehensive AI law in Latin America. Promotes AI development while establishing ethical principles and governance framework. Creates the National Agency for Artificial Intelligence (ANIA) to oversee AI development and regulation.

In Effect CA-ON AI Safety

Ontario Bill 194

Ontario's first AI-specific legislation regulating public sector use of AI systems. Requires accountability frameworks, risk management, disclosure, and human oversight. Also addresses cybersecurity and digital information affecting minors under 18.

Failed CA Online Safety

C-63

Would have established Digital Safety Commission with platform duties for seven harmful content categories including content inducing children to harm themselves. Required 24-hour CSAM takedown.

In Effect CARICOM Data Protection

CARICOM CCSCAP 2025

CARICOM's 2025 regional cyber security framework establishing digital safety culture and coordinated incident response across 18 member states.

In Effect CL Data Protection

Chile Cybersecurity Law

First cybersecurity framework law in Latin America (Law 21,663 promulgated Mar 26, 2024; published Apr 8, 2024). Creates National Cybersecurity Agency (ANCI), mandatory incident reporting, and encryption rights.

Back to all regulations Check if this applies to you