Colorado AI Act
Colorado Artificial Intelligence Act (SB 24-205)
First comprehensive US state law regulating high-risk AI systems. Modeled partly on EU AI Act with developer and deployer obligations for consequential decisions.
Jurisdiction
Colorado
Enacted
May 17, 2024
Effective
Jun 30, 2026
Enforcement
Colorado Attorney General (exclusive; no private right of action)
Implementation delayed from February 1 to June 30, 2026 by SB 25B-004 (signed August 2025)
Colorado LegislatureWhy It Matters
Template for US state AI regulation. "Consequential decisions" scope captures employment, healthcare, financial services — high-stakes contexts.
Recent Developments
SB 25B-004, signed during August 2025 special session, delayed all implementation deadlines from February 1 to June 30, 2026. Substantive obligations unchanged.
At a Glance
Applies to
Harms addressed
Who Must Comply
- Developers of high-risk AI systems
- Deployers using AI for consequential decisions in: employment, education, financial services, healthcare, housing, insurance, legal services, government services
Obligations fall on:
Safety Provisions
- Developers: reasonable care to avoid algorithmic discrimination
- Developers: documentation including training data summaries, limitations
- Deployers: risk management programs, annual impact assessments
- Deployers: consumer notice that AI used for consequential decisions
- Appeal mechanisms with human review where feasible
Compliance & Enforcement
Key Dates
Jun 30, 2026
All obligations take effect (delayed from Feb 1 by SB 25B-004)
Full enforcement begins
Penalties
Penalties pending regulatory determination
Primary Source
Colorado Legislature
https://leg.colorado.gov/bills/sb24-205
View on map
Colorado
Focus Areas
Cite This
APA
Colorado. (2024). Colorado Artificial Intelligence Act (SB 24-205).
Related Regulations
CO AI Healthcare Act
Regulates mental health companion chatbots and AI use in healthcare utilization review. Declares AI providers engage in unauthorized practice of psychotherapy if their chatbot misrepresents credentials, uses reserved professional titles, delivers unsupervised psychotherapy, or fails to disclose it is not human. Separately requires AI-driven insurance utilization review to consider individual clinical circumstances rather than solely group data.
CO HB 1263
Imposes obligations on conversational AI service operators including minor-user protections, suicide and self-harm protocols, prohibition on emotional dependence and engagement gamification, and annual safeguard reporting.
NY RAISE Act
Requires large AI developers of frontier models operating in New York to create safety protocols, report critical incidents within 72 hours, conduct annual reviews, and undergo independent audits. Creates dedicated DFS office funded by developer fees.
TX Healthcare AI Law
Requires healthcare practitioners using AI for diagnosis to review all AI-generated records and disclose AI use to patients. Mandates EHR data localization (Texas patient data must be physically stored in US). Applies to covered entities and third-party vendors.
LA Healthcare AI Act
Regulates use of artificial intelligence by healthcare providers in Louisiana. Permits AI for administrative tasks but prohibits AI from making treatment/diagnosis decisions without licensed professional review, directly interacting with patients on treatment matters, or generating therapeutic recommendations without professional approval.
VT AADC
Vermont design code structured to be more litigation-resistant: focuses on data processing harms rather than content-based restrictions. AG rulemaking authority begins July 2025.
Last updated March 9, 2026. Verify against primary sources before relying on this information.