AI Sigil Logo
Contact Us
Back to all insights
A traffic light

Sections

AI Governance in a Shifting Regulatory Landscape

AI Governance Remains Critical Despite Political Pendulum Swings

As businesses increasingly rely on AI and generative AI for myriad applications, a new body of “AI law” is forming, and some legal requirements are now in effect. AI governance has become a mandatory compliance function that organizations must prioritize immediately rather than postponing until next quarter or next year.

The Patchwork of AI Law

The landscape of AI law is complex and varies widely across jurisdictions. Some regions are enacting new regulations, while others are retracting existing ones. As the political atmosphere shifts, regulatory retrenchment has emerged as a key theme in 2025.

Hardline AI regulatory regimes that previously dominated headlines are now being scaled back. For instance, at the federal level in the U.S., the Trump administration has undone several Biden-era AI executive orders, leading federal agencies to recalibrate their enforcement priorities. Observers note that agencies such as the FTC and SEC are expected to focus primarily on clear cases of fraud rather than pursuing broader or more innovative regulatory actions.

State-Level Developments

At the state level, the Colorado AI Act is currently under scrutiny for potential amendments, including a bill introduced in April 2025. In addition, recent vetoes of high-profile AI bills by the governors of California and Virginia highlight the ongoing tensions in AI legislation. The U.S. House Energy and Commerce Committee has proposed a 10-year moratorium on enforcing state AI laws in a recent draft budget reconciliation bill.

Meanwhile, across the Atlantic, the EU Commission has withdrawn the draft AI Liability Directive and is reportedly considering amendments to the EU AI Act to ease certain requirements.

Emergence of New Regulations

Despite the apparent pullback in certain regulations, the realm of AI governance is not stagnant. Newly enacted state laws in the U.S., particularly in California, Illinois, New York, and Utah, address critical issues such as:

  • Algorithmic discrimination and automated decision-making
  • Disclosure of AI usage
  • Impersonation, digital replicas, and deepfakes
  • Watermarking of AI-generated content
  • Data privacy and biometric data

State attorneys general have reiterated their commitment to enforcing existing laws against unlawful uses of AI, emphasizing that AI regulation remains a pressing concern. Furthermore, the ongoing AI “copyright war” continues to evolve, as various lawsuits in the U.S. and beyond test the boundaries of copyright infringement and fair use in relation to AI training and outputs.

The EU AI Act

Notably, the first requirements of the EU AI Act went into effect in February 2025. Companies utilizing AI within the EU are now subject to an “AI literacy” requirement, mandating measures to ensure a sufficient level of AI literacy among employees or individuals operating or using AI systems. The extraterritorial nature of the AI Act means it also applies to U.S. companies that use AI systems within the EU or produce outputs intended for use in the EU.

Mandatory employee training regarding the responsible use of AI is now a crucial aspect for compliance.

Conclusion

In summary, while there may be a trend towards softening AI regulation in some areas, this is not a universal truth. The importance of enterprise AI governance cannot be overstated. New “AI law” requirements are being implemented, with others on the horizon. Regulatory bodies, state attorneys general, and plaintiffs are keen to apply existing laws to emerging technologies. Additionally, organizations must be mindful of potential self-inflicted issues, such as data leakage, along with the reputational and public relations risks tied to AI-related missteps.

Fortunately, there are common threads within the complex landscape of AI regulation. Established guidance, such as the NIST AI RMF and ISO/IEC 42001:2023, offers valuable insights for responsible AI governance. These frameworks not only assist in compliance but may also provide statutory safe harbors or affirmative defenses under laws like the Colorado AI Act. Leveraging these resources is essential for organizations in navigating the evolving AI landscape.

More Insights

A safety helmet worn by drone operators

Revolutionizing Drone Regulations: The EU AI Act Explained

December 17, 2025 AI,AI Regulation,Drone Technology,Regulatory Framework
The EU AI Act represents a significant regulatory framework that aims to address the challenges posed by artificial intelligence technologies in various sectors, including the burgeoning field of...
Read More
A safety helmet worn by drone operators

Revolutionizing Drone Regulations: The EU AI Act Explained

December 1, 2025 AI,AI Regulation,Drone Technology,Regulatory Framework
The EU AI Act represents a significant regulatory framework that aims to address the challenges posed by artificial intelligence technologies in various sectors, including the burgeoning field of...
Read More
A light bulb to convey innovation and the bright potential of responsible AI solutions.

Embracing Responsible AI to Mitigate Legal Risks

November 29, 2025 AI,AI Ethics,AI Governance,AI Regulation
Businesses must prioritize responsible AI as a frontline defense against legal, financial, and reputational risks, particularly in understanding data lineage. Ignoring these responsibilities could...
Read More
A traffic light to illustrate the need for clear guidelines and regulations in managing AI technologies.

AI Governance: Addressing the Shadow IT Challenge

November 29, 2025 AI,AI Governance,AI Regulation Awareness,Regulatory Compliance
AI tools are rapidly transforming workplace operations, but much of their adoption is happening without proper oversight, leading to the rise of shadow AI as a security concern. Organizations need to...
Read More
A roadmap illustrating the journey companies must take to align with AI regulations.

EU Delays AI Act Implementation to 2027 Amid Industry Pressure

November 29, 2025 AI,AI Regulation,EU Compliance,Regulatory Compliance
The EU plans to delay the enforcement of high-risk duties in the AI Act until late 2027, allowing companies more time to comply with the regulations. However, this move has drawn criticism from rights...
Read More
A semiconductor chip

White House Challenges GAIN AI Act Amid Nvidia Export Controversy

November 29, 2025 AI,AI Regulation,Artificial Intelligence Governance,Technology Policy
The White House is pushing back against the bipartisan GAIN AI Act, which aims to prioritize U.S. companies in acquiring advanced AI chips. This resistance reflects a strategic decision to maintain...
Read More
Compliance checklist

Experts Warn of EU AI Act’s Impact on Medtech Innovation

November 29, 2025 AI,EU Compliance,Medtech Innovation,Regulatory Compliance
Experts at the 2025 European Digital Technology and Software conference expressed concerns that the EU AI Act could hinder the launch of new medtech products in the European market. They emphasized...
Read More
A tree

Ethical AI: Transforming Compliance into Innovation

November 29, 2025 AI,AI Ethics,Ethical AI
Enterprises are racing to innovate with artificial intelligence, often without the proper compliance measures in place. By embedding privacy and ethics into the development lifecycle, organizations...
Read More
A warning sign

AI Hiring Compliance Risks Uncovered

November 29, 2025 AI,AI Compliance,AI Regulation,Regulatory Compliance
Artificial intelligence is reshaping recruitment, with the percentage of HR leaders using generative AI increasing from 19% to 61% between 2023 and 2025. However, this efficiency comes with legal...
Read More