AI Sigil Logo
Contact Us
Back to all insights
A magnifying glass symbolizing scrutiny and oversight.

Sections

California’s Blueprint for Regulating Foundation AI Models

California Frontier AI Working Group Issues Report on Foundation Model Regulation

On March 18, the Joint California Policy Working Group on AI Frontier Models (the “Working Group”) released its draft report on the regulation of foundation models. The aim is to provide an “evidence-based foundation for AI policy decisions” in California that “ensures these powerful technologies benefit society globally while reasonably managing emerging risks.” This initiative was established by California Governor Gavin Newsom in September 2024 following the veto of the Safe & Secure Innovation for Frontier AI Models Act (SB 1047).

Background and Context

The Working Group builds on California’s partnership with Stanford University and the University of California, Berkeley, as established by Governor Newsom’s 2023 Executive Order on generative AI. The report underscores that foundation model capabilities have rapidly improved since the veto of SB 1047 and emphasizes the unique opportunity California has to shape AI governance, which “may not remain open indefinitely.”

Key Components for Foundation Model Regulation

The report identifies several critical components for effective regulation of foundation models:

Transparency Requirements

The report finds that foundation model transparency requirements are a “necessary foundation” for AI regulation. It recommends that policymakers prioritize public-facing transparency to advance accountability. The report specifically suggests transparency requirements focusing on five categories of information:

  1. Training data acquisition
  2. Developer safety practices
  3. Developer security practices
  4. Pre-deployment testing by developers and third parties
  5. Downstream impacts, including disclosures from entities that host foundation models for download or use

Third-Party Risk Assessments

Recognizing that transparency alone may be insufficient, the report emphasizes the need for third-party risk assessments. These assessments are deemed essential to create incentives for developers to enhance model safety. The report advocates for establishing safe harbors that indemnify public interest safety research and recommends routing mechanisms for swiftly communicating identified vulnerabilities to developers and affected parties.

Whistleblower Protections

The necessity for whistleblower protections for employees and contractors of foundation model developers is also highlighted. The report advises policymakers to consider protections that cover a broader range of AI developer activities, such as failures to adhere to a company’s AI safety policy, even if reported conduct does not violate existing laws.

Adverse Event Reporting Requirements

The report identifies adverse event reporting as a “critical first step” in assessing the costs and benefits of AI regulation. It recommends that foundation model reporting systems:

  1. Provide reports to relevant agencies with the authority to address identified harms, with discretion to share anonymized findings with industry stakeholders.
  2. Use initially narrow adverse event reporting criteria focused on a tightly-defined set of harms that can be revised over time.
  3. Adopt a hybrid approach combining mandatory reporting requirements for critical “parts of the AI stack” with voluntary reporting from downstream users.

Foundation Model Regulation Thresholds

Various options for defining thresholds that would trigger foundation model requirements are assessed, including:

  • Developer-level thresholds (e.g., a developer’s employee headcount)
  • Cost-level thresholds (e.g., compute-related costs of model training)
  • Model-level thresholds based on performance on key benchmarks
  • Impact-level thresholds based on the number of commercial users of the model

The report finds that “compute thresholds,” such as the EU AI Act’s threshold of 1025 floating-point operations per second (FLOPS) for model training, are currently the most attractive cost-level thresholds that should be used in combination with other metrics. Caution is advised against customary developer-level metrics, such as employee headcount, which do not consider the specifics of the AI industry and its associated technology.

Legislative Implications

The ongoing public comment process and the report will inform lawmakers as they consider AI legislation during the 2025 legislative session. This includes SB 53, a foundation model whistleblower bill introduced by Senator Wiener. Other states, including Colorado, Illinois, Massachusetts, New York, Rhode Island, and Vermont, are also considering foundation model legislation. For example, the New York Responsible AI Safety & Education (RAISE) Act would impose transparency, disclosure, documentation, and third-party audit requirements on certain developers of AI models meeting its compute and cost thresholds.

The Working Group is actively seeking public input on the report, with responses due by April 8, 2025. The final version of the report is expected to be released by June 2025, ahead of the California legislature’s adjournment in September.

More Insights

A fortress

Enhancing AI Safety through Responsible Alignment

August 17, 2025 AI,AI Ethics,AI Governance,AI Safety Regulations
The post discusses the development of phi-3-mini in alignment with Microsoft's responsible AI principles, focusing on safety measures such as post-training safety alignment and red-teaming. It...
Read More
A digital blueprint of a manufacturing plant

Mastering Sovereign AI Clouds in Intelligent Manufacturing

August 17, 2025 AI,AI Governance,Regulatory Compliance
Sovereign AI clouds provide essential control and compliance for manufacturers, ensuring that their proprietary data remains secure and localized. As the demand for AI-driven solutions grows, managed...
Read More
A tree with data branches

Empowering Ethical AI in Scotland

August 17, 2025 AI,AI Ethics,Ethical AI
The Scottish AI Alliance has released its 2024/2025 Impact Report, showcasing significant progress in promoting ethical and inclusive artificial intelligence across Scotland. The report highlights...
Read More
A compass illustrating guidance and direction in navigating AI legislation.

EU AI Act: Embrace Compliance and Prepare for Change

August 17, 2025 AI,AI Regulation,European Union AI Governance,Regulatory Frameworks
The recent announcement from the EU Commission confirming that there will be no delay to the EU AI Act has sparked significant reactions, with many claiming both failure and victory. Companies are...
Read More
A shield

Exploring Trustworthiness in Large Language Models Under the EU AI Act

August 16, 2025 AI,EU AI Compliance
This systematic mapping study evaluates the trustworthiness of large language models (LLMs) in the context of the EU AI Act, highlighting their capabilities and the challenges they face. The research...
Read More
A roadblock sign

EU AI Act Faces Growing Calls for Delay Amid Industry Concerns

August 16, 2025 AI,AI Regulation Awareness,EU AI Compliance,Regulatory Framework
The EU has rejected calls for a pause in the implementation of the AI Act, maintaining its original timeline despite pressure from various companies and countries. Swedish Prime Minister Ulf...
Read More
A puppet on strings

Tightening AI Controls: Impacts on Tech Stocks and Data Centers

August 16, 2025 AI,AI Governance,AI Regulation,Regulatory Framework
The Trump administration is preparing to introduce new restrictions on AI chip exports to Malaysia and Thailand to prevent advanced processors from reaching China. These regulations could create...
Read More
A compass

AI and Data Governance: Building a Trustworthy Future

August 16, 2025 AI,AI Governance,Data Security,Regulatory Compliance
AI governance and data governance are critical for ensuring ethical and reliable AI solutions in modern enterprises. These frameworks help organizations manage data quality, transparency, and...
Read More
A shield with a digital interface

BRICS Calls for UN Leadership in AI Regulation

August 15, 2025 AI,AI Governance,AI Regulation,Global AI Policy
In a significant move, BRICS nations have urged the United Nations to take the lead in establishing global regulations for artificial intelligence (AI). This initiative highlights the growing...
Read More