Colorado’s AI Act: Progress Amidst Controversy

The Colorado AI Act Shuffle: An Overview

The Colorado AI Act (Senate Bill 24-205) represents a significant step into the realm of AI regulation, aimed at addressing the risks posed by artificial intelligence (AI) and automated decision systems (ADS). This legislation is designed to safeguard against the potential pitfalls of AI in critical domains such as hiring, lending, and housing, while simultaneously promoting innovation.

Initial Challenges

Despite its ambitious goals, the rollout of the Colorado AI Act has faced numerous hurdles. Various industry groups have expressed concerns that the Act is overly rigid and vague, while consumer advocates argue that it fails to provide adequate protections. In response to these challenges, the Governor of Colorado established the Colorado Artificial Intelligence Impact Task Force, comprising policymakers, industry experts, and legal professionals tasked with evaluating the effectiveness of the law.

The Task Force’s Findings

After extensive discussions and analyses from August 2024 to January 2025, the Task Force released a report outlining its findings regarding the Colorado AI Act. The issues identified were categorized into four distinct groups:

1. Issues With Apparent Consensus on Proposed Changes

Some minor adjustments garnered universal support, including:

• Clarifying ambiguous AI-related definitions.
• Adjusting documentation requirements for developers and deployers to reduce unnecessary bureaucracy.

2. Issues Where Consensus on Changes Appears Achievable With Additional Time

Several significant concerns require further negotiation and detail, such as:

• Redefining “consequential decisions” to ensure the law targets genuinely high-risk AI applications without overreach.
• Fine-tuning exemptions to determine which entities should be subject to the law, balancing industry concerns with consumer protections.
• Timing and scope of AI impact assessments to establish practical compliance requirements.

3. Issues Where Consensus Depends on Implementation and Coordination

Some proposed changes are interconnected with broader provisions, necessitating comprehensive solutions. Key areas of focus include:

• Revising the definition of algorithmic discrimination without compromising consumer protections.
• Determining the data-sharing requirements for companies in relation to the attorney general.
• Aligning risk management obligations with practical implementation challenges.

4. Issues With Firm Disagreement

Several contentious issues remain unresolved, including:

• The “Duty of Care” Dilemma: Should AI developers have a formal obligation to prevent harm?
• The “Substantial Factor” Dilemma: What criteria should dictate which AI tools fall under regulation?
• The Small Business Exemption: Should startups with fewer than 50 employees be exempt from certain compliance requirements?
• The “Fix-It” Window: Should companies be allowed to rectify violations before enforcement actions are taken?
• The extent of the Attorney General’s rulemaking power in shaping AI regulation.

The Future of the Colorado AI Act

As it stands, the Colorado AI Act is poised for significant revisions. The Task Force’s report serves as a roadmap for legislative adjustments, starting with straightforward fixes and progressing toward compromises on more complex issues. The overarching message is clear: Colorado’s AI regulations are still evolving, and the discourse on how to effectively govern AI—while fostering innovation—has only just begun. This situation not only impacts Colorado but also serves as a test case for AI regulation across the United States, with implications for other states observing the process closely.