State guide
AI Regulations in Colorado
2 regulations tracked. 1 in effect. 1 upcoming.
Overview
Colorado has 2 AI-related regulations tracked by XIRA (1 in effect, 1 upcoming), including Colorado ADMT / AI Act (SB 26-189), which carries a strong compliance footprint. Coverage spans AI-specific laws and privacy and automated decision-making rules. The strongest severity rating in this set is High. The next deadline is January 1, 2027.
Regulations in Colorado
- Colorado ADMT / AI Act (SB 26-189)
Colorado SB 26-189 repeals and reenacts SB 24-205 into an automated decision-making technology (ADMT) framework for consequential decisio...
AI-specificHighEnacted (pending)Effective
- Colorado Privacy Act (CPA profiling and ADM)
Colorado profiling rules define three tiers: Solely Automated Processing, Human Reviewed Automated Processing, and Human Involved Automat...
Privacy ADMHighIn effectEffective
Obligation summary
How often each obligation type appears across these regulations.
| Obligation | Count |
|---|---|
| ADM impact assessment required | 1 |
| Consumer opt-out required | 1 |
| AI interaction disclosure required | 1 |
| Data access and correction rights required | 1 |
| Developer documentation required | 1 |
| Developer material-update notice required | 1 |
| Human review and reconsideration required | 1 |
| Point-of-interaction ADMT notice required | 1 |
| Post-adverse-outcome disclosure required | 1 |
| Profiling disclosure required | 1 |
| Record-keeping required | 1 |
Key dates
- July 1, 2024 · Colorado Privacy Act (CPA profiling and ADM)
- January 1, 2027 · Colorado ADMT / AI Act (SB 26-189)
Compare Colorado with other states
Federal guidance also matters
In addition to Colorado-specific laws, federal guidance from FTC, EEOC, and NIST can shape how regulators evaluate your AI practices.
See how Colorado's regulations affect your company
Run the free scan and start with Colorado pre-selected.
Start your free scan