Does the Colorado AI Act apply to a company that is not headquartered in Colorado?

Yes. The Act applies to any developer or deployer of a high-risk AI system that does business in Colorado or whose system makes consequential decisions affecting Colorado residents, irrespective of the entity's principal place of business. The trigger is the residency of the consumer subject to the consequential decision, not the domicile of the deployer.

Does NIST AI RMF compliance give a Colorado AI Act safe harbour?

Not a safe harbour. Section 6-1-1703(3) creates a rebuttable presumption that the deployer used reasonable care if the deployer's risk management policy is reasonable considering the latest NIST AI Risk Management Framework, ISO/IEC 42001, or another nationally or internationally recognised AI risk management framework, and the deployer otherwise complies with the Part. The presumption shifts the burden onto the Attorney General to rebut, but it can be rebutted on the facts.

How do California ADMT and the Colorado AI Act differ?

Colorado is sectoral: it binds developers and deployers of high-risk AI systems making consequential decisions in eight enumerated domains, on a duty-of-reasonable-care theory anchored to NIST AI RMF. California is privacy-rooted: the ADMT regulations sit inside the CCPA, draw their authority from CPRA § 1798.185(a)(15)–(16), and attach to any business using automated decision-making technology to make a significant decision concerning a consumer, irrespective of sector. They overlap on housing, employment, lending, education, and healthcare. Colorado prescribes a risk management policy. California prescribes pre-use notice, opt-out, and access rights running to the consumer.

Colorado AI Act + CCPA ADMT, line by line.

Q: What is algorithmic discrimination under the Colorado AI Act?

Section 6-1-1701 defines algorithmic discrimination as any condition in which the use of an artificial intelligence system results in unlawful differential treatment or impact that disfavors an individual or group on the basis of protected classifications such as age, colour, disability, ethnicity, genetic information, limited English proficiency, national origin, race, religion, reproductive health, sex, veteran status, or any other classification protected under Colorado or federal law. The Act lifts the existing Colorado anti-discrimination perimeter onto AI-mediated decisions.

Q: When does the California ADMT regulation actually trigger?

The CPPA-finalised ADMT regulations were approved by the Office of Administrative Law on 22 September 2025 and entered effect 1 January 2026. Substantive ADMT obligations — pre-use notice, opt-out right, access right, and the ADMT-specific risk assessment — phase in beginning 1 January 2027 for businesses that use ADMT to make a significant decision. Risk assessments for in-scope processing initiated before 1 January 2026 must be completed and documented no later than 31 December 2027, with the first attestation filing to the CPPA due 1 April 2028.

Q: What is the penalty for failing the Colorado risk-management policy obligation?

Section 6-1-1706 routes violations of the Part through the Colorado Consumer Protection Act as a deceptive trade practice. Civil penalties under CRS § 6-1-112 reach up to USD 20,000 per violation, with separate counting for each consumer harmed. The Attorney General has exclusive enforcement authority. There is no private right of action.

Q: Are large language models in scope of the Colorado AI Act?

Only when used as the substantial factor in a consequential decision. A general-purpose LLM by itself is not a high-risk AI system. An LLM wired into a recruitment screen, a credit decision, a tenant evaluation, or a health-coverage determination is. The deployer that puts the LLM in that pathway carries Section 6-1-1703 deployer obligations. The developer that trained or fine-tuned the model for that intended use carries Section 6-1-1702 developer obligations.

Q: How does this US sub-federal stack interact with the EU AI Act for a multi-jurisdiction product?

An AI agent serving Colorado, California, and EU residents inherits three concurrent regimes. EU AI Act Article 12 logging from 2 August 2026 (subject to the May 2026 Omnibus provisional deferral to 2 December 2027 pending OJEU) for Annex III high-risk uses. Colorado SB24-205 deployer obligations from 30 June 2026 if a consequential decision is involved. California ADMT obligations from 1 January 2027 if a significant decision is involved. The artefact pattern is one trace, three mappings — the single execution log carries the fields each regime addresses, and the regulator-facing evidence package projects the relevant subset.

01 · § 6-1-1702 · DUTY OF CARE

The Colorado duty of reasonable care.

On and after 30 June 2026, a developer of a high-risk artificial intelligence system shall use reasonable care to protect consumers from any known or reasonably foreseeable risks of algorithmic discrimination arising from the intended and contracted uses of the high-risk artificial intelligence system. Colorado Revised Statutes · § 6-1-1702(1) · paraphrased from SB24-205

One sentence carries the regime. Reasonable care is the operative duty. It runs to any known or reasonably foreseeable risk, not just realised harm. Algorithmic discrimination is a defined term and not a colloquialism. The duty attaches to the developer in § 6-1-1702 and to the deployer in § 6-1-1703 in parallel construction.

The enforcement architecture telescopes. § 6-1-1706 routes a breach of the Part through the Colorado Consumer Protection Act. § 6-1-112 of that Act caps civil penalties at USD 20,000 per violation. Three steps from one duty in § 6-1-1702 to a per-consumer civil penalty in front of the Colorado Attorney General.

"The duty is reasonable care. The standard the Attorney General will read it against is the latest NIST AI RMF. Everything between is engineering."Warrant Compliance · 2026-05-09

The defined term consequential decision sits at § 6-1-1701 and scopes the entire Part. A consequential decision is a decision that has a material legal or similarly significant effect on the provision or denial to any consumer of, or the cost or terms of, eight enumerated categories. Anything outside those eight is outside the Act. Anything inside, where the AI system is the maker or substantial factor, is high-risk.

§ 1701

Definitions. High-risk AI system, consequential decision, algorithmic discrimination, developer, deployer. SCOPE · the definitional choke-point. Read this section first or the rest of the Part is unintelligible.

§ 1702

Developer duty to avoid algorithmic discrimination. Disclosure to deployer. AG notice within ninety days. SCOPE · the upstream obligation. Anyone who builds, fine-tunes, or substantially modifies the system.

§ 1703

Deployer duty to avoid algorithmic discrimination. Risk management policy. Annual impact assessment. AG notice. SCOPE · the downstream obligation. The entity placing the consequential decision.

§ 1704

Disclosure of an artificial intelligence system to consumer. Consumer right to correct and to appeal via human review where technically feasible. SCOPE · the consumer-facing obligation. Pre-decision notice. Adverse-action explanation. Right to appeal.

§ 1705

Public statements by deployer and developer summarising the high-risk AI systems they have deployed or made available. SCOPE · the public-transparency obligation. The 2024 statute's analogue to the EU AI Act Article 71 public registry.

§ 1706

Enforcement by the Attorney General. Violation is a deceptive trade practice. No private right of action. SCOPE · the enforcement perimeter. Exclusive AG authority, civil penalties, deceptive-trade-practice route.

§ 1707

Rule-making authority of the Attorney General. Procedures, recognised frameworks, technical standards. SCOPE · the delegation. The substantive rules expanding the Part live here. Rulemaking is in progress in 2026.

02 · HIGH-RISK SYSTEM DEFINITION

What counts as a high-risk AI system.

Colorado defines the term twice over. The first move is the noun. A high-risk artificial intelligence system means any artificial intelligence system that, when deployed, makes, or is a substantial factor in making, a consequential decision. The second move scopes consequential decision to a closed list.

The closed list, drawn from § 6-1-1701, covers a decision that has a material legal or similarly significant effect on the provision or denial to any consumer of, or the cost or terms of, eight categories. Education enrolment or an education opportunity. Employment or an employment opportunity. A financial or lending service. An essential government service. Healthcare services. Housing. Insurance. A legal service. The list is exhaustive in the sense that the duty does not attach outside it.

Compare to the EU AI Act Annex III, which enumerates eight broadly parallel use cases, but Colorado's list and Annex III are not co-extensive. Colorado includes legal services, which is not an Annex III line. Annex III includes critical infrastructure, biometric identification, law-enforcement, migration and border control, and administration of justice — all outside the Colorado perimeter. Substantially similar but not identical. A system high-risk under one regime is not automatically high-risk under the other.

CO COVERED DOMAINS

Education, employment, financial services, government services, healthcare, housing, insurance, legal services. § 6-1-1701.

EU ANNEX III AREAS

Biometrics, critical infrastructure, education, employment, essential services, law enforcement, migration, justice. Reg. 2024/1689.

The Colorado statute carves out specific technologies that, on their own, are not high-risk. § 6-1-1701 names anti-fraud technology that does not use facial recognition, anti-malware, anti-virus, AI-enabled video games, calculators, cybersecurity, databases, data storage, firewalls, internet domain registration, internet website loading, networking, spam filters, spell-checking, spreadsheets, web caching, and web hosting. The carve-out is for component technologies. The minute the spell-checker is wrapped into a recruitment screen, the wrapper is the high-risk system, not the spell-checker.

03 · DEVELOPER OBLIGATIONS

Developer obligations under § 6-1-1702.

The developer is the entity that does business in Colorado and that develops or intentionally and substantially modifies an artificial intelligence system. The duty is reasonable care to protect consumers from known or reasonably foreseeable risks of algorithmic discrimination.

The duty is operationalised through three concrete obligations. Documentation handed to the deployer. A statement of the high-risk system's purpose, intended benefits, intended uses, reasonably foreseeable harms, training data summary, performance evaluation summary, mitigations applied, and the data governance measures in place. Public summary on the developer's website describing the kinds of high-risk systems the developer has placed and how the developer manages known and foreseeable risks. Notice to the Attorney General within ninety days of discovery, or receipt of a credible report, that the system has caused or is reasonably likely to have caused algorithmic discrimination.

The ninety-day clock is not the EU AI Act's serious incident clock. EU Article 73 runs to fifteen days for ordinary serious incidents and as short as two days for incidents involving widespread infringement or critical infrastructure. Colorado's clock is generous by comparison. It is also a one-way ratchet — once the developer knows, the clock starts, and the only stop is filing.

§ 1702(2)

Disclosure to deployer. Statement summarising purpose, uses, harms, data governance, mitigations. ARTEFACT · a developer-facing transparency report. Mandatory upon making the system available.

§ 1702(4)

Public statement on the developer's website summarising the high-risk systems made available. ARTEFACT · a public register of high-risk systems with risk-management description.

§ 1702(5)

Attorney General notice within ninety days of discovery of algorithmic discrimination. ARTEFACT · a filed disclosure. The AG's filing form is to be set by rule under § 6-1-1707.

04 · DEPLOYER OBLIGATIONS

Deployer obligations under § 6-1-1703.

The deployer is the entity that does business in Colorado and that deploys a high-risk artificial intelligence system. The duty is the same — reasonable care against known or reasonably foreseeable algorithmic discrimination — but the operational obligations are different.

§ 6-1-1703(2) prescribes four artefacts. A risk management policy and program. An annual impact assessment. Consumer-facing notice that a high-risk AI system is being used to make, or is a substantial factor in making, a consequential decision concerning the consumer. An adverse-action explanation with the consumer's right to correct and the right to appeal via human review where technically feasible.

RISK POLICY

A written policy and program governing the deployment, identifying and mitigating known or foreseeable algorithmic discrimination risks. § 6-1-1703(2).

IMPACT ASSESSMENT

Annual, plus on substantial modification. Purpose, beneficial uses, foreseeable harms, mitigation, data quality, performance, post-deployment review. § 6-1-1703(3).

CONSUMER NOTICE

Pre-decision notice. Adverse-action explanation with reasons, AI contribution, data sources, opportunity to correct and appeal. § 6-1-1704.

AG NOTICE

Within ninety days of discovery of algorithmic discrimination. § 6-1-1703(7).

§ 6-1-1703(6) carries a small-deployer exemption. A deployer with fewer than fifty full-time-equivalent employees is excused from the risk management policy, the impact assessment, and the public-statement obligations only if the deployer does not use its own data to train the high-risk system, uses the system solely for the purposes the developer disclosed, and makes the developer's impact assessment available to consumers. The duty of reasonable care, the consumer notice, the adverse-action explanation, and the AG notice all remain in force regardless of headcount.

05 · § 6-1-1703 · RISK POLICY + IMPACT

Risk management policy and the NIST AI RMF anchor.

The risk management policy and program implemented pursuant to subsection (2) of this section shall be reasonable considering the guidance and standards set forth in the latest version of the Artificial Intelligence Risk Management Framework published by the National Institute of Standards and Technology, Standard ISO/IEC 42001 of the International Organization for Standardization, or another nationally or internationally recognized risk management framework for artificial intelligence systems. Colorado Revised Statutes · § 6-1-1703(3) · paraphrased from SB24-205

NIST AI RMF is named in the statute. ISO/IEC 42001 is named in the statute. The third leg — another nationally or internationally recognized risk management framework — is left for the Attorney General's rules under § 6-1-1707 to enumerate. That is where additional frameworks like the OECD AI Principles, the Singapore Model AI Governance Framework, or the EU AI Act conformity-assessment process may be lifted in.

§ 6-1-1703(3) creates a rebuttable presumption. In any enforcement action by the Attorney General, the deployer is presumed to have used reasonable care if the risk management policy and program is reasonable considering one of the named frameworks and the deployer otherwise complies with the Part. The presumption is not a safe harbour. It shifts the burden onto the AG to rebut on the facts. A policy that names NIST on the cover page and is implemented nowhere does not raise the presumption.

The annual impact assessment, prescribed by § 6-1-1703(3), must include the system's purpose and intended use, an analysis of whether deployment poses any known or reasonably foreseeable risks of algorithmic discrimination, the data inputs, the outputs the deployer relied on, the metrics used to evaluate performance and mitigations, the post-deployment monitoring measures, and the user safeguards. The deployer keeps the assessment for at least three years following the final deployment of the system.

NIST AI RMF mapped to Warrant trace fieldsSEE · /blog/nist-ai-rmf

→ /blog/nist-ai-rmf

The cross-reading is straightforward. NIST AI RMF function GOVERN sits underneath the risk management policy. NIST function MAP sits underneath the impact assessment. NIST function MEASURE sits underneath the performance metrics. NIST function MANAGE sits underneath the mitigation actions and the post-deployment monitoring. The full per-function reading is in entry № 18.

06 · CPRA GRANT

The CPRA grant in § 1798.185(a)(15) and (16).

California's Automated Decision-making Technology rules do not sit in primary statute. They sit in regulations. The regulations are issued by the California Privacy Protection Agency under a delegation from the legislature in California Civil Code § 1798.185.

§ 1798.185(a)(15) directs the CPPA to issue regulations governing access and opt-out rights with respect to businesses' use of automated decision-making technology, including profiling. § 1798.185(a)(16) directs regulations on cybersecurity audits. § 1798.185(a)(14) sets up annual risk assessments where processing presents significant risk to consumers' privacy or security. The trio — ADMT regulations, cybersecurity audits, risk assessments — is the package the CPPA Board adopted on 24 July 2025 and the Office of Administrative Law approved on 22 September 2025.

The package took effect 1 January 2026. Substantive ADMT compliance phases in 1 January 2027 for businesses using ADMT to make significant decisions. Risk-assessment processing initiated before 1 January 2026 must be assessed and documented no later than 31 December 2027. The first attestation filing to the CPPA covering 2026 and 2027 risk assessments is due 1 April 2028. The compliance calendar is staggered, but the legal effective date is one date.

07 · ADMT COVERED USES

What ADMT actually covers.

The CPPA-finalised regulations define automated decision-making technology and bind it to a closed list of triggering uses. The most substantive trigger is a significant decision concerning a consumer.

A significant decision, in the regulations, is a decision that results in the provision or denial of financial or lending services, housing, education enrolment or opportunities, employment or independent contracting opportunities or compensation, or healthcare services. The five-category list overlaps Colorado's eight-category consequential-decision list on five lines. Lending, housing, education, employment, healthcare are common to both. Insurance, government services, and legal services are Colorado-only. Critical infrastructure, biometric identification, law enforcement, migration, and administration of justice are EU-only.

The regulations also reach extensive profiling — profiling a consumer in the context of work or educational performance, in publicly accessible places, or for behavioural advertising. The behavioural-advertising overlay attaches consumer rights even where no significant decision is being made.

The fourth trigger is using personal information to train an automated decision-making technology that the business intends to use to make a significant decision, conduct extensive profiling, or perform identification or biometric verification. This is the regulation's reach into model training. The training itself is the trigger, not the inference.

08 · ADMT CONSUMER RIGHTS

Consumer rights under the ADMT regulations.

The ADMT regulations layer three consumer rights on top of the standard CCPA right of access, right to delete, right to correct, right to know, and right to opt out of sale or share.

The first is pre-use notice. Before using ADMT for a significant decision, extensive profiling, or training-of-significant-ADMT, the business must provide a notice describing the business's use of the technology, the purpose, the consumer's rights with respect to it, and an explanation of how to exercise those rights.

The second is the opt-out right. Subject to enumerated exceptions — security, fraud detection, safety, performance of a service the consumer requested, and a narrow human-appeal exception where the business permits the consumer to appeal an adverse outcome to a qualified human reviewer — the consumer may direct the business to stop using ADMT to make the relevant significant decision.

The third is the access right. The consumer may request information about the business's use of ADMT with respect to the consumer, including a plain-language explanation of the logic of the ADMT, the role the ADMT outputs played in the decision, and the consumer's options to exercise other rights. The access right is a superset of the standard CCPA access right. The standard right reaches the personal information collected. The ADMT access right reaches the system's logic and output role.

09 · ADMT RISK ASSESSMENT

The ADMT risk-assessment requirement.

The risk-assessment regulations apply to processing that presents a significant risk to consumers' privacy or security. The regulations enumerate triggering activities, of which significant-decision ADMT use is one. Selling or sharing personal information, processing sensitive personal information, processing personal information of consumers under sixteen, and using personal information to train ADMT for significant decisions or extensive profiling are the others.

The assessment must, at minimum, identify the categories of personal information processed, the operational details of the processing, the purposes, the benefits, the negative impacts including potential to disparate-impact discrimination, the safeguards considered and the safeguards implemented, and a determination of whether the benefits outweigh the negative impacts. The assessment is signed off by an executive responsible for the processing. It is retained for as long as the processing continues plus five years.

The filing schedule. Risk assessments for processing initiated before 1 January 2026 that continues after that date must be conducted and documented no later than 31 December 2027. Assessments conducted in 2026 and 2027 must be filed with the CPPA via the abbreviated attestation form by 1 April 2028. Subsequent annual filings follow on 1 April of the following year. The substantive document stays internal. What goes to the CPPA is an attestation that the substantive document exists and a summary of in-scope activities.

10 · THREE-REGIME OVERLAP

One agent, three concurrent regimes.

Take an AI agent that scores credit applications. The applicants reside in Colorado, California, and Germany. The provider is a Delaware-domiciled subsidiary of an EU-headquartered group. The system is in production today.

EU AI Act Article 12 attaches on 2 August 2026 in the AI Act as enacted (subject to the May 2026 Omnibus provisional deferral to 2 December 2027 pending OJEU) because Annex III(5)(b) covers credit scoring. Article 12 binds the provider to automatic event logging over the lifetime of the system. Article 99(4) caps the penalty at EUR 15 million or 3 percent of global turnover.

Colorado SB24-205 § 6-1-1703 attaches on 30 June 2026 — assuming no further delay — because credit scoring is a financial or lending service under § 6-1-1701. The deployer must run the risk management policy, conduct the annual impact assessment, file the AG notice on discovery of algorithmic discrimination, and provide the consumer-facing notice and adverse-action explanation under § 6-1-1704.

California ADMT obligations attach on 1 January 2027 because the financial or lending service is a significant decision. The business must give the pre-use notice, honour the opt-out, satisfy the ADMT access right, and have completed and filed the risk assessment by the calendar deadlines.

The artefact pattern is one trace, three projections. Entry № 19 walks through the multi-jurisdiction architecture in detail. The execution log is the same. What differs is which fields the regulator-facing evidence package projects, and which clock starts when.

11 · FIELD MAPPING

How Warrant maps the US sub-federal stack.

Obligation	Source	Warrant field
Reasonable care	CO § 6-1-1702 / 1703(1)	trace.actions[*].risk_assessment (deviation_from_intended_purpose, foreseeable_harm_flag, mitigation_applied)
Risk policy	CO § 6-1-1703(2)–(3)	trace.governance.policy_id (NIST AI RMF or ISO 42001 anchor reference)
Impact assessment	CO § 6-1-1703(3)	trace.governance.impact_assessment_id (annual, plus substantial-modification trigger)
Consumer pre-decision notice	CO § 6-1-1704(1)	trace.consumer_notice.pre_decision (timestamp, content_hash)
Adverse-action explanation	CO § 6-1-1704(3)	trace.consumer_notice.adverse_action (principal_reasons, ai_contribution, data_sources, appeal_uri)
AG discovery notice	CO § 6-1-1702(5) / 1703(7)	trace.governance.ag_notice (discovery_ts, filed_ts, days_elapsed)
ADMT pre-use notice	CA Title 11 CCR (CPPA)	trace.consumer_notice.admt_pre_use (logic_summary, purpose, rights_uri)
ADMT opt-out	CA Title 11 CCR (CPPA)	trace.consumer_rights.opt_out_status (active, exception_invoked, human_appeal_route)
ADMT access	CA Title 11 CCR (CPPA)	trace.consumer_rights.access_response (logic_explanation, output_role, fulfilment_ts)
Risk assessment filing	CA § 1798.185(a)(14)	trace.governance.risk_assessment_id (filed_ts, attestation_form, calendar_year)

Sample US sub-federal evidence package · Warrant registerINDEPENDENTLY VERIFIABLE WITHOUT CONTACTING WARRANT

→ /v/sample-co-ca

12 · ENFORCEMENT SIGNALS

Enforcement and guidance signals, Q1–Q2 2026.

The Colorado AI Act has had a noisy first quarter of 2026. On 28 August 2025, Governor Polis signed SB 25B-004 in special session, postponing the SB24-205 effective date from 1 February 2026 to 30 June 2026. On 27 April 2026, the United States District Court for the District of Colorado granted a joint motion in xAI LLC v. Weiser to suspend case deadlines and stay enforcement. Under the order, the Colorado Attorney General is to refrain from initiating enforcement, including investigations, until fourteen days after the court rules on xAI's forthcoming preliminary-injunction motion.

On the rule-making track, the Attorney General's office has indicated it does not intend to promulgate substantive rules under § 6-1-1707 until the legislative session concludes. The Colorado General Assembly's 2026 regular session ended 13 May 2026. The practical implication is that, as of this writing, no substantive enforcement action under SB24-205 has been initiated, no rules under § 6-1-1707 have been finalised, and the duty in § 6-1-1702 / 1703 is on the calendar but stayed in front of one named federal court.

California is on the opposite trajectory. The CPPA package took effect 1 January 2026. Substantive ADMT obligations phase in 1 January 2027. As of May 2026 the agency has issued no public ADMT enforcement action — the substantive obligations are not yet operational. Cybersecurity-audit and risk-assessment substantive obligations have begun their phase-in for the largest covered businesses. The CPPA's enforcement division has signalled, in its 2025 and 2026 published materials, that the first wave of focused enforcement will track the staggered compliance dates.

The signals to read for the rest of 2026. The xAI preliminary-injunction ruling. The Colorado AG's first formal rulemaking notice under § 6-1-1707. The CPPA's first ADMT-related sweep, expected to follow the 1 January 2027 trigger. The window to engineer the artefact is the window before the first action lands. Today, in May 2026, that window is open in both states.

13 · FAQ

Questions a compliance officer asks first.

Does the Colorado AI Act apply to me if I am not Colorado-headquartered?

Yes. The Act applies to any developer or deployer of a high-risk AI system that does business in Colorado or whose system makes a consequential decision affecting a Colorado resident, irrespective of where the entity is headquartered. The trigger is the residency of the consumer subject to the consequential decision, not the domicile of the deployer.

What is algorithmic discrimination under the Colorado AI Act?

§ 6-1-1701 defines algorithmic discrimination as any condition in which the use of an artificial intelligence system results in unlawful differential treatment or impact that disfavours an individual or group on the basis of protected classifications under Colorado or federal law — including age, colour, disability, ethnicity, genetic information, limited English proficiency, national origin, race, religion, reproductive health, sex, and veteran status. The Act lifts the existing anti-discrimination perimeter onto AI-mediated decisions.

Does NIST AI RMF compliance give me Colorado AI Act safe harbour?

Not a safe harbour. § 6-1-1703(3) creates a rebuttable presumption that the deployer used reasonable care if the risk management policy is reasonable considering the latest NIST AI RMF, ISO/IEC 42001, or another nationally or internationally recognised AI risk management framework, and the deployer otherwise complies with the Part. The presumption shifts the burden onto the Attorney General to rebut. Naming NIST on the cover page of an unimplemented policy does not raise the presumption.

When does California ADMT regulation trigger?

The CPPA-finalised ADMT regulations were OAL-approved on 22 September 2025 and took effect 1 January 2026. Substantive ADMT obligations — pre-use notice, opt-out, access, and ADMT risk assessment — phase in beginning 1 January 2027 for businesses using ADMT to make a significant decision. Risk assessments for processing initiated before 1 January 2026 must be completed by 31 December 2027. The first CPPA attestation filing covering 2026 and 2027 risk assessments is due 1 April 2028.

How do California ADMT and Colorado AI Act differ?

Colorado is sectoral and binds developers and deployers of high-risk AI systems making consequential decisions in eight enumerated domains. California is privacy-rooted and binds any business using ADMT to make a significant decision in five overlapping domains. Colorado prescribes a risk management policy and impact assessment. California prescribes pre-use notice, opt-out, and access rights running directly to the consumer. The five overlapping domains are lending, housing, education, employment, and healthcare.

What is the penalty for failing the Colorado risk-management policy obligation?

§ 6-1-1706 routes violations through the Colorado Consumer Protection Act as a deceptive trade practice. Civil penalties under CRS § 6-1-112 reach up to USD 20,000 per violation, with separate counting per consumer. The Attorney General has exclusive enforcement authority. There is no private right of action. As of May 2026, enforcement is additionally stayed under the federal court order in xAI v. Weiser.

Are LLMs in scope of Colorado AI Act high-risk AI?

Only when they are the substantial factor in a consequential decision. A general-purpose LLM in isolation is not a high-risk AI system. An LLM wired into a credit-scoring engine, a recruitment screen, a tenant evaluation, or a health-coverage determination is. The deployer that puts the LLM in that pathway carries § 6-1-1703 obligations. The developer that trained or fine-tuned the model for that intended use carries § 6-1-1702 obligations.

How does this stack interact with the EU AI Act for a multi-jurisdiction product?

One AI agent serving Colorado, California, and EU residents inherits three concurrent regimes. EU AI Act Article 12 logging from 2 August 2026 (subject to the May 2026 Omnibus provisional deferral to 2 December 2027 pending OJEU) for Annex III high-risk uses. Colorado SB24-205 deployer obligations from 30 June 2026 if a consequential decision is involved. California ADMT obligations from 1 January 2027 if a significant decision is involved. The artefact pattern is one trace, three projections — the single execution log carries the fields each regime addresses, and the regulator-facing evidence package projects the relevant subset.

14 · READ THE SOURCE

Read the source directly.

Authored by Warrant Compliance, the regulatory-analysis function at Warrant. [email protected]. Editorial commentary on regulatory text. Not legal advice. Statutory paraphrases are drawn from the official enrolled text of Colorado SB24-205 as filed with the Colorado Secretary of State on 17 May 2024 and from the Final Statement of Reasons accompanying the CPPA's CCPA Updates regulations approved by the Office of Administrative Law on 22 September 2025.