On May 14, 2026, the Governor of Colorado signed into law a set of amendments to the Colorado AI Act, modifying obligations originally enacted in 2024 for developers and deployers of high-risk artificial intelligence systems. The revised statute marks one of the most consequential updates to state-level AI regulation to date and signals how legislatures may approach AI governance as federal preemption efforts continue to stall.
The amendments follow an extended period of legislative deliberation in Colorado, during which lawmakers worked to refine the compliance framework that governs how high-risk AI systems are developed, documented, and deployed within the state. The revised Act preserves the core structure of the 2024 law, which distinguishes between developers, who build and supply AI systems, and deployers, who integrate or use those systems in consequential decision-making. Both groups remain subject to obligations designed to mitigate algorithmic discrimination and to promote transparency, but the amendments adjust how those duties are structured and discharged.
For developers, the changes reshape expectations around documentation, disclosures to deployers, and the information that must accompany high-risk systems brought to market. For deployers, the revisions refine the contours of impact assessments, governance practices, and obligations owed to individuals affected by automated decisions. Taken together, the amendments are likely to require many businesses operating in Colorado to revisit existing AI governance programs, contractual allocations of responsibility between developers and deployers, and internal procedures for evaluating new AI tools.
The Colorado revisions arrive against a backdrop of accelerating state activity on AI. With federal preemption efforts stalled, multistate businesses face an increasingly fragmented patchwork of obligations. Companies that develop or deploy AI across state lines should expect continued divergence among jurisdictions, and should consider Colorado's approach a meaningful data point in shaping enterprise-wide compliance strategies. Early review of the revised statute, paired with a gap analysis against existing AI governance frameworks, will help organizations prepare for implementation and reduce the risk of inconsistent practices across affected business lines.
This article is intended for general informational purposes only and does not constitute legal advice. Clients with questions about how the revised Colorado AI Act applies to their specific circumstances should seek tailored guidance from qualified counsel.