What is the California ADT AI Law? A Guide to California AB 2930 (Formerly California AB 331)

High-Level Summary

AB 2930, formerly Assembly Bill 331, is a legislative proposal introduced in California to regulate the use of automated decision tools (ADTs) to prevent algorithmic discrimination.

The core requirements of the bill are to:

• Prohibit algorithmic discrimination through the regulation of ADTs
• Mandate impact assessments for ADTs
• Ensure transparency and accountability
• Impose governance requirements on both developers and deployers of ADTs
• Prevent unjustified differential treatment based on protected characteristics
• Ensure fair use of AI in making consequential decisions

California Assembly Bill 2930 defines ADTs as systems that use AI to make or significantly influence consequential decisions that impact individuals’ lives in areas such as:

• employment
• education
• housing
• health care
• financial services
• essential utilities
• family planning
• the criminal justice system
• legal services
• voting
• and access to benefits or services

Scope

AB 2930 applies to both developers and deployers of automated decision tools (ADTs).

Developers are responsible for creating and modifying ADTs, while deployers are entities that use these tools to make or significantly influence consequential decisions affecting individuals.

Compliance Requirements of AB 2930

The compliance requirements of AB 2930 include:

1. Impact Assessments: Both developers and deployers must perform annual impact assessments on ADTs, detailing the purpose, intended benefits, and potential adverse impacts of the tools.
2. Governance Programs: Deployers must establish governance programs to manage risks associated with ADTs, including designating responsible personnel, implementing safeguards, and conducting annual reviews.
3. Transparency and Notification: Deployers must notify individuals when an ADT is used to make a consequential decision, providing information about the tool’s purpose and use.
4. Public Policy Disclosure: Both developers and deployers must make publicly available a clear policy summarizing the types of ADTs in use and how risks are managed.
5. Mitigation of Algorithmic Discrimination: Developers and deployers must address and mitigate any identified risks of algorithmic discrimination before using or making ADTs available.

Non-Compliance Penalties

Non-compliance with AB 2930 can result in administrative fines of up to $10,000 per violation, which can be recovered through administrative enforcement actions brought by the Civil Rights Department.

Additionally, civil penalties of $25,000 per violation can be imposed for cases involving algorithmic discrimination.

Status

As of the latest update, California AB 2930 is under consideration by the legislature.

The bill has passed the Assembly and is currently being reviewed by the Senate Judiciary Committee.

How Can Companies Ensure Compliance with AB 2930?

Drawing from our ongoing work in AI governance and responsible AI, we’ve observed how leading organizations are adapting to California’s AI regulation.

To implement California’s AI Policy Act requirements, companies should:

1. Conduct Impact Assessments: Regularly perform detailed assessments of AI tools to identify potential risks and adverse impacts.
2. Establish Governance Programs: Develop comprehensive governance programs that include risk management strategies, designate responsible personnel, and implement safeguards.
3. Ensure Transparency: Notify individuals when AI tools are used in consequential decisions, providing clear and accessible information about the tools’ purposes and impacts.
4. Develop Public Policies: Make publicly available policies that summarize AI tools in use and how associated risks are managed.
5. Monitor Compliance: Stay updated with regulatory changes and ensure ongoing compliance with all requirements to avoid penalties and maintain ethical AI practices.