Disclaimer: This page provides general informational summaries only and does not constitute legal advice. AI-generated content may contain errors. Always consult a qualified attorney for guidance specific to your situation.
Read full disclaimer →
AI Summary
SB468 mandates that businesses deploying high-risk AI systems must protect personal information through a comprehensive security program.
Business Impact
If you deploy high-risk AI systems in California, you must implement a comprehensive information security program by January 1, 2026, or face penalties.
What do these statuses mean? ▼
Introduced
— Filed in the legislature; not yet heard in committee
In Committee
— Assigned to and being reviewed by a legislative committee
Passed
— Approved by one or both chambers; awaiting further action
Signed / Enacted
— Signed into law by the governor; may or may not be in effect yet
Dead / Vetoed
— Vetoed, failed to pass, or session expired without action
Unknown
— Status data not yet available or awaiting classification
Affected Industries
Topics How we classify →
What This Means
Senate Bill 468 establishes a legal framework for the protection of personal information processed by high-risk artificial intelligence systems in California. It requires businesses to develop and maintain a comprehensive information security program. This legislation aims to enhance consumer privacy rights and ensure that AI systems are deployed responsibly.
Key Provisions
- Covered deployers must maintain a comprehensive information security program.
- The program must include safeguards consistent with state and federal laws.
- Regular monitoring and employee training on data security are required.
- Violations constitute a deceptive trade act under the Unfair Competition Law.
- The California Privacy Protection Agency can adopt regulations to implement this bill.
- The bill aims to enhance consumer privacy rights related to AI.
Latest Legislative Action
Returned to Secretary of Senate pursuant to Joint Rule 56.
Bill Sponsors
| Name | Role | District |
|---|---|---|
| Josh Becker D | Sponsor | SD-013 |
Roll Call Votes
S ·
Placed on suspense file ·
May 5, 2025
7 Yea
0 Nay
Passed ✓
S ·
Do pass, but first be re-referred to the Committee on [Appropriations] ·
Apr 22, 2025
11 Yea
0 Nay
2 Other
Passed ✓
Compliance Checklist
Develop and implement a comprehensive information security program
Who: Covered deployers of high-risk AI systems
Deadline: By January 1, 2026
Penalty: Civil penalties under the Unfair Competition Law
Who: Covered deployers of high-risk AI systems
Deadline: By January 1, 2026
Penalty: Civil penalties under the Unfair Competition Law
Conduct regular risk assessments and employee training
Who: Covered deployers
Deadline: Ongoing, with annual reviews
Penalty: Civil penalties for non-compliance
Who: Covered deployers
Deadline: Ongoing, with annual reviews
Penalty: Civil penalties for non-compliance
Full Legal Analysis
Senate Bill 468 imposes a duty on businesses that deploy high-risk artificial intelligence systems to protect personal information. Covered deployers must develop, implement, and maintain a comprehensive information security program that includes administrative, technical, and physical safeguards tailored to their business size and data handling practices. The bill outlines specific requirements for these security programs, including employee training, risk assessments, and monitoring for unauthorized access. Non-compliance with these provisions is classified as a deceptive trade act under California's Unfair Competition Law, which could lead to civil penalties. The bill aligns with existing privacy laws, such as the California Consumer Privacy Act and the California Privacy Rights Act, reinforcing the state's commitment to consumer privacy and data protection.
Official Source
Official Bill Text
View SB468 on official legislature website →
Related Topics
Affected Industries
More California AI Legislation
SB59
Change of name or gender and sex identifier.
Low
SB348
State Air Resources Board: Low Carbon Fuel Standard.
Medium
AB976
Personal Income Tax Law: Corporation Tax Law: California Retail Secur…
Low
AB 1979
Health care services: artificial intelligence.
High
AB 2545
Report: labor force impact: artificial intelligence.
Medium
AB2545
Report: labor force impact: artificial intelligence.
Medium
View All CA Laws →
More California AI Laws
Browse all published AI bills and regulations for California.