nudgecompliant
Global compliance guide

US Technology Compliance Hub

Plain English guide to tech regulation in the US — updated July 2026

Start your free US compliance audit

US businesses can also fall under the EU AI Act

If your business places AI on the EU market, deploys it in EU operations, or produces AI output that is used in the EU, the EU AI Act can apply even though your company is based in the US.

See our EU regulations hub for details →

1. California AB 2013

What it is
Training-data transparency rules for developers of generative AI systems made publicly available in California.
Who it applies to
Developers of covered generative AI systems, rather than ordinary businesses using third-party AI tools.
Key deadlines
Disclosure duties took effect on 1 January 2026.
Penalties for non-compliance
Enforcement and remedies depend on the statutory breach and action taken by California authorities.

Not sure if this applies to you? The free audit takes 4 minutes.

Find out where you stand →

2. Texas HB 149

What it is
The Texas Responsible Artificial Intelligence Governance Act, covering prohibited uses, government systems, and certain disclosures.
Who it applies to
People and organisations developing or deploying AI systems in Texas, subject to statutory exemptions.
Key deadlines
The Act took effect on 1 January 2026.
Penalties for non-compliance
Civil penalties vary by violation and can increase for continuing breaches.

Not sure if this applies to you? The free audit takes 4 minutes.

Find out where you stand →

3. Colorado SB 205

What it is
Risk-management, impact-assessment, notice, and anti-discrimination duties for high-risk AI used in consequential decisions.
Who it applies to
Developers and deployers of high-risk AI affecting employment, finance, housing, education, healthcare, and similar decisions.
Key deadlines
The effective date has been subject to legislative amendment; confirm the current Colorado commencement timetable before relying on it.
Penalties for non-compliance
The Attorney General can enforce violations through Colorado consumer-protection law.

Not sure if this applies to you? The free audit takes 4 minutes.

Find out where you stand →

4. Federal AI Executive Orders

What it is
Federal policy directions for agencies, procurement, national security, infrastructure, and AI innovation. Executive Order 14110 was revoked in 2025.
Who it applies to
Primarily federal agencies and contractors; private-sector effects often arise through procurement, sector rules, or later agency action.
Key deadlines
Agency-specific dates vary under the executive orders and implementing guidance currently in force.
Penalties for non-compliance
Executive orders do not create a single general AI fine; consequences come through contracts and applicable agency law.

Not sure if this applies to you? The free audit takes 4 minutes.

Find out where you stand →

5. NIST AI Risk Management Framework

What it is
A voluntary framework for governing, mapping, measuring, and managing AI risk.
Who it applies to
Any organisation designing, deploying, buying, or overseeing AI systems.
Key deadlines
No legal deadline; adoption is continuous and may be required by customers or contracts.
Penalties for non-compliance
No direct penalty because the framework is voluntary.

Not sure if this applies to you? The free audit takes 4 minutes.

Find out where you stand →

6. State privacy laws

What it is
Consumer privacy regimes including California's CCPA/CPRA, Virginia's VCDPA, and laws in a growing number of states.
Who it applies to
Businesses meeting each state's revenue, processing-volume, or data-sale thresholds.
Key deadlines
Effective dates and cure periods differ by state; privacy notices and request processes must remain current.
Penalties for non-compliance
State attorneys general and, in limited cases, individuals can seek penalties or damages that vary by state.

Not sure if this applies to you? The free audit takes 4 minutes.

Find out where you stand →

Operating across borders?

Operating across multiple jurisdictions? NudgeCompliant maps your obligations across all of them in one audit.

Start your free US compliance audit

Related regulation hubs

This guide is for information only — not legal advice. Requirements change, so confirm critical decisions with a qualified professional.

Find out where you stand. About 4 minutes.

Tell us what technology you use and where you operate. Get a plain-English readout of what matters — and what doesn't.

Check my tools →

No account. No card. Start with the obligations that matter now.