Yes. Colorado SB 24-205 explicitly classifies AI systems used in insurance underwriting and claims decisions as high-risk, requiring impact assessments, consumer notification, and appeal rights. The Colorado Division of Insurance has issued additional guidance requiring carriers to demonstrate that AI underwriting models do not produce unfairly discriminatory outcomes. Multiple other state insurance departments — including California, New York, and Illinois — have issued AI guidance bulletins, and the NAIC has adopted model AI governance principles that many states are incorporating into their regulatory frameworks.
Applicable Regulations
First comprehensive US state law governing high-risk AI systems. Signed May 17, 2024; compliance deadline extended to June 30, 2026 by SB 25B-004. Imposes obligations on both developers and deployers of AI systems that make or substantially influence consequential decisions affecting consumers.
Key Requirements
Impact Assessment Complete documented impact assessments annually and within 90 days of substantial modifications, covering discrimination risks, data inputs/outputs, and mitigation measures
Consumer Notice Notify consumers when a high-risk AI system makes or substantially influences a consequential decision about them
Correction & Appeal Rights Allow consumers to correct inaccurate personal data and appeal adverse decisions through human review where technically feasible
Developer Disclosure Developers must publish statements describing high-risk systems and discrimination risk management, and supply deployers documentation for impact assessments
Effective: 2026-06-30 Penalties: Enforcement by Colorado Attorney General. Violations treated as deceptive trade practices under the Colorado Consumer Protection Act.
Industry Context
Insurance Brokers
Insurance brokers and agents who use AI tools for underwriting support, client risk assessment, claims processing, and policy recommendation.
Typical Compliance Gaps
No AI governance policy for underwriting tools
Lack of human oversight in AI-driven coverage recommendations
No documentation of AI vendor risk assessments
Unaware of AI exclusion endorsements in own E&O coverage
Related Questions
- Does Colorado require AI impact assessments? Yes. Colorado SB 24-205 requires deployers of high-risk AI systems to complete impact assessments before deployment and annually thereafter.
- What AI rules apply to financial services in Colorado? Colorado SB 24-205 explicitly classifies AI systems that make or substantially influence lending, credit underwriting, or insurance decisions as high-risk systems. Financial services firms deploying such AI in Colorado must: conduct algorithmic impact assessments before deployment and annually; notify consumers when AI influences a consequential financial decision; provide a written explanation of the decision factors; and maintain an accessible appeal process. The Colorado Division of Insurance has also issued separate AI guidance for insurance carriers specifically addressing algorithmic underwriting and claims systems.
Disclaimer: This content is provided for informational purposes only and does not constitute legal advice. AI regulations and insurance policy terms change frequently. Consult with a qualified attorney or insurance professional for advice specific to your situation. Gridex makes no warranties regarding the accuracy or completeness of this information.