AI Regulations US & Worldwide

As the development and use of AI accelerates across industries, global and national leaders are racing to implement responsible and enforceable AI regulations. These laws aim to mitigate potential harm while enabling innovation, particularly in sensitive sectors like education, publishing, and enterprise operations. From the EU AI Act to the AI Bill of Rights in the United States, the frameworks emerging today will define how AI is governed in 2025 and beyond.

In this piece, we’ll explore AI regulations worldwide and the evolving policy landscape in the United States, including how these laws are impacting business, education, and publishing. This page will be updated quarterly as new laws and guidance are introduced, so we recommend bookmarking it to stay current.

We’ll also highlight how tools like Copyleaks can help your organization stay compliant with the latest AI safety regulations, ensuring transparency, accountability, and responsible use of AI across your operations.

The Landscape of AI Regulations Around the World

AI safety regulations are not one-size-fits-all. Countries are developing their own approaches based on values, risk tolerance, and industry needs.

EU AI Act

The EU AI Act is the first comprehensive legal framework for artificial intelligence. Passed in 2024 and going into effect in 2025, it categorizes AI systems by risk level (unacceptable, high-risk, limited, and minimal risk) and restricts or bans those deemed most dangerous.

Businesses deploying high-risk applications—such as biometric identification, credit scoring, or hiring software—must adhere to strict compliance standards, including:

• Risk management systems
• Data governance and transparency requirements
• Human oversight obligations
• Registration in a public EU database

Non-compliance penalties reach up to €35 million or 7% of global annual turnover.

Spain’s Proposed AI Bill

Spain introduced its own AI regulatory framework in parallel with the EU AI Act. The bill emphasizes ethical development and state agency oversight, focusing on transparency, equality, and non-discrimination.

It proposes sanctions for violating data handling or algorithmic fairness protocols, reinforcing Spain’s position as an AI governance leader.

South Korea’s Basic Act on AI Advancement and Trust

South Korea’s Basic Act on AI promotes both advancement and accountability. While encouraging development through funding and infrastructure, it also introduces a trust system requiring that AI models meet ethical and privacy standards.

The law imposes penalties for high-risk misuse, including fines and system bans. It will roll out in phases starting in 2025, positioning South Korea as a global competitor in AI safety regulation.

Canada’s AIDA Bill

Canada’s Artificial Intelligence and Data Act (AIDA) regulates high-impact AI systems to prevent harm and promote accountability. The law defines high-impact systems and requires businesses to assess, document, and mitigate associated risks.

If passed, AIDA will give the federal government the power to impose penalties and conduct audits. You can track updates to the bill here.

The Evolving US Approach to AI Regulation

Unlike the EU, the United States is developing AI regulation through a decentralized approach, blending federal guidelines, executive orders, and state laws. This patchwork system makes compliance more complex and allows room for innovation.

National Artificial Intelligence Initiative Act of 2020

The National Artificial Intelligence Initiative Act (NAII) laid the groundwork for coordinated AI research and governance in the US. It established cross-agency collaboration, created national institutes, and encouraged private-public partnerships to advance trustworthy AI.

Bipartisan House Task Force on AI 2024

Formed in early 2024, the Bipartisan Congressional Task Force on AI is leading discussions on AI ethics, workforce disruption, and innovation policy. Its role is to guide Congress in developing smart, future-proof regulations to keep up with AI’s rapid pace.

Executive Orders (2023–2025)

Between 2023 and 2025, a series of presidential executive orders significantly shaped the trajectory of AI governance in the United States. These orders reflect a growing federal commitment to developing AI systems that are safe, equitable, and globally competitive, while balancing innovation with accountability.

Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (October 2023)

This landmark order laid the foundation for a coordinated national AI strategy. It directed federal agencies to adopt AI risk management practices—anchored in the NIST AI Risk Management Framework—and called for:

• Mandatory bias audits and red-teaming of high-risk AI models
• Increased investment in AI safety research and cybersecurity protections
• The development of reporting mechanisms for AI incidents and misuse
• Responsible procurement of AI tools by the federal government

This EO began a more structured federal role in overseeing AI systems and paved the way for further agency-specific actions.

AI Bill of Rights

Published by the White House Office of Science and Technology Policy, the AI Bill of Rights is not legally binding. Still, he outlines a de facto policy framework to guide ethical AI use. Its five core principles include:

1. Safe and effective systems
2. Algorithmic discrimination protections
3. Data privacy safeguards
4. Notice and explanation (transparent decision-making)
5. Human alternatives and fallback options

While it doesn’t enforce penalties, the AI Bill of Rights informs agency guidance and procurement practices, especially in education, healthcare, and employment sectors, where algorithmic decisions can profoundly affect individuals.

Biden’s 2025 Infrastructure and Cybersecurity Executive Orders

Two additional executive orders in early 2025 further cemented AI oversight in areas critical to national interest.

• The Infrastructure EO requires agencies to vet AI systems used in public transportation, utilities, and energy management for resilience, explainability, and safety.
  
• The Cybersecurity EO mandates the adoption of AI to identify and respond to threats across federal networks while also requiring that all AI used for national security be regularly tested for vulnerabilities, adversarial robustness, and backdoors.

Both orders emphasize cross-agency coordination, data sharing, and AI transparency as vital components of national resilience.

Removing Barriers to American Leadership in AI (2025)

This pro-innovation order streamlines the regulatory landscape to support U.S. leadership in generative AI, machine learning, and advanced computing. It calls for:

• Reducing outdated compliance burdens that delay AI adoption
• Harmonizing state and federal guidelines
• Enhancing talent pipelines and STEM workforce development
• Expanding public-private partnerships to accelerate AI research and commercialization

The order frames AI as a governance challenge and a national competitive advantage, signaling to global partners and the private sector that the U.S. is committed to leading responsibly.

State-Level Legislation

States are moving quickly, creating their own AI laws and policies:

• Colorado AI Act of 2024: Requires transparency and risk assessments for high-risk AI systems.
• Illinois Supreme Court AI Policy: Governs how AI is used in legal decisions and court operations.
• Many other states—from California to Massachusetts—are actively introducing AI bills. Full tracker available here.

How AI Regulation Impacts Enterprises

Enterprise organizations face mounting pressure to align with both domestic and global AI regulations. Non-compliance can lead to legal exposure, reputational harm, and operational friction.

• Compliance Issues: Businesses must navigate overlapping rules, incurring higher costs for legal counsel, documentation, and audits.
• Operational Implications: Regulations require revamping data governance, privacy policies, and cybersecurity frameworks.
• High-risk Use Audits: Organizations must assess AI systems for risk, especially when impacting hiring, credit, or healthcare.
• Third-Party Vendor Oversight: Partnering with a vendor like Copyleaks to implement enterprise compliance-focused tools helps mitigate downstream legal risks.

Related reading: AI Programming Is a New Compliance Headache for Enterprises

How AI Regulations Impact Educational Institutions

AI is transforming education, but also exposing institutions to complex compliance requirements:

• Global Frameworks: Regulations like the EU AI Act and AI Bill of Rights guide the safe use of educational AI.
• Privacy Concerns: Institutions must protect student data in line with FERPA, GDPR, and CCPA.
• Bias and Transparency: AI tools must explain how decisions are made, especially in grading or admissions.

See: Establishing AI Policies in Education: A Copyleaks Guide

How AI Regulations Impact Publishers

AI-generated content poses new challenges for copyright, ownership, and transparency.

• Who Owns AI Content?: Generative AI complicates copyright law. Some cases argue that AI training violates IP rights.
• Policy Updates: The EU AI Act, WIPO, and US Copyright Office are shaping evolving frameworks.
• Disclosure Requirements: Publishers must clearly label when content is AI-generated, or face legal consequences.
• Ethical Risks: Generative AI concerns misinformation, plagiarism, and content authenticity.

Dive deeper: Why We Need AI Governance Now

How Copyleaks Can Help

AI regulation is evolving fast, but Copyleaks helps organizations stay compliant, ethical, and informed.

Our AI governance and compliance tools support:

• Detection of AI-generated content and its likely source (AI Source Match)
• Bias transparency via AI Phrases
• Auditable reporting and documentation for legal and academic use
• Vendor trust with explainable, accurate detection results

Whether you’re managing AI systems in the classroom, newsroom, or enterprise, Copyleaks makes compliance manageable.