AAI Compliance Atlas
FrameworksState lawsIndustriesToolsNews
GuidesMap my obligations →
AAI Compliance Atlas

Structured, continuously verified reference for US AI compliance — federal frameworks, state laws, and the obligations that connect them.

Atlas

  • Frameworks
  • State laws
  • Industries
  • By role
  • Comparisons

Tools

  • Compliance Checker
  • Penalty Calculator
  • Impact Assessment

Resources

  • Guides
  • News
  • Blog

Company

  • About
  • Contact
  • Privacy
  • Terms
© 2026 AI Compliance Atlas. Informational only — not legal advice. Consult qualified counsel before making compliance decisions.Verified Jun 9, 2026
  1. Home/
  2. California/
  3. Transparency in Frontier Artificial Intelligence Act (TFAIA)/
  4. Compliance Checklist
In effectSB 53 (2025)

Transparency in Frontier Artificial Intelligence Act (TFAIA): Compliance Checklist

A practical checklist of the main obligations to satisfy under this law.

Compliance checklist

Run through these items to scope your obligations under Transparency in Frontier Artificial Intelligence Act (TFAIA). Not legal advice; verify with counsel before acting.

  1. Confirm scope: does the law apply to your operations? See Who Must Comply or use the Compliance Checker.
  2. Inventory in-scope AI systems and classify them by role (developer/deployer) and decision type.
  3. Address each obligation:
    • governance — Publish a written frontier AI safety framework describing how the developer assesses and mitigates catastrophic risks from frontier AI models, with periodic updates.Cal. Health & Safety Code § 22757.10
    • transparency — Publish a transparency report prior to deploying a new frontier AI model, summarizing pre-deployment assessments and mitigations.Cal. Health & Safety Code § 22757.10
    • documentation — Report critical safety incidents to the California Office of Emergency Services within statutory timeframes.Cal. Health & Safety Code § 22757.10
  4. Adopt a federal control framework: NIST AI RMF or ISO/IEC 42001 to demonstrate due care.
  5. Document evidence of compliance for each obligation, refreshed at the cadence the law requires.
  6. Build the AG-notification path if the law requires it (Colorado, California SB 53).
  7. Set the refresh cadence — annual for most impact-assessment regimes; continuous for monitoring.

Automate AI governance with OneTrust

partner link

Manage AI inventory, risk assessments, and policy enforcement across your organization. Used by hundreds of regulated enterprises.

See OneTrust AI Governance →
More on this law
  • Full law detail
  • Who Must Comply
  • Penalties
  • Disclosure Requirements
  • Impact Assessment Requirements
  • Consumer Rights
  • Enforcement Actions
Legal disclaimer

This content is informational only and does not constitute legal advice. Laws change frequently and vary by jurisdiction. Consult qualified legal counsel before making compliance decisions. Information accuracy not guaranteed as of any specific date.

We may receive referral commissions from recommended compliance tools. Recommendations are based on product fit and not on commission size. Links marked “partner link” include a tracked redirect.