Summary
Creates RSA 5‑D governing AI use by state agencies: requires transparency when the public interacts with AI, mandates human review for significant decisions, and establishes guardrails on biometric identification/surveillance. Includes definitions and agency governance duties.
Healthcare Implications
Public‑sector health programs using AI (e.g., eligibility chatbots, triage, fraud analytics) must disclose AI use and add human review for impactful determinations. Restrictions on real‑time biometric ID limit live facial recognition uses in health/public safety contexts. Agencies must conduct risk assessments and implement governance when procuring AI health tools.
Operational Implications
- Irreversible AI-generated recommendations or decisions affecting rights, biometric ID, critical infrastructure, law enforcement, or legal interpretation must be reviewed by a trained human aware of the AI's limitations.
- AI interactions with users must be disclosed; generative AI material not human-reviewed must include AI disclosure.
- Prohibits AI classification of persons resulting in unlawful discrimination.
- Within 9 months, all state agencies must review AI use and report to DoIT; DoIT publishes annual report on agency AI systems on its website.