EveryAILaw.com

California CCPA ADMT Regulations

Jurisdiction:
California
 enacted
Effective:
Jan 1, 2027
Authority:
California Privacy Protection Agency
 Official text Verified Mar 25, 2026

Obligations Covered

Transparency & Disclosure Explainability Risk Assessment

Provisions (2)

Consumer Transparency for ADMT #

Obligation:
Transparency
 enacted
Effective:
Jan 1, 2027
Risk tier:
all
Scope:
deployers

Requirements

RequirementDetails
Pre-use noticeConsumers must be notified before ADMT use
Opt-out rightConsumers may opt out of ADMT in significant decisions
Appeal mechanismConsumers may appeal ADMT-based decisions

Penalties

ViolationFine
Per violation$2,500 standard; $7,500 intentional

ADMT Risk Assessment #

Obligation:
Risk Assessment
 enacted
Effective:
Apr 1, 2027
Risk tier:
high-risk
Scope:
deployers

Requirements

RequirementDetails
Risk assessmentMandatory for ADMT in significant decisions
Human oversight evaluationMust evaluate adequacy of human oversight
Submission to CPPARisk assessments submitted on request

Penalties

ViolationFine
Per violation$2,500 standard; $7,500 intentional