Establishes a Chief Artificial Intelligence Officers Council. Mandates risk classification for AI use. Prohibits specific AI activities, including emotion detection. Directs procurement updates. Requires AI risk evaluation and monitoring. Stipulates documentation and transparency. Establishes annual reporting. Prohibits high-risk AI uses.
Analysis summaries, actor details, and coverage mappings were LLM-classified and may contain errors.
This is a binding federal statute enacted by the United States Congress with mandatory requirements, enforcement mechanisms, and legal obligations on federal agencies. The Act uses mandatory language throughout and establishes specific compliance deadlines, penalties for non-compliance (suspension of AI use), and oversight mechanisms.
The document has good coverage of approximately 10-12 subdomains, with strong focus on AI system security (2.2), lack of robustness (7.3), lack of transparency (7.4), unfair discrimination (1.1), governance failure (6.5), and competitive dynamics (6.4). Coverage is concentrated in system safety, security, transparency, and discrimination prevention domains.
This Act governs AI use exclusively within the Public Administration sector (federal agencies). It does not regulate private sector AI use but does impose requirements on AI developers and deployers who contract with federal agencies. The governance applies across all federal agency operations, which may touch multiple sectors through government services.
The document comprehensively covers all AI lifecycle stages with particular emphasis on procurement planning, deployment, and operational monitoring. It addresses design requirements, data collection and processing standards, model development and procurement, extensive verification and validation procedures, deployment requirements, and ongoing monitoring obligations.
The document explicitly mentions and defines both AI systems and artificial intelligence broadly, referencing the National Artificial Intelligence Initiative Act definition. It does not specifically mention frontier AI, general purpose AI, task-specific AI, foundation models, generative AI, predictive AI, or open-weight models. There is no explicit mention of compute thresholds. The focus is on AI systems used by federal agencies regardless of their technical classification.
United States Congress
The document is an Act of Congress ('This Act may be cited as the Promoting Responsible Evaluation and Procurement to Advance Readiness for Enterprise-wide Deployment for Artificial Intelligence Act'), indicating it was proposed and enacted by the United States Congress as the legislative authority.
Director of the Office of Management and Budget (OMB), Federal Acquisition Regulatory Council, Chief Artificial Intelligence Officers Council, agency heads, Chief Artificial Intelligence Officers
The Director of OMB is given primary enforcement authority to ensure agency compliance. The Federal Acquisition Regulatory Council must update regulations. Agency heads and Chief AI Officers are responsible for implementing and enforcing requirements within their agencies.
Director of the Office of Management and Budget, Chief Artificial Intelligence Officers Council, Comptroller General of the United States (Government Accountability Office), Chief Artificial Intelligence Officers, Congressional committees (Committee on Homeland Security and Governmental Affairs of the Senate and Committee on Oversight and Accountability of the House of Representatives)
The Director and Council monitor implementation through annual briefings and reviews. The Comptroller General (GAO) conducts oversight reviews. Chief AI Officers monitor ongoing AI use. Congressional committees receive regular reports.
Federal agencies (as defined in section 3502(1) of title 44, United States Code), independent regulatory agencies, AI developers, AI deployers
The Act applies to federal agencies that develop, procure, or use AI systems, as well as to developers and deployers who provide AI to federal agencies. The Act defines 'agency' to include agencies under 44 USC 3502(1) and independent regulatory agencies, and separately defines 'developer' and 'deployer' entities.
12 subdomains (7 Good, 5 Minimal)