State-level regulation of artificial intelligence in healthcare is creating a complex regulatory patchwork that developers must navigate despite federal efforts toward deregulation. Jamie Darch, a healthcare partner at Ropes & Gray, identifies five critical compliance pillars for entities building or customizing AI tools, such as hospital chatbots and digital health platforms. Developers face varying jurisdictional scopes, with states like Colorado focusing on "high-risk" consequential decisions while others like California mandate public disclosure of training data sources. Beyond initial launch requirements, companies must implement ongoing monitoring for accuracy and safety, establish incident response procedures for regulatory reporting, and prepare for significant financial penalties—reaching up to $10 million in New York. Furthermore, general privacy statutes in states like Virginia and Texas increasingly govern AI-driven features like profiling and automated processing, necessitating that compliance be integrated as a core component of the development lifecycle rather than an afterthought.
Sign in to continue reading, translating and more.
Open full episode in Podwise