Connecticut AG Issues Memorandum on Application of Existing Laws to AI

Connecticut’s latest memorandum illustrates a pragmatic regulatory philosophy: instead of crafting a bespoke AI framework, the state leans on its existing civil‑rights, privacy, and consumer‑protection statutes. By mapping each law to AI‑driven activities—such as tenant screening or credit scoring—the Attorney General’s office creates a clear enforcement roadmap without waiting for federal guidance. This strategy not only accelerates compliance timelines for companies operating in the Constitution State but also signals to other jurisdictions that legacy rules can be flexibly interpreted to address emerging technologies.

The memo’s emphasis on anti‑discrimination law is particularly consequential. Connecticut’s civil‑rights statutes, reinforced by federal equivalents like the Equal Credit Opportunity Act, now explicitly cover algorithmic decision‑making, meaning any bias in hiring, housing, or lending algorithms could trigger the same legal exposure as overt human prejudice. Simultaneously, the Connecticut Data Privacy Act empowers consumers to access, correct, delete, or opt out of AI‑processed data, raising the bar for data governance and transparency. Companies must therefore embed fairness audits and robust data‑subject request mechanisms into their AI pipelines to avoid civil liability and reputational harm.

Regionally, Connecticut joins a growing cohort of states—such as Texas and California—that prefer to retrofit existing consumer‑protection and competition laws to AI rather than enact stand‑alone statutes. This incremental approach offers flexibility but also creates uncertainty as courts interpret how traditional concepts like “unfair trade practices” translate to algorithmic contexts. For businesses, the takeaway is clear: proactive risk assessments, bias mitigation, and privacy‑by‑design are no longer optional add‑ons but essential components of AI strategy, anticipating both state‑level enforcement and the inevitable evolution toward more explicit AI regulation.