WHAT THIS BILL REGULATES · 2 REQUIREMENT TYPES
How Is This Bill Enforced
Verbatim statutory text on the left; plain-language analysis and a per-section checklist on the right. Numbered markers cross-link to the matching checklist row.
A 1 That the Office of the Attorney General (the Attorney General) shall establish a Technology Governance and Coordination Program (the Program) to support the Commonwealth's response to emergent technologies, including artificial intelligence, algorithmic systems, biometric systems, and automated decision-making tools, subject to available resources.
Section 1 directs the Office of the Attorney General to establish the Technology Governance and Coordination Program. The program's scope covers emergent technologies including artificial intelligence, algorithmic systems, biometric systems, and automated decision-making tools. Establishment is expressly conditioned on available resources, signaling that the mandate is not self-executing without appropriations.
2 The Program shall operate as a centralized point of coordination for (i) consumer protection concerning emergent technologies; (ii) interagency communication for applications of technology in the public sector; (iii) intake, triage, and referral of technology-related harms; and (iv) supporting compliance with existing law, including the Consumer Data Protection Act (§ 59.1-575 et seq.).
Section 2 defines the four operational pillars of the Program: consumer protection concerning emergent technologies, interagency communication for public-sector technology applications, intake and referral of technology-related harms, and supporting compliance with existing law including the Virginia Consumer Data Protection Act. The reference to the CDPA signals that the Program is intended to leverage existing statutory authority rather than create new regulatory power.
3 The Attorney General shall coordinate with relevant agencies, including the Virginia Information Technologies Agency, the Office of Data Governance and Analytics, the State Corporation Commission, the Department of Professional and Occupational Regulation, the Department of Social Services, and the Virginia State Police, as appropriate, to carry out the goals of the Program. Such coordination shall include referral pathways, subject-matter consultation, and identification of risks for potential enforcement or legislative action.
Section 3 requires the Attorney General to coordinate with six named state agencies — VITA, the Office of Data Governance and Analytics, the State Corporation Commission, DPOR, DSS, and the Virginia State Police — to carry out Program goals. Coordination must include referral pathways, subject-matter consultation, and identification of risks for potential enforcement or legislative action. This creates an interagency hub-and-spoke model without conferring new regulatory authority on any of the named agencies.
4 The Attorney General shall maintain a public intake mechanism, which may utilize existing complaint or reporting infrastructure, to receive and categorize complaints relating to emergent technologies. Complaints shall be classified for informational review, follow-up, or referral to an appropriate enforcement authority.
Section 4 requires the Attorney General to maintain a public intake mechanism for receiving and categorizing complaints relating to emergent technologies. The provision permits use of existing complaint or reporting infrastructure, avoiding a mandate to build new systems. Complaints must be classified for informational review, follow-up, or referral to an appropriate enforcement authority — establishing a triage function without conferring independent enforcement power on the Program itself.
5 By December 1, 2026, and annually thereafter, the Attorney General shall submit a report to the Joint Commission on Technology and Science, not to exceed eight pages, summarizing complaint intake activity, enforcement referral patterns, interagency coordination, emerging trends, and legislative recommendations.
Section 5 imposes the bill's primary recurring output obligation: the Attorney General must submit an annual report to the Joint Commission on Technology and Science by December 1, beginning in 2026. The report must summarize complaint intake activity, enforcement referral patterns, interagency coordination, emerging trends, and legislative recommendations, and may not exceed eight pages. This is a legislative reporting requirement designed to build an evidentiary record for future policymaking.
Nothing in this act shall create independent regulatory authority over the development or deployment of emergent technologies nor conflict with federal law.
Section 6 is a critical savings clause: it expressly provides that nothing in the act creates independent regulatory authority over the development or deployment of emergent technologies, and that the act shall not conflict with federal law. This provision ensures the Program functions as a coordination and advisory body rather than a regulator, and addresses potential federal preemption concerns by disclaiming any intent to conflict with federal law.
If funds are appropriated to establish a Technology Enforcement Unit or similar entity within the Office of the Attorney General, the Program shall serve as the foundational structure for such entity.
Section 7 is a contingent structural provision: if funds are appropriated to establish a Technology Enforcement Unit or similar entity within the Office of the Attorney General, the Program shall serve as its foundational structure. This anticipates future legislative action to create an enforcement capability, positioning the Program as the organizational precursor without itself creating enforcement authority.
Implementation of this act shall be conducted within existing appropriations to the extent practicable. Additionally, the Attorney General may seek private or federal funding.
Section 8 addresses funding: implementation must be conducted within existing appropriations to the extent practicable, and the Attorney General may seek private or federal funding. This underscores the bill's resource-constrained design — the Program has no dedicated appropriation and depends on existing budgets or external funding sources.
The provisions of this act shall expire on July 1, 2029.
Section 9 imposes a sunset date of July 1, 2029, after which the act's provisions expire. This gives the Program approximately three years of operational life, consistent with a pilot-program approach that anticipates legislative review before permanent establishment.