Summary

There's a lot going on. If you sift through the current and proposed regulations, you can see some sensible themes emerge and, by dint of that, organizations should be prepared to respond to these things

Clear definition of what an AI system is.
Focus on high risk impacts (think governance and risk assessments).
Distinction between developers and deployers.
Notice and transparency.
Consumer rights (opt-out). Maybe nuanced, like opt-out of some types of decisions.

Regulations need:

Protections for research.
Framework that takes priority when there are conflicts with other laws.
Prohibit on unacceptable risk.

Expect that states will lead and some of these regulations might conflict.

Compliance concept with icons for regulations, law, standards, requirements and audit on a virtual screen with a business person touching a button

Region	Approach	Features
US	Piecemeal regulation	Different agencies regulate AI in different ways, focus on specific sectors or applications
Japan	Voluntary guidelines	Focuses on promoting responsible development of AI, public-private partnership
EU	Comprehensive regulation	Focuses on high-risk AI applications, requires companies to take steps to mitigate risks