California SB 942: The US AI Content Disclosure Law in Effect

The EU AI Act gets most of the attention in content compliance conversations. But California beat the EU to enforcement. SB 942, the California AI Transparency Act, took effect January 1, 2026 — making it the first major US law requiring disclosure of AI-generated content.

If your company deploys generative AI and generates over $1 million in annual revenue, you're likely in scope.

What SB 942 Requires

The law targets companies that deploy generative AI systems capable of producing text, images, video, or audio. Key requirements include:

• AI detection tool: Companies must provide a free, publicly accessible tool that allows users to detect whether content was created using the company's AI system
• Latent disclosure: AI-generated content must contain a latent disclosure — a provenance signal embedded in the content itself — that identifies it as AI-generated
• Manifest disclosure: Explicit labeling of AI-generated content in certain high-stakes contexts including election-related content
• Retention: Provenance data must be retained for at least five years

Who It Affects

SB 942 applies to any company deploying a generative AI system that meets the revenue threshold and makes that system available to California residents. Given California's population of 40 million, this effectively means any consumer-facing AI product operating in the US.

The law also creates downstream obligations for companies using AI-generated content created by third-party systems — if you're publishing AI-generated content, you need to be able to verify its provenance.

How It Compares to the EU AI Act

SB 942 and the EU AI Act are broadly aligned in intent but differ in technical specifics. Where the EU Act mandates C2PA-compliant metadata and watermarking, SB 942 is more flexible on technical implementation — it requires provenance signals but doesn't prescribe the exact standard.

In practice, C2PA-based infrastructure satisfies both. A C2PA manifest constitutes a latent disclosure under SB 942 while simultaneously satisfying EU Article 50 requirements. Organizations building compliance infrastructure for one jurisdiction are effectively building it for both.

The Enforcement Risk

SB 942 is enforced by the California Attorney General, with civil penalties of up to $10,000 per violation. For companies generating and distributing AI content at scale, non-compliance exposure can be significant.

More importantly, California law frequently becomes a de facto national standard. Companies that build SB 942 compliance now avoid rebuilding when other states — and eventually the federal government — follow.

What Compliance Looks Like

Practical SB 942 compliance requires the same infrastructure stack as EU AI Act compliance: C2PA metadata at creation, watermarking for durability, and a provenance verification API for the detection tool requirement.

Limbo provides all three as an integrated platform. Talk to us about compliance.