What is extraterritoriality in AI law?
Global AI regulation
Extraterritoriality in AI law means a jurisdiction's AI rules can apply to organisations outside its territory when they place AI on that market, provide results used there, or create another recognised legal link with local users, rights or trade. In practice, it is a market-access and accountability rule. It does not mean one country governs all AI everywhere. It means cross-border providers, deployers and distributors may still have to meet local duties.
What this means
The first question is not only where your company sits. It is where the model or system is sold, made available, used, or relied on. A foreign provider can be in scope because it targets a market. A foreign deployer can be in scope because the result of the system is used inside that jurisdiction. A local distributor can also pick up duties even if the original technology came from abroad.
This is different from data residency and data sovereignty. Those ideas ask where data is stored, controlled or governed. Extraterritoriality asks which rulebook follows an AI system, service or result into a market, and which actor in the chain must carry the duty.
Not every country uses the same design. The EU AI Act is the clearest express example in AI law. The UK currently remains more sector and context based, the US is fragmented, and China uses service and platform style triggers in several AI-related rules.
Why it matters
If you build, buy, resell or govern AI across borders, extraterritoriality turns a foreign rulebook into an immediate product and commercial issue. It can affect whether you need an authorised representative, what notices must be shown, how technical documentation is written, who must keep records, which incidents must be reported, and whether a distributor or integrator can keep selling the system.
It also changes the risk picture for senior leaders. Internal labels such as "vendor", "platform", "channel partner" or "customer" may not match the legal roles used by a regulator. Once a law classifies your organisation as a provider, deployer, importer or distributor, the relevant duties can be very different from what commercial teams expected.
In practical terms, that means cross-border AI governance is not only a privacy or procurement topic. It is a market entry, assurance and operational control topic. If it is missed, the result can be delayed launches, contract rework, added local-facing obligations, withdrawal pressure and enforcement risk.
How it works
<strong>Scope begins with a jurisdictional hook</strong>
In AI regulation, extraterritoriality rarely depends on nationality alone. It normally depends on a hook to the market or to protected persons. Typical hooks are placing an AI system or general-purpose AI model on the market, putting it into service there, doing business there, or having the system's result used there. The EU AI Act is the clearest current model. It applies to providers that place AI systems or general-purpose AI models on the Union market whether they are established in the Union or in a third country. It also reaches providers and deployers in a third country where the result produced by the AI system is used in the Union.
That design matters because it moves the scoping question away from server location. A system can be trained and run abroad yet still fall inside a rulebook because the legally relevant link is the market, the deployer, the distributor or the use of the result inside the jurisdiction.
<strong>Role mapping comes before compliance</strong>
Once the hook is clear, the next step is role mapping. Under the EU AI Act, the provider is the party that develops, or has developed, an AI system or general-purpose AI model and places it on the market or puts it into service under its own name or trade mark. The deployer is the party that uses the system under its authority. The distributor is a supply-chain actor, other than the provider or importer, that makes the system available on the market.
This matters because geography and role are separate questions. A company outside the EU may still be a provider for EU purposes. A local reseller may think of itself as a distributor, but if it changes the legal posture of the product it may trigger a different status. Good governance therefore needs a jurisdiction-by-jurisdiction role map rather than one internal label used everywhere.
<strong>Supply-chain design makes extraterritoriality real</strong>
Extraterritoriality becomes practical through supply-chain controls. The EU AI Act puts importers and distributors directly into scope. For non-EU providers of high-risk AI systems and non-EU providers of general-purpose AI models, it also requires an authorised representative established in the Union before the relevant product is placed on the market. The Commission's guidance for general-purpose AI makes the market-placement point even clearer by treating availability through APIs, downloads, cloud services, integration into applications, and certain internal processes for services offered to third parties as ways a model may be placed on the Union market.
This is why cross-border AI compliance often arrives through sales channels before it arrives through a regulator letter. An organisation may not "enter" a market by opening an office. It may enter by serving customers through an API, appointing a distributor, embedding a model in a partner's application, or allowing a local customer to rely on the system in a regulated workflow.
<strong>Modification and rebranding can move liability</strong>
Legal role can also change after launch. Under the EU AI Act, a distributor, importer, deployer or other third party can become the provider of a high-risk AI system if it puts its own name or trade mark on the system, makes a substantial modification, or changes the intended purpose so that the system becomes high risk. In other words, regulatory responsibility can move with the business model.
This is one reason extraterritoriality is often misread in practice. Teams focus on who trained the original model, but the law may focus on who is now marketing it, modifying it, or using it in a way that changes its regulated status. Contracts remain essential for sharing documents, technical support, incident notice and change control, but they do not erase the statutory role a regulator assigns.
<strong>Enforcement depends on local institutions and records</strong>
A broad scope clause only works if there are institutions and records to support it. In the EU, supervision is built around national authorities, market surveillance, conformity procedures, document retention and the Commission's oversight of general-purpose AI obligations. In Colorado, the current state AI law ties duties to persons doing business in the state and gives the attorney general exclusive enforcement authority. In China, current public-facing generative AI rules attach to services provided to the public within mainland China and, for certain services, to security assessment and filing.
For operators, this means scope analysis should start before launch, not after launch. Once the system is sold into a market, integrated by a local partner, or used for decisions affecting people in that territory, the practical enforcement path may already exist through local authorities, local representatives, local distributors or local customers.
<strong>Standards and treaties shape the practical picture</strong>
Standards do not decide whether a statute applies, but they do create the evidence needed to answer extraterritorial questions. NIST's AI RMF expects organisations to define key terms and intended uses, align governance to legal standards, document legal review processes, include third-party AI systems in governance, and build monitoring and impact-assessment practices. That kind of record helps answer the questions regulators and large buyers actually ask: who is the provider, what is the intended purpose, which jurisdictions matter, what changed after fine-tuning, and who can produce the evidence.
International instruments play a different role again. The Council of Europe Framework Convention on AI works through state obligations. It asks participating states to implement principles, safeguards, remedies, and risk and impact assessment duties through domestic law. That can drive convergence across countries, but it is not the same as a domestic statute that directly reaches a foreign provider, deployer or distributor because it accesses the market.
Examples
A model company outside the EU offers a general-purpose AI model to customers in the Union by API and cloud service. The Commission's GPAI guidance treats APIs, downloads, cloud services, integration into applications and certain internal processes for services offered to third parties as relevant to the "placing on the market" analysis. That means a foreign provider can be pulled into EU duties without opening an EU office, and the authorised representative requirement may also apply.
An organisation in the Union outsources a screening or scoring step to an operator in a third country, then uses the AI-generated result back in the Union. The EU AI Act's recitals explain that the Act is meant to catch this pattern so that regulated AI work is not simply shifted offshore while the legally significant use still happens in the Union.
A developer or deployer doing business in Colorado uses a high-risk AI system in consequential decisions about consumers. Colorado's enacted law links duties to reasonable care, risk management, impact assessment, notices, correction and appeal rights, and disclosure when consumers interact with an AI system. This is a business-nexus model rather than the EU's broader "result used in the market" model, but it shows how AI rules can still reach beyond the place where a system was built.
Common misunderstandings
"If we are outside the jurisdiction, we are outside the law." Often wrong. Market placement, use of the result, or doing business with local users can be enough.
"Extraterritoriality is just another name for data residency." No. Data residency is about where data sits or must sit. Extraterritoriality is about which law attaches to the AI system, service or result.
"Only the original model developer is exposed." No. Deployers, distributors, importers and local integrators can carry direct duties, and some can become the provider in law.
"A contract can fully move the regulatory burden to someone else." No. Contracts help allocate tasks and evidence, but they do not override statutory role definitions.
"A voluntary framework tells you whether the law applies." No. Standards help you document scoping and governance. They do not replace statute, regulator guidance or court interpretation.
Risks and boundaries
Extraterritoriality has limits. A law can claim broad scope, but practical enforcement still depends on the hooks the jurisdiction can use, such as market access, distributors, representatives, filings, customers and local authorities. A broad scope clause does not automatically mean easy enforcement against every foreign actor.
It is also easy to overstate the concept. Not every AI rule is extraterritorial, and not every cross-border fact pattern is an extraterritorial case. If an EU subsidiary uses AI in the EU, that is ordinary territorial application to a local actor. Extraterritoriality is the harder case where the relevant provider, deployer or distributor sits outside the issuing jurisdiction.
Boundary cases need careful reading. In the EU, some open-source general-purpose AI models may be exempt from parts of the GPAI regime, but not from every obligation and not where systemic risk is present. The Commission's GPAI guidance is useful but not legally binding, and the Court of Justice of the European Union remains the final interpreter of the Act. In the UK, there is still no single AI-specific statute, and future binding rules for the most capable general-purpose systems remain policy rather than settled law. For live launches or enforcement questions, the facts still need jurisdiction-specific review.
What to do next
Start with a market and role inventory. List every jurisdiction where your model, system, API, distributor, reseller or customer touches users, workers, applicants or other affected people. Then classify the organisation's legal role in each jurisdiction: provider, deployer, distributor, importer, downstream provider or authorised representative where relevant.
Build a scoping file that travels with the system. It should record intended purpose, prohibited or unsupported uses, deployment settings, the supply chain, local representatives, change history, fine-tuning history, evidence owners, incident routes and the current legal reasoning for why the system is in or out of scope. If that file does not exist, cross-border governance is probably resting on assumptions.
Finally, update commercial controls. Contracts should require documentation sharing, notice of substantial changes, support for risk or impact assessments, incident escalation, and clarity over who communicates with local authorities. Treat extraterritoriality as a launch gate and board issue, not as a late legal clean-up.
FAQs
Does extraterritoriality mean one country can regulate all AI everywhere?
No. It means a country can set conditions for access to its market or for AI services and results used there. The reach is broad, but it is still tied to legal hooks recognised by that jurisdiction.
Is the EU AI Act the clearest current example?
Yes. It is the clearest current AI-specific law with express scope for certain third-country providers and deployers when systems are placed on the Union market or their result is used in the Union.
Can a foreign deployer be covered even if the model stays outside the EU?
Yes. Under the EU AI Act, a deployer in a third country can be in scope where the result produced by the AI system is used in the Union.
Does offering an API count as placing AI on a market?
It can. The Commission's GPAI guidance treats APIs, downloads, cloud services and integration into applications as relevant ways a model may be placed on the Union market.
Can a reseller or integrator become the provider?
Yes. Under the EU AI Act, putting your own name on a high-risk system, substantially modifying it, or changing its intended purpose so it becomes high risk can shift you into the provider role.
Is this the same as data residency or data sovereignty?
No. Those concepts focus on where data is stored, controlled or governed. Extraterritoriality focuses on which AI rulebook applies across borders.
Does open-source release avoid these rules?
Not automatically. In the EU, some open-source general-purpose AI models may be exempt from some GPAI obligations, but not all, and not where systemic risk is involved.
What is the UK's position now?
The UK currently regulates AI mainly through existing sector laws, regulators and targeted measures rather than a single horizontal AI statute. Future binding rules for highly capable general-purpose systems remain under development.
Sources
Regulation (EU) 2024/1689 laying down harmonised rules on artificial intelligence (European Union, EUR-Lex). The core legal source for the concept. It defines provider, deployer, distributor and operator; sets the AI Act's scope, including third-country providers and deployers whose AI result is used in the Union; and sets role-shift rules for rebranding, substantial modification and changed intended purpose.
Guidelines on obligations for General-Purpose AI providers (European Commission). Official Commission interpretation of GPAI obligations, including examples of what counts as placing a model on the Union market, the authorised representative requirement for non-EU providers, documentation duties across the value chain, and the point that the guidance is not legally binding.
SB24-205 Consumer Protections for Artificial Intelligence (Colorado General Assembly). A current official US state example showing how AI duties can attach through business nexus, including obligations for developers and deployers of high-risk AI systems, consumer notices, impact assessment and enforcement by the attorney general.
NIST AI RMF Playbook, Govern (National Institute of Standards and Technology). Supports the standards and governance dimension, especially documentation of intended use, legal review, roles and responsibilities, inclusion of third-party AI systems, monitoring and impact-assessment practices.
Interim Measures for the Management of Generative AI Services (Cyberspace Administration of China and related ministries). Shows China's service-based territorial trigger for public-facing generative AI, the supervisory departments involved, and the filing and security assessment route for certain services.
The Framework Convention on Artificial Intelligence (Council of Europe). Distinguishes treaty-based AI governance from domestic extraterritorial statutes by showing how the Convention works through state obligations, principles, safeguards, remedies and risk and impact assessments.
AI regulation in the UK (House of Commons Library). Confirms that the UK does not currently have a single AI-specific statute and instead regulates AI mainly through existing sectoral frameworks, regulators and targeted legislation.
A pro-innovation approach to AI regulation: government response (Department for Science, Innovation and Technology, GOV.UK). Shows that the UK is still considering future binding requirements for highly capable general-purpose AI systems, including accountability through the value chain and whether future measures may need extraterritorial reach.