Detailed overview
Mexico does not currently have a single enacted comprehensive AI Act. AI governance is developing through legislative proposals, personal-data guidance, public-sector discussion and existing laws.
Legislative process
The Mexican Senate has been working on legislative initiatives to regulate and promote artificial intelligence. Official Senate communications refer to work on a general AI law, but these initiatives should not be treated as enacted national AI law unless formally approved and published.
Existing-law overlays
Mexico's current AI compliance framework is therefore based mainly on existing law. AI systems involving personal data must comply with Mexican personal-data protection rules. AI used in consumer services, finance, healthcare, employment, education, advertising, intellectual property, public administration or criminal conduct may trigger sector-specific obligations.
INAI AI personal-data recommendations
Mexico's data-protection authority has issued general recommendations for personal-data processing in AI. These recommendations focus on privacy, transparency, lawful processing, proportionality, accountability and protection of individuals where AI systems process personal data.
Penalties
Mexico does not currently have one AI-specific penalty table. Penalties depend on the breached legal regime, including personal-data protection, consumer protection, financial regulation, healthcare regulation, employment law, telecommunications, intellectual-property law or criminal law.