22 Chinese AI Firms, Including Alibaba and Baidu, Sign Voluntary AI Safety Commitments
Source
China AI Industry Alliance
What happened
In December 2024, the China AI Industry Alliance coordinated the signing of a voluntary AI Security and Safety Commitments initiative, with 17 major Chinese technology companies signing at launch and the total number of signatories growing to 22 since that date. Confirmed participants include Alibaba, Baidu, ByteDance, Huawei, and Tencent. The commitments establish a non-binding framework for managing AI risks across the full development and deployment lifecycle, and 18 of the 22 signatory companies have already disclosed their individual AI security and safety practices publicly. The initiative operates under the China AI Industry Alliance, a state-affiliated industry body, and sits alongside China's existing binding AI regulations, including the Provisions on the Management of Algorithmic Recommendations (2022), the Interim Measures for the Management of Generative AI Services (2023), and broader cybersecurity and data protection frameworks. Together, these mechanisms create a layered compliance environment that multinational enterprises operating in or partnering with Chinese AI companies should actively monitor.
Why it matters
- ·Regulatory exposure: China's binding AI regulations already impose legal obligations on companies deploying AI services in the country, and this voluntary layer signals that regulators may convert soft norms into hard requirements, as Chinese authorities have precedent for doing with voluntary industry mechanisms.
- ·Operational impact: The public disclosure of AI security and safety practices by 18 signatory companies raises the baseline expectation for documented risk management, meaning enterprises partnering with Chinese AI vendors may face increased due diligence burdens when assessing counterparty governance standards.
- ·Organizational risk: Multinational enterprises that fail to audit vendor agreements with Chinese AI companies for signatory status and alignment with disclosed safety practices risk reputational exposure and procurement gaps if a counterparty's practices fall below emerging norms set by this initiative.
Governance controls affected
What to do now
- ☐Audit all existing vendor agreements with Chinese AI companies to determine whether counterparties are signatories to the China AI Industry Alliance AI Security and Safety Commitments.
- ☐Review the publicly disclosed AI security and safety practices of signatory vendors and assess whether those practices meet your enterprise's internal AI governance standards.
- ☐Update third-party AI risk assessment procedures to incorporate signatory status and public disclosure quality as evaluation criteria for Chinese AI vendors.
- ☐Revise AI vendor contract requirements to include provisions requiring notification if a Chinese AI counterparty joins or withdraws from the commitment framework or updates its public disclosures.
- ☐Establish a monitoring process to track whether the China AI Industry Alliance commitment framework evolves toward binding regulatory status or expands its signatory base.
What to watch next
Compliance teams should monitor whether Chinese regulators formally incorporate the AI Security and Safety Commitments framework into binding rulemaking, given the established precedent of voluntary mechanisms transitioning to mandatory requirements in China's AI regulatory history. Teams should also track the expansion of the signatory list beyond the current 22 companies and watch for updated public disclosures from existing signatories that may reset baseline expectations. Any guidance issued by the China AI Industry Alliance or Chinese regulators clarifying enforcement expectations around the voluntary commitments should be reviewed promptly for implications on vendor due diligence obligations.