Plenty of attention rests on artificial intelligence developers’ non-technical contributions to ensuring safe development of advanced AI: Their corporate structure, their internal guidelines (‘RSPs’), and their work on policy. We argue that strong profitability incentives increasingly force these efforts into ineffectiveness. As a result, less hope should be placed on AI corporations’ internal governance, and more scrutiny should be afforded to their policy contributions.

This post was co-written with Dominik Hermle.

Introduction

Advocates for safety-focused AI policy often portray today’s leading AI corporations as caught between two worlds: Product-focused, profit-oriented commercial enterprise on the one hand, and public-minded providers of measured advice on transformative AI and its regulation on the other hand. AI corporations frequently present themselves in the latter way, when they invoke the risks and harms and transformative potential of their technology in hushed tones; while at the same time, they herald the profits and economic transformations ushered in by their incoming top-shelf products. When these notions clash and profit maximization prevails, surprise and indignation frequently follow: The failed ouster of OpenAI CEO Sam Altman revealed that profit-driven Microsoft was a much more powerful voice than OpenAI’s non-profit board, and the deprioritisation of its superalignment initiative, reportedly in favor of commercial products, reinforced that impression. Anthropic’s decision to arguably push the capability frontier with its latest class of models revealed that its reported private commitments to the contrary did not constrain them; and DeepMind’s full integration into the Google corporate structure has curtailed hope in its responsible independence. 

Those concerned about safe AI might deal with that tension in two ways: Put pressure on and engage with the AI corporations to make sure that their better angels have a greater chance at prevailing; or take a more cynical view and treat large AI developers as simply just another private-sector profit maximizer - not ‘labs’, but corporations. This piece argues one should do the latter. We examine the nature and force of profit incentives and argue they are likely to lead to a misallocation of political and public attention to company structure; a misallocation of policy attention to AI corporations’ internal policies; and a misallocation of political attention and safety-motivated talent to lobbying work for AI corporations. 

Only Profit-Maximizers Stay At The Frontier 

• Investors and compute providers have extensive leverage over labs and need to justify enormous spending 

• As a result, leading AI corporations are forced to maximize profits

• This leads them to advocate against external regulatory constraints or shape them in their favour

Economic realities of frontier AI development make profit orientation a foregone conclusion. Even if an AI corporation starts out not primarily motivated by profit, it might still have no choice but to chase maximal profitability: As the track record of Anthropic, the seemingly most safety-minded lab, clearly demonstrates, even a maximally safetyist lab has to remain at the frontier of AI development: To understand the technical realities at the actual model frontier, to attract the relevant talent and motivate the necessary compute investments. The investments that are required to scale up the required computing power to remain at this frontier are enormous and are only provided by profit-driven major technology corporations or, to a much lesser extent, large-scale investors. And a profit-driven tech corporation seems exceedingly unlikely to hinge astronomical capex on an AI corporation that does not give off the unmistakable impression of pursuing maximal profits. If a publicly traded company like Microsoft had serious reason to believe that a model it spent billions of dollars on could just not be released as a result of altruistically motivated safety considerations that go beyond liability risks, their compute expenditure would at least be strategically imprudent and at worst violate its fiduciary duty. This is especially true when compared to counterfactually funding model development at another, less safety-minded, corporation or an in-house lab. And these external pressures might well be mounting in light of rising doubts around the short-term profitability of frontier AI development. 

So, even a safety-motivated lab has no choice but to act as if it were an uncompromising profit-maximizing entity - lest their compute providers will take their business elsewhere, and the lab could no longer compete. The effects are clearly visible: When OpenAI board members briefly tried to change course, Microsoft almost took away most of their compute and talent in a matter of hours; in a compute crunch, OpenAI’s superalignment team reportedly got the short end of the stick; and OpenAI might well be gearing up for an IPO doing away with what’s left of its safety-focused structure. The recent, presumable antitrust-motivated, surrender of Apple’s and Microsoft’s respective board seats at OpenAI does cast some doubt on the institutional side of this mechanism, but it is important to note that Microsoft did not have a board seat before they managed to strongarm OpenAI into rehiring Altman - if anything, that episode showed how little the board matters. It would be exceedingly surprising if Microsoft’s main competitors did not have, or at least wrestle for, a comparably iron grip on their respective AI corporations. If they succeed, then these respective labs become full-on profit maximizers; and if they don’t, profit-maximizing labs supported by investors and compute providers might take their place.

This determines the role of AI corporations in policy and governance debate. With AI undergoing rapid technical innovation, financial investment and media awareness, it seems to be destined to be a key technology of the 21st century. This strategic importance will inevitably lead to public attention, political pressure and regulatory intervention in favor of making AI safe, controlled, and beneficial. 

Profit maximization is not necessarily at odds with that goal - often, safe and reliable AI is the best possible product to release. Much safety-relevant technical progress, such as advances in making AI more predictable, more responsive to instructions or more malleable to feedback, has also made for meaningful product improvements. This incentive has its limitations - in race situations that offer great economic benefit from being first to reach meaningful capability thresholds, larger and larger risks of unsafe or unreliable releases might become economically tenable. 

But more importantly, business interest is often at grave odds with external constraints. It is near-universally accepted that geostrategically and infrastructurally critical industries ought to be externally constrained through regulation and oversight - even where market pressures favor safe products. This oversight is usually thought to ensure strategic sovereignty, reduce critical vulnerabilities, and prevent large-scale failures, etc. Profit maximizers will not willingly accept such constraints, even where they publicly endorse them in principle - because they believe that they might know best, because compliance is expensive, and because unconstrained behavior might sometimes be very profitable. Behind closed doors, the largest AI corporations have been some of the fiercest opponents of early legislative action that might constrain them, whether that is the EU’s AI Act, California’s SB-1047, or early initiatives in D.C. and elsewhere. Where constraints seem unavoidable, business suggests shaping them to be minimally restrictive or potentially even conducive: Companies might advertise for legal mechanisms that best fit their own technical abilities or that prevent smaller competitors from catching up.

This understanding of AI corporations’ profitability motives and their resulting role in policy dynamics should lead us to reassess their activity in three areas: Corporate structure, Responsible Scaling Policies, and corporate lobbying. 

Constraints from Corporate Structure Are Dangerously Ineffective

• Ostensibly binding corporate structures are easily evaded or abandoned

• Political and public will cannot be enforced or ensured via corporate structure

• Public pressure can lead to ineffective and economically harmful non-profit signaling

AI corporations, in alleging their binding commitment to responsible development, often point to internal governance structures. But because of the primacy of profitability even in safety-minded labs discussed above, arcane corporate structures might do very little to mitigate it. This is true for three reasons: Firstly, profit maximization can easily be argued to be a necessary condition for a valuable contribution to safety, as it secures the talent and compute required to begin with. So, even under an ostensibly prohibitive pro-safety structure, a single lab might justify pushing for profits and capabilities - look at Anthropic and its recent decision to release arguably the most advanced suite of LLMs to date. Secondly, corporate structures are often not very robust to change driven by executive leadership and major investors - again, it’s easy to point at OpenAI as a recent example of a quick de facto change in governance setup that could not even be halted by one of its founders. Thirdly, in many cases, existing companies might be easily exchangeable shells for what really matters under the hood: Compute that could potentially be reassigned by the compute providers, and research teams that can be poached and will follow the compute. That kind of move might be legally contentious, but between the massive asymmetries in legal resources and potential contractual provisions around model progress in compute agreements, it seems like a highly believable threat. Present corporate structures that suggest a stronger focus on safety or the common good might hence be best understood more cynically: They are only there because they have not interfered with profitability just yet, but can readily be dismissed or dismissed one way or the other. Any other understanding is a set-up for miscalibrated expectations and disappointment, such as in the case of the internal changes at OpenAI. Drawing the right lessons from that is important: Alleging that Sam Altman turned out to be a uniquely deceptive or machiavellian figure, or that OpenAI has undergone some surprising hostile takeover, misses the point and sets up future misconceptions. The lesson should be that there was a failure to understand the real distribution of power in corporate governance. 

Expecting corporate governance to enforce public will to make AI safe might not only be mistaken, it could also soften pressure on political institutions to craft meaningful policies that address the societal challenges posed by AI. Insofar as the ineffectiveness of safety-minded corporate structures is not immediately obvious, the public and policy-makers could be inclined to believe that AI corporations were already sufficiently aligned with the public interest. This misunderstanding should be avoided: Public attention should instead pivot towards policymakers and the adequacy of their regulatory frameworks rather than dwelling on corporate board reshufflings. This shift might even benefit AI corporations - by reducing the resources they need to spend on costly charades like complex corporate structures designed to provide an impression of safety focus. Treating them like any other private company might in turn relieve them of the burden of costly non-profit signaling. 

Hope In RSPs Is Treacherous

• RSPs on their own can and will easily be discarded once they become inconvenient

• Public or political pressure is unlikely to enforce RSPs against business interests 

• RSP codification is likely to yield worse results than independent legislative initiative

• Therefore, much less attention should be afforded to RSPs. 

Secondly, a rosy view of AI corporations’ incentives leads to overrating the relevance of corporate governance guidelines set by labs. Responsible scaling policies (RSPs) are documents that outline safety precautions taken around advanced AI - e.g. which models should undergo which evaluations, necessary conditions for model deployment, or development red lines -  see those from OpenAI, Google DeepMind, and Anthropic. These RSPs are often met with interest, attention, sometimes praise and sometimes disappointment from safety advocates, and often feature in policy proposals and political discussion.

Unfortunately, there is very little reason to believe that such RSPs deserve this attention. Firstly, of course, RSPs by themselves lack an external enforcement mechanism. No one can compel the internal governance of an AI corporation to comply with their RSPs, nor to keep their RSPs once they feel they become inconvenient. RSPs are simply a public write-up of internal corporate governance valid exactly as long as company leadership decides it is. An optimistic view of RSPs might be that they are a good way to hold AI corporations accountable - that public and political attention would be able to somehow sanction labs once they did diverge from their RSPs. Not only is this a fairly convoluted mechanism of efficacy, it also seems empirically shaky: Meta is a leading AI corporation with industry-topping amounts of compute and talent and does not publish RSPs. This seems to have garnered neither impactful public and political scrutiny nor hurt the Meta AI business. 

This enforceability is sometimes thought to be answerable through RSP codification. RSPs might be codified, i.e. implemented in the form of binding law. This describes, in effect, a legislative process: For RSPs to be binding or externally enforceable in a meaningful sense, someone would have to be empowered to carry out an external, neutral evaluation of compliance and to enforce the measures often stipulated in the RSPs - for instance whether a model ought to be shut down, planned deployment ought to be cancelled, or training should be stopped. At present, it is difficult to conceive how this evaluation and enforcement should happen if not through executive action empowered by legislative mandate. So RSP codification is in effect simply a safe AI law - with one notable difference: That we do not start from a blank piece of paper, but with an outline of what AI corporations might like for the regulation to entail. The advantages of that approach might firstly come from AI corporations’ relevant expertise - which we discuss later -, or from their increased buy-in. But it seems unclear why exactly buy-in is required: There is substantial political and public appetite for sensible AI regulation, and by and large, whether private companies want to be regulated is usually not a factor in our democratic decision to regulate them. The downside of choosing an RSP-based legislative process should be obvious - it limits, or at least frames, the option space to the concepts and mechanisms provided by the AI corporations themselves. But this might be a harmful limitation: As we have argued above, these companies are incentivized to mainly provide mechanisms they might be able to evade, that might fit their idiosyncratic technical advantages, that might strengthen their market position, etc. RSP codification hence seems like a worse way to safe AI legislation than standard regulatory and legislative processes. 

Additionally, earnest public discussion and advocacy for the codification of RSPs may give off the superficial impression to policymakers that corporate governance is adequately addressing safety concerns. All of these are reasons why even strictly profit-maximizing AI corporations might publish RSPs - it quells regulatory pressures and shifts and frames the policy debate in their favor.  Hence, affording outsized attention to RSPs and conceiving of RSP codification as a promising legislative approach is unlikely to lead to particularly safe regulation. It might, however, incur a false sense of confidence, reduce political will to regulate, or shift the regulatory process in favor of industry. We should care much less about RSPs. 

For-Profit Policy Work Is Called Corporate Lobbying  

• For-profit work on policy and governance is usually called corporate lobbying. In many other industries, corporate lobbying is an opposing corrective force to advocacy

• Corporate lobbying output should be understood as constrained by business interests 

• Talent allocation and policy attention should be more skeptical of corporate lobbying.

Thirdly, AI corporations’ lobbying efforts currently have a strangely mixed standing in safety policy debates. Leading AI corporations employ large teams dedicated to policy (similar, by all accounts, to government affairs teams at other corporations) and governance (with less direct equivalent). On one hand, extensive lobbying efforts by AI corporations are often viewed critically, especially as they attempt to weaken regulatory constraints. On the other hand, these teams sometimes appear as allies of safety policy advocacy. Labs’ lobbying and governance teams frequently recruit from safety advocates, and entertain close relationships with the safety coalition. In fact, working for an AI corporation is often considered an advisable, desirable career step for non-profit safety advocates. This integration is highly unusual. In other industries, transfers from non-profit work to corporate lobbying happen, but they are usually not considered in service of the non-profits’ goals, and might at best be called green- (or safety-, or clean-,...) washing and at worst betrayal to the cause. 

The existence of governance teams, concerned with developing ostensibly impartial ideas on how to govern their technology, is also not very common in other industries. This phenomenon may be best understood in light of the historical context. Given its status as a recently emerging technology with a long prehistory of more theoretical speculation around its capabilities, research labs became generalist hubs on the technology, as no one - beyond the labs and academia - had the technical knowledge of how to regulate it safely, or the political interest to even think about it much. But at least since the ChatGPT release followed by the surge of AI interest and investment, political institutions and civil society organizations are starting to catch up. Dedicated bodies, such as the EU AI Office and the US & UK AI Safety Institutes, have been established and equipped with leading talent, and there is a thriving new ecosystem of AI think tanks and advocacy groups.

It would be a mistake to burden the discussion around frontier AI with tribalistic rhetoric as is often present in regulatory debates of other industries. But its prevalence in virtually all of these other sectors points at which respective roles and relationships have been historically defined for corporate lobbyists, non-profit and academic advisors, and policy-makers. Forfeiting this adversarial dynamic points to a perhaps naive understanding of what profit-maximizing AI corporations will allow their policy and governance teams to do. It is simply implausible that labs would, in due time and following their increased commercialization, pay a substantial department to create policy-related outputs that do not directly further their policy goals. Again, the cynical perspective might be most informative: Profit-maximizing companies pay policy and governance teams to shape policy and governance in a way that maximizes their profits while avoiding researching and publishing any policy proposal that could potentially hinder their AI products and thereby its future financial success. This can be enforced on the executive level by directly vetoing any potent safety policy or - more indirectly - by cutting financial, organizational and compute resources for safety research. On a personal level, employees might be inclined to practice anticipatory obedience and avoid going head-to-head with their employers, in turn protecting their salary, shares, reputation and future impact in steering AI progress from the inside. Besides, working for a big AI corporation building a transformative technology like no other is of course exciting - even a cautious individual could at least be somewhat captivated by the thought of shaping rapid, utopian technological progress and therefore choose to remain on board. No one in these teams needs to be ill-spirited or self-servant for this mechanism to take hold. In fact, there might be a lot of value in creating policy that ensures progress and profit in an industry that promises as much economic and societal value as AI. We just claim that this value does not lie in causing first-order progress on making regulation more safe.    

This leads to a dynamic wherein leading governance talent with high standing in non-profit and government AI policy institutions makes suggestions that serve business interests, but face much less scrutiny than corporate lobbying attempts would in other industries. This shapes the policy debate toward the interests of the few AI corporations that currently entertain ostensibly safety-focused governance and policy teams.

Ultimately, this also might result in a misallocation of governance talent. Right now, working for the governance or policy team of a major lab remains a dream job for many ambitious, safety-minded individuals, further fueled by the social and cultural proximity between AI corporation employees and safety researchers and activists. This human capital could potentially be more effectively utilized in less constrained roles, like at governmental institutions or in research and advocacy roles. 

This does not apply to safety-minded individuals conducting technical safety work at AI corporations. Much research progress on the technical level is incredibly beneficial to safety, and where it is, incentives of labs and safety advocates align - labs also want to build safe products. The misalignment only exists where policy, i.e. an external force that compels the labs, is concerned. So technical work remains valuable on any cynical understanding of lab incentives - and is also presumably sufficient to cash in on some of the benefits of having safety-minded employees at AI corporations, such as whistleblowing options and input on overall corporate culture. 

Conclusion

The days of AI developers as twilight institutions between start-up and research lab are at best numbered and at worst over. The economics of frontier AI development will render them profit-maximizing corporate entities. We believe this means that we should treat them as such: No matter their corporate structure, we should expect them to choose profits over long-term safety; no matter their governance guidelines, ensuring safety should be the realm of policy; and no matter the intentions of their governance teams, we should understand their policy work as corporate lobbying. If we do not, we might face some rough awakenings.

I try to post updates on my writing, but not on much else, on X / Twitter.

A newly published series of essays predicts rapid advancements in artificial intelligence leading to government intervention and subsequent creation of superintelligence. I argue that this series of events is less likely due to lack of market incentives for this progress, implausibility of decisive government response at the relevant time, and adaptation of AI labs to similar predictions.

My discussion does not aim to engage with underlying technical claims. For the sake of argument, I will simply accept them as entirely accurate, though they’ve been critically discussed elsewhere.

Introduction

Leopold Aschenbrenner, formerly of OpenAI, has recently published a series of essays detailing his outlook on the developments ahead in AI. The essays are well-written, well-researched and insightful. Making them even more interesting, Leopold suggests – correctly, I believe - that his articulated view is representative of the beliefs of a larger group of important people in AI.

While I am not as immersed in the SF ecosystem, I have been thinking about and working on related issues for some time, and I feel I stumbled across some inconsistencies. With Leopold, I believe getting these predictions and the resulting policy response right is very important - so I briefly outline three areas where I think his argument gets stuck.

Profitability and Progress

• AI capability gains between today and AGI might not be profitable enough to motivate investment.

• Developing AGI & ASI might not be sufficiently attractive for private companies.

The essays begin with the observation of rapidly increasing investment in AI, especially in compute clusters and their surrounding infrastructure. Extrapolating these trends then leads to projections for capability milestones. Two strong arguments motivate these trend projections: Empirical observations around current spending, and the potential high profitability of developing AGI. But even on Leopold’s short timelines, there is a time between the current era and the final sprint to AGI and ASI. Leopold does not go into great detail on that era, but I believe crossing it might take much longer than he projects.

Firstly, short-term profitability of the next couple of model generations might not be given. Continuous growth of compute investment, according to Leopold, will have happened ‘as each generation [of models] has shocked the world’. The jump to GPT-3.5 and the ChatGPT application was impressive and motivated plenty of public, economic and political interest. This is maybe less obviously true for the jump to GPT-4, and less still for the progress within the GPT-4 tier of models. On the business side, adoption has been somewhat sluggish, with apprehension voiced at the cost of using advanced models; PR-sensitive reliability issues plaguing consumer-facing deployment; and regulation, liability, and ongoing lawsuits creating further barriers. So far, they do not seem on track to motivate widespread adoption of 100$+ subscription models, as Leopold suggests. These might well be growing pains – but to keep investors happy to fund the trend of compute costs, they would have to be outgrown fast. Otherwise, the well of compute funding might dry up past the already-committed resources, inviting a stronger focus on usability and efficiency than on capability gains. Of course, that might well be a high-revenue area. But as Leopold points out, the capex of major tech companies that drives the progress he assumes is unprecedented - intermediary returns that are merely very high don't cut it. Unprecedented returns are not yet certain.

Secondly, trying to develop AGI and ASI might be much less economically attractive to companies than Leopold suggests. At face value, creating AGI or ASI seems enormously profitable and desirable to any corporation – think of the growth, the power, the competitive advantage. Even if I was correct about lacking short-term profitability, this prospect would seem enough to motivate the enormous necessary investment.

But later, Leopold identifies (a) that governments are very unlikely to let a start-up (and, I assume, any privately-owned company) develop and control such technology themselves, and (b) that any company attempting such development will become a target of all kinds of espionage, sabotage, nationalization and more. If this is right (and I think it might well be), it changes the calculus dramatically. Getting in the sights of serious clandestine espionage is a serious threat to a private company, and being subjected to a ‘hamfisted’ home government response is likewise not particularly tempting. Susceptibility to adversarial attacks would be high, and success would not be very enticing - limited say over The Project and few profits to be made as the government takes over. That prospect is unlikely to be attractive enough to motivate the kind of funding Leopold’s projections require. Simply put: If serious progress towards AGI puts a target on your back and successfully reaching it makes the government take it away, then why try to build it at all?

Given this incentive landscape, a lot of different scenarios come to mind: some rogue company tries anyways; a government project is established even without a wakeup call; CCP-owned projects that don’t face such uncertainties pull ahead; AI progress stalls because the market simply does not incentivize building sufficiently powerful AI to kickstart AGI races; etc. These probably deserve some deeper examination. But I believe that they should at least cast some doubt on the suggested outlook.

Governments’ Wake-Up Moment

• If the jump from AGI to ASI is fast and governments are slow, ‘The Project’ is less likely.

In discussing technical challenges around aligning superintelligence, Leopold emphasizes the paradigmatic gap between AGI and ASI, but postulates that we might get from AGI to ASI quickly, i.e. in less than a year. AGI’s failures are low stakes, the world is normal, and it is responsive to ~RLHF; but ASI is alien, its failures catastrophic, the world in upheaval, and alignment unclear. This, he argues, is one of the main challenges in achieving safe ASI – many of our well-precedented techniques for simpler models and systems stop working in the new paradigm, and we might drop the ball.

Simultaneously, Leopold argues that continuous improvement up to AGI and ASI will, at some point, lead the US government to step in and assume oversight over further frontier development. He argues this government endeavour, ‘The Project’, is likely the setting in which ASI (or maybe even AGI?) is built. There is little clarity as to when exactly this might happen, but he suggests it would likely be fairly late and would require a major wake-up moment. A successful instance of catastrophic misuse might be one possible watershed.

These two claims don’t mesh that well:

On the one hand, the governmental wake-up moment would be unlikely to happen before or during early AGI, characterized by Leopold as low-stakes and fairly easily aligned – catastrophic misuse or other outsized unexpected impacts of such a system seem unlikely. But on the other hand, the governmental wake-up moment also can’t really happen later than that, because we will go from AGI to ASI very fast, the government is slow to react, and The Project will be a fairly extensive endeavour including lots of political overhead.

This places a very specific requirement on Leopold’s narrative: The wake-up moment occurs (a) early enough to still consolidate research at The Project – i.e. well before the final sprint to ASI, but (b) late enough to leave no doubts around current relevance and future progress. At this time, the government intervenes decisively and commences The Project. This is a sequence and timing of events seems much less plausible and intuitive to me than many of Leopold’s other claims. It might well still happen like this – but if, by happenstance, the would-be wake-up misuse attempt fails, if a new capability gain is hidden or crowded out by more urgent news, if the CCP keeps a rival project under wraps, etc., this timeline gets thrown off very easily. And if the tight window for the wake-up moment passes, things likely play out very differently after all. That shrouds The Project in substantial uncertainty.

How do the ‘Situationally Aware’ React?

• If AI lab leaders agree with Leopold’s predictions, they will try to interfere.

Lastly, if the essays do reflect the general thinking of the ‘situationally aware’, they allow some interesting insights into the likely thinking of major industry players in AI. If their predictions do align with Leopold’s, they might accordingly adjust their strategies – which might in turn affect his predictions. Specifically, two responses come to mind:

As suggested in my first objection, the prospect of nationalization might disincentivize labs to work on AGI. This could lead private sector AI development to adopt a carefully considered equilibrium, where they make sufficient incremental progress to ensure their products are competitive, but stay below the critical line of prompting wake-up worthy capability gains. Defection from this equilibrium is not impossible, but far from certain: Given the costs involved, not that many players could defect, and each of them might have major difficulties justifying their defection to shareholders in a market environment that does not favour races.

More alarmingly, the prospect of nationalization, sabotage and espionage might prompt AI labs to be deceptive about their AGI progress. Whether it is to ensure their own profits, from hybris or from distrust of government, AI lab leaders might have ample reasons to prevent nationalization. Hence, they might make sure not to raise the alarm in the first place. For instance, they might save up computational resources to skip a generation or two, prompting a faster, discontinuous jump to AGI/ASI without raising the alarm; wilfully hamstring or underreport intermediary model capabilities; or simply extensively influence the political process to prevent any interference. This does not only throw a wrench into Leopold’s predictions – it also interferes substantially with a lot of current safety mechanisms that rely on iterative, continuous progress.

There is very little telling how prevalent Leopold’s predictions are with the leadership of AI labs, and what beliefs will ultimately play into their decisions. But I believe any prediction that simultaneously sees them stripped of their passion projects and profit potentials and hinges on somewhat honest, transparent or predictable behaviour on their part is likely to get a lot wrong. Adaption to predictions needs to be accounted for.

 I try to remember posting updates on new posts and writing (but not much else) on Twitter / X.

Durch die Einrichtung eines wirtschaftspolitischen Sondervermögens durch die demokratische Mitte Deutschlands könnten die heutigen Haushaltsschwierigkeiten beendet und die morgigen Haushaltsspielräume erweitert werden. Dieser Schritt käme nicht nur der Bundesregierung, sondern dem Land und seinen demokratischen Parteien zugute. Aber auch und gerade die Union hat viel zu gewinnen. 

Nachtrag vom 12.01.: Das ökonomische Argument für das Sondervermögen nimmt an Fahrt auf - so forderten seit Erscheinen dieses Beitrags z.B. die Top-Ökonomen Südekum, Hüther und Fuest in der FAZ eine entsprechende Initiative.

Politischer Kontext

Mit einem einstweiligen Haushaltskompromiss zum Jahresende hat die Ampelkoalition eine unmittelbare Regierungskrise in Deutschland abwenden können. Kurzfristiger Unmut und die Klärung von Detailfragen bestimmen den politischen Jahresanfang. Aber je mehr das unmittelbare politische Überleben der Ampel-Regierung gesichert scheint, desto mehr rücken die fundamentalen Herausforderungen, die das Urteil des Bundesverfassungsgerichts stellt, in den Fokus. Ohne die Haushaltsmittel des Wirtschaftsstabilisierungs- sowie Klima- und Transformationsfonds (WSF und KTF) fehlt der Bundesregierung viel haushaltspolitischer Spielraum, den sie angesichts ohnehin angespannter Haushaltsverhandlungen gut hätte gebrauchen können.  Seit dem Urteil bleibt keine Planungs- und Konsolidierungsmaßnahme ohne reichlich koalitionäre Kontroverse - ob es um Kürzungen von Agrarsubventionen oder das erneute Ausrufen einer Notlage, z.B. aufgrund der Flutkatastrophe im Ahrtal, geht. Aber auch jenseits der aktuellen Regierungsdynamik zeichnen sich Herausforderungen ab. Nachlassendes Wirtschaftswachstum, anhaltende Kosten von Unterstützung und perspektivischem Wiederaufbau der Ukraine, und immer höhere Zuschüsse aus dem Haushalt in die Rentenversicherung schaffen engere Haushaltsspielräume und damit Herausforderungen für kommende Bundesregierungen. Durch die ‘Schärfung’ der Schuldenbremse scheinen enge Finanzrahmen und haushaltspolitische Streits vorprogrammiert. 

Die mit anhaltenden Haushaltskrisen einhergehenden Konsequenzen sind ernst. Bei vielen Beobachtern im Inland wie im Ausland könnte angesichts wiederholter politischer Konflikte und Blockaden der Eindruck entstehen, dass Deutschland und die Bundesregierung in Krisenzeiten nicht vollständig handlungsfähig sind. Dafür könnte es kaum einen schlechteren Zeitpunkt geben. Vor dem Hintergrund hoher wirtschaftlicher Unsicherheit scheinen die politischen Ränder schon seit einiger Zeit im Aufwind. Die AfD erreicht ein besorgniserregend stabiles Allzeitumfragehoch und Sahra Wagenknecht ist im Versuch begriffen, eine weitere koalitionsunfähige Partei zumindest in einigen ostdeutschen Bundesländern zu etablieren. Gleichzeitig liegt das Vertrauen der Bevölkerung in Bundesregierung und Bundeskanzler auf einem historischen Tiefpunkt. Anstelle dauerhafter Streitigkeiten muss Deutschland diesen besorgniserregenden Entwicklungen haushaltspolitisch handlungsfähig begegnen. Solange die Ampel festgelegt zu sein scheint, auf keine ihrer konsumtiven Herzensaufgaben zu verzichten, führt der Weg dazu nicht nur über Einsparungen. Die Grundlage dafür kann nur ein grundlegender fiskalpolitischer Kompromiss in der demokratischen Mitte bilden - solange diese überhaupt noch über eine stabile Zwei-Drittel-Mehrheit im Bundestag verfügt. 

Der meistdiskutierte Ausweg ist eine Reform der Schuldenbremse. Aber entschiedene parteipolitische Festlegungen und deren vehemente Begründungen machen einen Kompromiss um die Gestaltung der Schuldenbremse selbst wohl eher unwahrscheinlich - so unterstützen FDP und Union nicht nur weiterhin entschieden die Schuldenbremse, sondern sehen in ihrer Stärkung sogar eine wünschenswerte Entwicklung. Der fundamentale Dissens zwischen linkem und bürgerlichem Lager hinsichtlich des grundsätzlichen Wertes der Schuldenbremse scheint wenig Spielraum für Reform zu bieten. Vielleicht kann sich dieser Spielraum noch öffnen: nach der Europawahl, nach der Wahl in Sachsen und Thüringen, falls die Wüst’schen Bedingungen erfüllt werden, etc. Aber im Moment sieht es so aus, als bräuchte es einen anderen Weg. Diesen Weg - und die Gründe, warum er auch im Interesse der Union sein könnte - wollen wir skizzieren. 

Ausweg Sondervermögen

Ein genauerer Blick auf den Auslöser der aktuellen Krise offenbart einen möglichen Ausweg. Das bestehende Haushaltsloch entstand durch die urteilsgemäße Unrechtmäßigkeit der Übertragung von schuldenfinanzierten Mitteln in den WSF, die konsistenterweise analog auch auf den KTF Anwendung findet. Beide diese Töpfe enthalten ein breites Spektrum von teilweise kontroversen Anwendungen - von Halbleiter-Fabriken bis hin zu Sozialverträglichkeitslösungen der CO2-Bepreisung -, sind aber letzten Endes auf den Komplex der zukunftstauglichen Transformation der deutschen Volkswirtschaft ausgerichtet. Diese Transformation erfolgt mit Blick auf Zukunftstechnologien, mit Blick auf die Notwendigkeiten der Vermeidung von Emissionen, und mit Blick auf notwendige strukturelle Voraussetzungen für wirtschaftliche Aktivität.

Würde die Finanzierung der wie auch immer spezifisch gearteten notwendigen wirtschaftspolitischen Transformation sichergestellt, würden sowohl die akute Haushaltskrise als auch die latenten Finanzierungsschwierigkeiten unter der Schuldenbremse entschärft. Wir schlagen vor, dass diese Finanzierung durch die Einrichtung eines Sondervermögen für die Zukunftssicherheit der deutschen Volkswirtschaft geschaffen werden soll. Ein solches Sondervermögen, fokussiert auf die nötigen Erneuerungen, könnte durch Kredite finanziert werden, ohne in Konflikt mit dem Urteil des Verfassungsgerichts zu geraten oder eine allgemeine Aufweichung der Schuldenbremse zu erfordern. Aus ökonomischer Perspektive wurden ähnliche Denkanstoße bereits vereinzelt gegeben, zuletzt von ifo-Präsident Fuest bei der CSU-Klausur in Seeon. Wir wollen den politischen Weg dahin beleuchten. 

Die Einrichtung eines Sondervermögens erfordert eine Zwei-Drittel-Mehrheit im deutschen Bundestag und damit die Zustimmung der CDU/CSU-Fraktion: Für den Haushalt 2023 gilt zwar noch eine Notlage, aber für Kreditermächtigungen jenseits der Schuldenbremse über 2023 hinaus ist die Verankerung im Grundgesetz erforderlich. Deshalb könnte und würde das Sondervermögen realistisch kein erweiterter Haushaltsposten der Bundesregierung sein, sondern müsste der Union entschieden entgegenkommen. Was das ganz konkret hieße, müsste das Ergebnis einer politischen Verhandlung zwischen Union und Bundesregierung sein - aber wir halten folgende Merkmale eines Sondervermögens für grob realistisch und damit für eine geeignete Grundlage für diese Diskussion:

• Ein Volumen von ca. 150 Mrd. € über einen Zeitraum von ca. 15 Jahren.

• Jährliche Staffelung der Kreditermächtigung, um vorzeitige Erschöpfung des Sondervermögens zu vermeiden.

• Ausschließlicher Fokus auf investive Ausgaben. 

• Nach Möglichkeit Aufnahme von restriktiven, gesetzlich bindenden Leitplanken, z.B. gegen Verwendung für konsumtive Ausgaben und gegen Verwendung für bestehende Posten des laufenden Bundeshaushalts. 

• Aufnahme von bindenden inhaltlichen Beschränkungen bzgl. besonders kontroverser inhaltlicher Schwerpunkte, z.B. gegen ‘Energiepreisbremsen’, Klimageld, Kernkraft. 

Selbst unter diesen Maßgaben wäre die Einrichtung des Sondervermögens eine große politische Erleichterung für die Parteien der Bundesregierung. Aus Unionsperspektive stellt sich die Frage, warum man der Ampel in ihrer misslichen Lage politisch helfen sollte. Und von beiden Seiten stellt sich die Frage, wie realistisch eine konstruktive Einigung zwischen Regierung und Union wohl ist - besonders nach vielerlei gebrochenen Zusagen zum Sondervermögen Bundeswehr. Die aufgeladene Stimmung zwischen Opposition und Regierung stellt die Realisierbarkeit des Vorschlags ernsthaft in Frage. Wir glauben, dass das Sondervermögen dennoch sowohl im Interesse der Bundesrepublik als auch letztendlich im spezifischen politischen Interesse der Union ist. Das Argument dafür hat eine wirtschaftspolitische, eine haushaltspolitische und eine vertrauenspolitische Dimension. 

Stabilität in der Wirtschafts- und Klimapolitik 

Durch das Sondervermögen kann ein sicherer Rahmen für die Finanzierung der deutschen Wirtschafts- und Klimapolitik der nächsten Jahre geschaffen werden. Das ist dringend nötig: Von ganz links bis ganz rechts herrscht Einigkeit, dass der Bundesrepublik ein kostenintensiver Sanierungs- und Transformationsprozess bevorsteht. Durch das Sondervermögen kann dieser Prozess stabil und konstruktiv begleitet werden - durch Effekte auf drei Ebenen:

In Zeiten immer engerer Haushaltsspielräume ist die Sicherstellung der Finanzierung längerfristiger wirtschaftspolitischer Maßnahmen ein Wert für sich. Aus der Opposition geht der Union noch leicht der Gedanke über die Lippen, dass Wirtschaftspolitik als solche nicht teuer ist, sondern nur nach Bauart der Ampel. Aber auch die von der Union bevorzugten Maßnahmen kosten Geld:  Infrastrukturinvestitionen, (Anlocken von) Wagniskapital, Auslobung von Pioniermärkten, Stärkung der Energiesicherheit, uvm., müssten bezahlt werden, sollte die Union wieder wirtschaftspolitische Entscheidungen in Deutschland treffen - ob 2025 oder später. Für die Einrichtung einer Finanzierungsquelle, die nicht in Konflikt mit der Schuldenbremse oder steuerpolitischen Zusagen gerät, wäre der nächste Bundeswirtschaftsminister der Union daher sicher nicht undankbar.

Wirtschaftspolitische Verlässlichkeit und Investitionssicherheit sind für die Standortqualität unerlässlich. In einem instabilen politischen Klima und unter vermutlich wechselhaften und komplexeren Koalitionen, und mit einer erschwerend hinzu kommenden Zentralisierung von Entscheidungen in den auswechselbaren politischen Leitungsebenen ist diese Kontinuität und Zuverlässigkeit aber in Gefahr. Man stelle sich vor, es hätte zum Beispiel die kontroverse Förderzusage an Chiphersteller unter den plötzlichen Konsolidierungsbemühungen gelitten - ihr Wegfall nach großer Ankündigung und getroffenen Entscheidungen hätte eine katastrophale Signalwirkung auf ausländische Investoren gehabt. Eine Verstetigung einiger Grundlinien der Wirtschaftspolitik, die nicht aus parteipolitischem ad-hoc-Kalkül aufgegeben oder in nächtlichen Haushaltsverhandlungen ausgetauscht werden können, sondern einem stabilen Kompromiss entspringen, täten dem Standort gerade mit Blick auf den aktuellen Investitionsrückgang gut. In einer Zeit, in der politische Stabilität ein immer selteneres und damit höheres Gut für Unternehmen und Investoren ist, kann und muss Deutschland eine sichere Bank bleiben.

Unter Voraussetzung dieses Verstetigungseffekts liegt in der Einrichtung des Sondervermögens eine Gelegenheit für die Union, wichtige Weichenstellungen zu gestalten. Selbst wenn die Union 2025 wieder an die Regierung kommen sollte, bleiben der aktuellen Bundesregierung noch zwei Jahre, weitreichende Entscheidungen zu treffen. Macht die Ampel in dem Zusammenhang Förderzusagen, schafft Investitionsprogramme und stellt Zuschüsse in Aussicht, könnte die nächste Bundesregierung in die Verpflichtung geraten, diese Versprechen auf Kosten des eigenen Handlungsspielraums einzulösen, um Kontinuität zu wahren. Schafft die Union es jetzt, durch die Verhandlungen zur Ausgestaltung des Sondervermögens Leitplanken für die Wirtschaftspolitik der Ampel aufzustellen, könnte sie damit auch neue Altlasten für eine hypothetische Regierung ab 2025 reduzieren. Die Union erhielte durch das Sondervermögen tatsächlichen Einfluss auf die aktuelle Wirtschaftspolitik und würde Weichenstellungen zu ihren Ungunsten vorbeugen. 

Handlungsfähigkeit in der Haushaltspolitik

Das Sondervermögen schafft allseits dringend benötigte haushaltspolitische Spielräume für diese und kommende Bundesregierungen, bewahrt aber gleichzeitig die Schuldenbremse in ihrer aktuellen Form. 

Damit sind Schuldenbremse und Sondervermögen eine bessere goldene Regel, als es die goldene Regel je war. Die ‘goldene Regel’, also grob die haushaltspolitische Vorschrift, dass Schulden nur für Investitionen gemacht werden dürfen, fiel letzten Endes semantischer Trickserei zu Opfer - entstand aber aus folgender plausibler Motivation: Die starken elektoralen Anreize für kurzfristig wirksame konsumtive Ausgaben dominieren gegenüber langfristig wirksamen Investitionen in wirtschaftliche Transformation. Das findet sich in den ‘Rentengeschenken’ der letzten Bundesregierung genauso wie in der aktuell mangelnden Kürzungsbereitschaft der SPD bei den Sozialausgaben, die dem eigenen Markenkern und Elektorat zugutekommen. Diese Anreizstruktur erklärt die strukturelle Unterfinanzierung von Ausgaben in die wirtschaftliche Zukunft. Es erklärt auch, warum die Ampel ohne ein Sondervermögen das Geld für die Transformation vermutlich nicht finden können wird, sondern eher eine unterfinanzierte Wirtschaftspolitik in Kauf nehmen könnte. Anders als der Status Quo und als jede allgemeinere Erweiterung der Haushaltsspielräume entkommt das Sondervermögen diesem strukturellen Hindernis für sinnvolle Investitionen.

Weil das Sondervermögen nicht für alles ausgegeben werden kann, ist eine spontane Umwidmung nicht möglich. Weiterhin kann durch klare Spezifizierung der Ausgabemöglichkeiten auch eine Umdeklarierung aktueller Investitionen aus dem Bundeshaushalt und damit die indirekte Finanzierung von weiteren konsumtiven Ausgaben verhindert werden. Letzteres erfordert sowohl legislative Absicherung als auch verlässliche Absprachen zwischen den beteiligten Parteien. Aufgrund der prekären Haushaltssituation der Ampel sollte die Union in der Lage sein, im Gegenzug für den unmittelbaren fiskalischen Spielraum für die Ampel durchzusetzen, dass politisch aus ihrer Sicht nicht tragbare KTF-Projekte nach wie vor aus dem Bundeshaushalt finanziert werden müssen. Aber damit die Union diesen Schritt gehen kann, braucht es Ehrlichkeit seitens der Bundesregierung - mehr als zum Beispiel noch beim Sondervermögen Bundeswehr, das ursprünglich auch separat vom laufenden Verteidigungshaushalt gehandelt werden sollte.

Keine erweiterten Spielräume wären für die Union auch keine Lösung. Jenseits eines Sondervermögens bliebe sie zwischen zwei unliebsamen Möglichkeiten gefangen: Erstens einem unveränderten Beibehalten einer geschärften Schuldenbremse und der vielleicht zu engen Haushaltsspielräume, die mit ihr einhergehen. Wie bereits vielerseits antizipiert erschwert diese Version der Schuldenbremse die Arbeit jeder künftigen Bundesregierung deutlich. Jenseits des Wegfalls der Sondertöpfe, die noch auf Jahre zusätzliche Ausgaben ermöglicht hätten, ist auch die allgemeine Stärkung von Jährlichkeit und Jährigkeit ein Schlag gegen die bisher gelebte Haushaltspraxis, der Flexibilität und Zuverlässigkeit der Planung schwächt. Rückläufiges Wirtschaftswachstum und projiziert steigende, fast unvermeidbare Ausgaben, zum Beispiel in Form von Zuschüssen zur Rentenversicherung, verschärfen die dadurch geschaffenen Probleme. Zudem scheint klar: So sehr es sich die Union auch wünscht und so sehr es der Ampel auch politisch schaden mag - die Ampelparteien rücken partout nicht von ihren konsumtiven politischen Zusagen ab. Im Ergebnis bleibt also eine höchst undankbare Haushaltslage für jede Bundesregierung der nächsten Jahre. Neben dem Sondervermögen liegt der einzige weitere plausible Ausweg in einer generellen Aufweichung der Schuldenbremse. Das ginge auf noch deutlich größere Kosten der eigenen haushaltspolitischen Glaubwürdigkeit und würde ein ungleich höheres Risiko für die Finanzierung von politisch kontroversen Ausgaben der Ampelkoalition und  allgemein von vermehrten zukünftigen konsumtiven Wahlgeschenke beinhalten. Nur das Sondervermögen behält die Schuldenbremse und schafft gleichzeitig wichtige Spielräume.

Vertrauen in Staat und demokratische Mitte

Andauernde Streitigkeiten um die Finanzplanung drohen zu einem Vertrauensverlust zu eskalieren - in die Parteien der Bundesregierung, in die demokratische Mitte und in die Handlungsfähigkeit des Staates. Gerade in Zeiten paralleler globaler Krisen und Herausforderungen stellt Vertrauen ein wertvolles, aber flüchtiges Gut für funktionierende demokratische Gesellschaften und die Leistungsfähigkeit ihrer Volkswirtschaften dar. 

Ängste der Bevölkerung um die wirtschaftliche Zukunft des Landes sind sich schon seit Beginn des Krieges in der Ukraine im Aufwärtstrend - und gehen einher mit Rekordumfragewerten der AfD. Durch endlose Haushaltsdiskussionen entsteht, angefacht von populistischen Kräften, schnell der  Eindruck, dass der Staat entweder an der Zukunft seiner Bürgerinnen und Bürger spart oder wichtige Leistungen nicht mehr garantieren kann. Diese Angst vor Sparmaßnahmen ist ein klassischer Treiber von politischer Instabilität und Populismus im europäischen Ausland. Alle demokratischen Parteien täten gut daran, ihre destabilisierende Wirkung ernst zu nehmen. 

Ein Kompromiss der demokratischen Mitte um die Aufstellung eines Sondervermögens demonstriert fiskalpolitische Handlungsfähigkeit und sichert die Investitionen in die wirtschaftliche Zukunft des Landes. Das ist ein wirkungsvolles Signal für Handlungsfähigkeit und Handlungsbereitschaft: Die demokratischen Parteien zeigen, dass sie in der Lage sind, in Krisenzeiten zusammenzuarbeiten und einen verlässlichen Haushalt zu erstellen, der zentralen wirtschaftlichen Notwendigkeiten gerecht wird. Das schwächt die populistisch motivierten Feindbilder einer heillos zerstrittenen, selbstreferentiellen Ampel und einer zynisch destruktiven Union gleichermaßen. Den politischen Rändern wäre im Vorfeld wichtiger Wahlen viel Aufwind genommen. 

Auch in der Wahrnehmung aus dem Ausland steht viel auf dem Spiel. Ausländische Investoren und Verbündete gleichermaßen müssen mit Zusagen sicher planen können. Ein stabiles Deutschland ist ein zuverlässiger wirtschaftlicher und geopolitischer Partner. Das erleichtert langfristig wirtschaftliche Handelsbeziehungen, sichert außenpolitische Interessen und hilft, eine wichtige Figur in der internationalen Klimapolitik zu bleiben. Partner in einer Klima-Allianz der Willigen und ausländische Investoren gleichermaßen können nur mit einem Deutschland arbeiten, das sich selbst und seinen Zusagen nicht im Weg steht.

Letztlich ist eine stabile politische Landschaft auch im ureigenen parteipolitischen Interesse der Union. Die Verlockung ist groß, die Bundesregierung ihre selbstgemachte Regierungskrise ausbaden zu lassen, um den Wahlsieg 2025 zu sichern. Aber mit jedem gewonnenen Prozentpunkt geht die Gefahr weiterer Zugewinne der politischen Ränder einher - die Unzufriedenheit mit der Bundesregierung zahlt häufig gleichermaßen auf die Konten der Union und der AfD ein. Gerade als historisch stärkste politische Kraft im Parteiensystem, häufigste Kanzlerpartei und definitiver Favorit für die nächste Bundestagswahl sollte die Union nicht das Risiko einer Destabilisierung der politischen Landschaft eingehen. Unaufgeregte politische Stabilität ist Teil des eigenen Markenkerns, der nicht unter allen Zusammensetzungen des Bundestags ab 2025 gewährleistet werden kann. Und als Wahlsiegerin 2025 würde die Union von einer starken restlichen demokratischen Mitte in vielerlei Hinsicht profitieren: In Form von vielfältigen Koalitionsoptionen, in Form von einer konstruktiven Parlamentsaufstellung bis in die Ausschüsse hinein, und in Form vom Fortbestand einer demokratischen zwei-Drittel-Mehrheit im deutschen Bundestag. Auf sich allein gestellt bringt die Ampel diese demokratische Mitte in Gefahr: Das mag der Union kurzfristig elektoral nutzen, ist aber langfristig ein Pyrrhussieg. Für eine erfolgreiche nächste unionsgeführte Bundesregierung muss die Wahl 2025 gewonnen werden - aber sie muss eben auch ein regierbares Land hinterlassen.  Ein Sondervermögen könnte den Weg dahin ebnen. 

Die Einigung auf ein Sondervermögen für die Zukunftssicherheit der deutschen Volkswirtschaft wendet dreierlei Bedrohung ab: Haushaltspolitische Paralyse, wirtschaftspolitische Erratizität, und wahrgenommene Handlungsunfähigkeit der politischen Mitte. Aber sie erfordert die Überwindung eines breiten und tiefen Grabens zwischen den Parteien der Bundesregierung und der Union. Und sie erfordert einmal mehr, dass die Union in ihrem langfristigen Eigeninteresse kurzfristig zugunsten der Ampel handelt.  Der Versuch einer Überwindung könnte sich dennoch lohnen - für Deutschland und alle seine demokratischen Parteien.

Dieser Text entstand in Zusammenarbeit mit Dominik Hermle.

The EU AI Act’s foundation model regulation faces criticism motivated by economic concerns around the future of foundation model development in Europe. A deeper look at the EU AI ecosystem and resulting market dynamics reveals that such concerns might be highly misguided - a strong regulatory focus on foundation models would be highly economically beneficial. 

I collaborated with Dominik Hermle on this text.

We were happy to see our thoughts shared and developed e.g. in the EU AI Act Newsletter, in Euractiv, by Yoshua Bengio, and an open letter of leading AI experts to the German government.

Introduction

Approaches to AI regulation are torn between an upstream focus on the providers of powerful foundation models and a downstream focus on the practical deployment of these models’ capacities. Recent discussion around the EU’s AI Act has seen the proposal of an article 28b stipulating extensive regulatory requirements for providers of foundation models. This proposal was met with economic concerns regarding the EU’s global position in the AI space. We argue that these economic objections are misguided, and make two core claims: (a) that the EU AI ecosystem will most likely not feature globally competitive foundation model providers, but will continue to consist mostly of downstream deployers of AI; and that (b) foundation-model focused regulation leads to dramatically fewer regulatory burdens on AI EU players and enables a less constrained and more efficient market. 

EU AI Regulation At a Crossroads

In April 2021, the EU Commission published its proposal for comprehensive regulation of artificial intelligence in Europe. This proposal, the AI Act, seeks to ensure safe and beneficial artificial intelligence in Europe by preventing harms from misuse and unreliability of AI systems while harnessing their economic and social potential. Following extensive negotiation, the EU trilogue is set to finalize the AI Act shortly. 

Regulating Foundation Models

One of the few remaining controversies surrounding the AI Act concerns the regulation of so-called foundation models. Soon after the AI Act was originally suggested in 2021, public and political awareness of recent advances in AI research skyrocketed. This specifically motivated a stronger focus on the cutting edge of AI capabilities, which is driven by foundation models - particularly powerful AI models with a wide range of applications. For instance, ChatGPT is based on OpenAI’s foundational language models GPT-3.5 and GPT-4. Strong expert consensus warned of risks of misuse, or worse, of unreliability and loss of control, from foundation models. In consequence, the European Parliament suggested the addition of an article 28b to the AI Act, introducing requirements and liabilities for foundation models.

The specific details of 28b have since been the meandering subject of negotiations - the common element relevant for our point is that 28b envisions that some of the burden of ensuring safe and legal AI outputs is born by the providers of foundation models, and not only by the deployers ultimately bringing the AI to the customer. For instance, models might have to go pre-publication screening for resistance to misuse or reliability; model providers might be liable for the harms caused by blatantly exploitable security gaps; or providers might be obligated to ensure model outputs cannot violate privacy rights.

The Economic Objection 

The parliament’s suggestion of article 28b has faced strong resistance on economic grounds, led by the national governments of France and Germany. Their predominant concern is that regulating foundation models might endanger nascent European foundation model development, such as by French MistralAI and German Aleph Alpha. Facing contentions that EU foundation models are not yet cutting-edge, EU policy-makers point to growing interest and investment - and hope that EU providers will become globally competitive and strategically important. For instance, Aleph Alpha recently made headlines by securing a $500M funding pledge from a range of German businesses. The objection to article 28b then holds that burdening local AI providers with regulation at a crucial moment of their expansion could prevent the EU from catching up to the US and China. In contrast, established AI players like OpenAI, Google and Meta might benefit from a higher regulatory burden further entrenching their position as market leaders. Concerns are exacerbated by gloomy economic forecasts motivating a renewed focus on drivers of economic growth. Beyond the strictly economic, the EU has, in recent years and following geopolitical crises, strengthened its focus on strategic autonomy - a notion that might drive this most recent push to secure homegrown capabilities in key technologies.  

We believe the argument against foundation model regulation from economic concerns is misguided and threatens to squander the potential of a comprehensive and effective EU AI Act: Even abandoning foundation model regulation entirely would be unlikely to create global cutting-edge foundation model development in the EU. However, adopting foundation model regulation offers significant, but mostly overlooked economic upsides - while also safeguarding against manifold risks. 

EU Foundation Model Aspirations: A Reality Check

Foundation models from EU providers currently are not in a leading position in the international market. Even Europe’s foremost providers and their models - Germany’s Aleph Alpha, France’s Mistral, or, on a broader definition, French-American HuggingFace - lag behind in performance and applications for end-users built on top of them. While GPT-3.5 and GPT-4 record over 100M users per week through ChatGPT alone, it is difficult to find substantial consumer-facing products based on Aleph Alpha’s or Mistral’s models. In the comprehensive HELM evaluation, which considers a range of benchmarks from question answering to text summarization, European models are far behind the state of the art. In its own performance benchmarks, Aleph Alpha only compares their current best public model, Luminous Supreme, to the original release version of GPT-3 from 2020, placing the EU three years behind the curve. Optimists will point out that Mistral’s most recent model compares favourably to Meta’s LLaMa-2; but even that only relates to LLaMa-2’s weakest, 13B parameter version. Already today, EU foundation model development is mostly on the backfoot. And we believe the gap will widen.

To cash in on the economic and strategic potential of AI motivating the opposition to article 28b, a European foundation model provider would have to become a globally competitive large player in their own right. This aspiration is gated by three factors: compute — specialized computational hardware powering model training and continuous operation; data — a large training corpus of text and images that capture a broad range of subjects, tasks, and aspects of life, and talent — capable experts in machine learning and engineering to develop the models.

Lacking Computational Resources and Funding

Firstly, in the modern era of AI development, computational resources prove to be a prohibitive bottleneck for innovation. While some initial performance breakthroughs in deep learning have come from universities, this trend started to dramatically reverse once larger amounts of highly parallel and high throughput compute (like GPUs or TPUs) were needed to achieve better performance. With an ever growing focus on compute, lack of computational resources in the EU could stifle foundation model development. This bitter lesson on the essentiality of compute plays into the hands of the established players that already command large amounts of compute and infrastructure: Google DeepMind; OpenAI and Anthropic and their respective collaborators Microsoft, Alphabet and Amazon; and Meta each have access to some of the most impressive concentration of compute on the planet. From this concentration, running costs are comparatively low, further bolstering established players. 

Catching up would be dramatically costly for European foundation model providers. The recent news of Aleph Alpha securing €500M of investment pledges was touted to be a game changer - but it falls short of comparable investments made in the US by at least an order of magnitude. Operating expenses for a compute cluster to train a model like GPT-4 are estimated above $1B, with models under current development likely exceeding such costs substantially. OpenAI received $10B in funding from Microsoft earlier this year - on top of the already massive compute that enabled OpenAI to develop GPT-4, which to this day outcompetes many European alternatives. Even if the EU and member states sought to bridge this gulf with state subsidies, costs would be enormous and success doubtful: Their ambitious IPCEI Microelectronics II encompasses €8.1B in subsidies - distributed across 56 (!) companies. Even if Aleph Alpha was to receive an entire IPCEI worth of funding on top of its recent investment round, this would still barely match OpenAI’s single latest funding influx. There is little indication that sufficient funds for EU providers to catch up to the global frontier in compute exist. 

Lacking Data and Talent

Similarly, data bottlenecks favor incumbent providers with connections to big tech corporations. To train larger models efficiently, increasing amounts of data are needed. Incumbent tech companies own huge amounts of text data that can be used for training: Meta, for example, trains their models on public Facebook and Instagram posts. StackOverflow, X/Twitter and Reddit all made drastic changes to their API this year, in large part to prevent the free use of their user’s data for training AI models. No European provider-to-be - and even worse, no European stakeholder at all - has access to a comparable wealth of exclusive data. Moreover, having a large user base creates a positive feedback loop where users generate new data, which can then be used to improve the current model, leading to more users. Incumbent providers have such user bases, European providers do not. If constraints and advantages from data continue to matter more and more, the EU hopefuls might thus face yet another substantial obstacle.

Lastly, in comparison, the EU lacks talent. General concerns on the attractiveness of EU countries to exceptional international talent in computer science, engineering etc. apply to the exceedingly demanding challenge of building foundation models in full force. A recent evaluation of AI researchers in Germany clearly demonstrates this trend’s application to AI - even where European countries manage to foster home-grown AI talent, the best and brightest are quick to leave for global hotspots. And when talent remains in the EU, international, non-native tech companies like Amazon or Meta are top employers. This talent gap grows - because the most qualified individuals are motivated to work with qualified experts, on the most exciting and cutting-edge projects. As state of the art models are mostly developed in North America and the UK, EU countries lose even more home-grown talent to these countries.

Can EU Providers Find a Niche?

Faced with these challenges, many voices have instead suggested that European providers’ business case would be to occupy market niches via comparative cost advantages or specialisation on safety and EU-specific (e.g. GDPR) compliance. We believe this to be a realistic path forward for European providers. However, even with specialized models, European providers face obstacles: economies of scale surrounding compute, data and talent as well as the broad, non-specialized capabilities of foundation models make it exceedingly difficult to outcompete the largest providers. Hence, specialized foundation models offered by smaller providers might be unlikely to capture significant market share - case-specific applications or specialized versions of frontier general-purpose models could be more attractive in many cases. The same effect applies to safety and compliance: Due to expertise and scale, large providers are likely to be able to design more comprehensive and reliable guardrails. Gated by these effects, the EU’s foundation model development would be limited to a small suite of somewhat technologically outdated models with potentially higher operating costs. 

While this niche is certainly valuable for some use cases, it is not obvious that it is valuable enough to motivate the elimination of article 28b: Firstly, if EU providers are unlikely to be at the global frontier of performance, it is less obvious how EU foundation models would constitute a strategic technology justifying decisive political intervention on the level of e.g. semiconductors - especially given the substantial costs of 28b’s elimination discussed later. Secondly, it is unclear why such a compliance-focused niche market would even have any reason to be concerned about compliance-focused provider regulation to begin with - instead, article 28b would even seem conducive to the realistic future for EU providers by providing regulatory support for their purported advantages over generalist models. And thirdly, in what is referred to as a ‘tiered approach’, 28b might only apply to larger and more general foundation models; in this case, the European champions and their future business cases would not even be affected by its stipulations whatsoever. At any rate, the niche market argument fails to justify abandoning provider regulation. 

In summary, it is unlikely that European providers can become major, globally competitive players. For that, they lack the talent, the compute, and the data, with no apparent way to close this threefold gap - whether article 28b is eliminated or not. But if they are set to become providers of niche applications instead, they don’t require the protectionist response of eliminating 28b.

The Economic Case for Foundation Model Regulation

But while the EU might not be set to become a major nexus of foundation model development, AI is still set to be an ever-growing major part of the economy. Businesses will have their internal processes powered by AIs, existing software developers will build user-facing applications drawing on the power of foundation models, and start-ups will explore novel ways to harness AI for specific purposes - the common market is set to be rich in downstream deployers of AI. The deployer space is set to be much less consolidated around big players - just as with non-AI software today, a multitude of downstream applications for artificial intelligence exists, many of them specific to countries, languages or even single businesses, and none of them as demanding in terms of talent or compute. No obvious countervailing concetration mechanism as powerful as in foundation model provision comes to mind. So just as there are many European apps, but few European tech giants, there will surely be many downstream European deployers, but few providers. 

Foregoing comprehensive foundation model regulation would pose a grave economic risk for this future of AI use and deployment in Europe. This is because, in a world without foundation model regulation, downstream deployers are set to carry the brunt of the regulatory burden. For many regulatory requirements that article 28b would impose on upstream providers, its removal would instead shoulder the downstream deployers with even more burdensome provisions. Instead of the providers ensuring their model is not trained on protected data, deployers will have to ensure privacy-compliant outputs; instead of providers training models on safe and ethical guidelines, deployers will have to prevent unsafe or harmful output. Legally, this burden shift might play out in two ways: Firstly, the final version of the AI act might explicitly impose responsibilities for preventing the display of potentially harmful or illegal foundation model outputs on the ultimate deployers. Or the deployers, as the user-facing entity, would simply be entirely liable for their applications’ output - including the potential security risks, privacy breaches, etc. passed on from the foundation model they employ. Either way: Deregulation of upstream foundation models increases the de-facto regulatory pressures on downstream deployers massively. Threefold economic potential lies in regulating foundation models and their provders instead: 

Lightening Regulatory Burdens 

Firstly and most obviously, vulnerable deployers face economic peril at the extent of regulatory burdens. As it stands, businesses in Europe already struggle with bureaucratic burdens - the software start-up ecosystem in particular struggles with the resulting hostile environment. Ensuring compliance of an application based on an unregulated foundation model is a large task. At minimum, it will require substantial expertise in navigating a range of requirements, extensive development and stress-testing of filters, and similar. Realistically, it might also require enlisting expensive, sought-after and otherwise unnecessary expertise in machine learning to modify employed foundation models to ensure compliance. Such requirements to set up a comprehensive safety division place a heavy burden on the vulnerable early stages of deployment and threaten to stifle a budding downstream ecosystem in the EU. Serious foundation model providers, even the smallest of which have to command a baseline of funding and relevant expertise far beyond many fledgling deployers, are surely more resilient to such burdens. Plus, recall that the EU is rich in deployers and poor in providers - so even if shifting regulatory burden to providers was a zero-sum game, this would favor the EU’s economy. 

Lowering Compliance Costs

However, secondly, shifting the burden from providers to deployers will likely increase the overall burden, cost and even the possible extent of regulatory compliance. In ensuring safe and compliant model outputs, providers have a range of technical advantages: Some non-compliant output, especially relating to data protection and privacy, can best be addressed when selecting the initial training data - something only providers can do. Furthermore, many promising approaches to ensure safe outputs apply at the AI model’s initial training stage, with further modification of an already-trained model being a distant, less reliable and more costly second choice. And thirdly, foundation model providers are likely to be much more aware of their models’ specific shortcomings, providing them with further advantages in ensuring compliance. Furthermore, deployer-level regulation begets redundancy: If one foundation model services 100 deployers, provider-level regulation requires one central safety effort, while deployer-level regulation requires 100 separate designs and implementation loops for safety measures. Hence, the system-wide burden of compliance is lower in a provider-focused framework - making this focus not only advantageous to the EU, but overall positive-sum. 

Ensuring a Free Marketplace

Thirdly, foundation-model level regulation offers a much more efficient and dynamic AI marketplace. If the responsibility to comply rests with deployers, their solutions for compliance will likely have to be specific to the foundation model they employ, and its respective risks. Since risks and failure modes can vary drastically between different foundation models, it stands to reason that such compliance solutions would not enable ‘plug-and-play’ between different foundation models. And even if they were, plugging and playing might still come with high execution costs, such as when conducting fine-tuning via reinforcement learning. As a result, switching between foundation models would be highly costly for deployers. However, with every element of security compliance already homogeneously built into each foundation model, bespoke compliance solutions shrink and the ensuing costs of switching fall. As a result, the market for foundation models becomes less and less contestable, leading to much more difficult conditions for newcomers and worse terms for deployers and ultimately consumers. This is particularly concerning given already salient concerns of market concentration in foundation models. 

Looking ahead, AI in the EU is likely to be heavy on deployers and light on providers. In that environment, foundation model regulation decreases both local and global regulatory burden and ensures fair and functional market mechanisms. 

Alternatives to Foundation Model Regulation?

Defenders of deployer-focused regulation argue that regulatory burdens on deployers will lead providers to adapt, incentivizing them to provide compliant and safe models. We doubt this claim for two reasons: Firstly, the market might not be responsive enough to make such incentives stick: Path dependencies in choices of foundation models might make switches costly and unlikely, with further lock-in on the horizon as described above. And secondly, safety is likely at odds with maximum functionality - as AI models get more capable, they also become more difficult to safely align with legal desiderata. Whereas the hard requirements of regulation would ensure the prioritization of safety, a soft market incentive might still lead providers to forego compliance in favor of further capability gains. Empirically, it stands that, due to the unreliability of their products, foundation model providers have not been able - or willing - to make reliable assurances about safety and reliability. Existing market concentration of foundation model development with only a handful of providers exacerbates the issue. Hence, market incentives seem unlikely to reduce economic harms from burdens on deployers. 

Lastly, recent debate has seen the proposal of a ‘tiered approach’, in which regulation applies only to the largest foundation models - likely aimed to protect smaller foundation model providers. Overall, such an approach would accommodate many of the concerns above. However, we remain somewhat skeptical: If large, regulated foundation models and small, unregulated foundation models coexist, one of two issues might arise. Either employing an unregulated foundation model places additional regulatory burden on the deployers - in that case, deployers would suffer drastically increased costs from employing the smaller models. It is hard to imagine how these smaller models would then remain competitive, rendering the protection the tiered approach was supposed to afford them ineffective. If employing an unregulated foundation model comes with no additional deployer burdens, however, the AI Act leaves open a conceptual gap - applications built on the smaller models could produce harmful or illegal output with little legal recourse available. A tiered approach is much better than no foundation model regulation, but remains either somewhat inefficient or somewhat unsafe.

Conclusion

Opponents of article 28b’s provider-focused regulation perceive a tension between caution of risks on the side of provider focus and economic potential on the side of deployer focus. However, eliminating article 28b has little economic upside: EU foundation model development is too unlikely to catch up to the global frontier to warrant its protection via deregulation. Instead, the overall European AI ecosystem and its many AI deployers greatly benefit from foundation model regulation: by virtue of less local and global regulatory burden and a stronger and more efficient market. A strong economic case supports regulatory focus on foundation models and their providers.