Threat Assessment: Vendor lock-in at the data center level. Hardware manufacturers are actively maneuvering to scale back independent repair rights. According to a new report from Ars Technica, tech giants including IBM and Cisco are attempting to neuter Colorado’s landmark right-to-repair law. They are backing a new bill, SB-90, designed to carve out massive exemptions for enterprise-level technology.
The original Colorado law gave buyers the legal right to fix their own hardware. Now, the enterprise sector wants out, leveraging security concerns to maintain control over repair markets.
Tactical Breakdown
- The Enterprise Exemption: IBM and Cisco are pushing to limit repair laws strictly to consumer devices. An IBM spokesperson stated that policies must protect “cybersecurity, intellectual property, and critical infrastructure.”
- Weaponized Terminology: The primary strategy relies on broad, intimidating terminology. The bill uses phrases like “information technology” and “critical infrastructure.” Nathan Proctor, leader of Pirg’s US right-to-repair campaign, told Ars Technica this language is deliberately cynical. “It sounds scary to lawmakers, but it just means the internet,” he noted.
- Vague Legal Boundaries: The proposed definitions are highly subjective. “Critical infrastructure” is pulled from a 2001 federal definition regarding systems vital to national security. Gay Gordon-Byrne of the Repair Association testified that the bill’s definition is “completely inadequate” and practically non-existent.
- Coordinated Resistance: Over a dozen repair advocates, including iFixit representatives and prominent advocate Louis Rossmann, mobilized at the recent hearing to oppose the bill.
Strategic Implications
This is a critical fight over who controls the hardware that powers modern computing. Artificial intelligence and enterprise networks do not run on consumer laptops. They require heavy-duty servers, switches, and routers.
The AI industry is currently consuming server hardware at an unprecedented rate. Training large language models requires massive, uninterrupted uptime across thousands of interconnected nodes. When a component fails, operators need it fixed immediately. If companies successfully classify this tier of hardware as “critical infrastructure,” data center operators lose the legal right to fix their own server racks.
This creates a mandatory operational dependency. You buy the hardware, but you must rely entirely on the manufacturer’s authorized technicians to maintain it. For operators managing massive compute clusters, this translates directly to higher maintenance costs and slower repair turnaround times. You cannot simply swap a part yourself; you must wait for the vendor.
Furthermore, this establishes a dangerous legislative blueprint. If tech giants successfully push the SB-90 exemptions through in Colorado, expect to see the exact same “critical infrastructure” playbook deployed in every state considering right-to-repair legislation.
Next Steps
The battle over SB-90 is currently unfolding in committee hearings. Data center operators, AI infrastructure managers, and independent technicians should prepare for a tightening of enterprise hardware control. If this legislation passes, expect strict enforcement of vendor-exclusive repair contracts for all data center infrastructure. Check the original Ars Technica reporting for ongoing updates on the legislative hearings.