← All notes
LeadershipAI

Avoid AI Platform Lock-In Before It Becomes Policy

A practical note on avoiding AI platform lock-in by designing contracts, data access, costs, governance, and workflows around future change.

Some technology decisions are easy to defend on the day they are made and hard to explain three years later.

The budget was approved because the business needed speed. The contract looked reasonable because the platform solved a painful problem. The architecture seemed practical because the team had limited time. The pricing model looked harmless because usage was small. The integration felt acceptable because everyone believed the first workflow would stay narrow.

Then the world changed.

The tool became part of daily work. Data moved into the vendor’s system. Internal processes were rewritten around its assumptions. Users became comfortable with its interface. Reports depended on its definitions. Procurement renewed the contract because replacing it looked disruptive. Eventually, what began as a decision became policy.

This is the quiet danger of technology lock-in. It rarely arrives as a single bad choice. It grows from reasonable choices that are never revisited.

AI makes this problem more important. Organizations are not only buying software now; they are connecting models to documents, customer conversations, internal systems, databases, workflows, code repositories, and decision processes. A rushed AI platform choice can shape architecture, governance, cost, hiring, data access, and product direction long after the original pilot has ended.

The lesson is not “never buy platforms” or “build everything yourself.” That is too simple. The better lesson is this: when technology is changing quickly, every major AI decision should include a plan for change.

The dangerous part of lock-in is how normal it feels

Most teams do not choose lock-in because they want fewer options. They choose speed, simplicity, certainty, or a good discount.

A vendor offers an integrated AI workspace. It includes chat, retrieval, workflow automation, connectors, agent tools, analytics, permissions, templates, and a polished admin console. The demo looks good. The security questionnaire is easier than expected. The first department wants it now. Leadership wants visible progress. Procurement negotiates a better price for a longer commitment.

None of that is irrational.

The problem begins when the first decision quietly becomes the default answer for every future problem. A team needs document search, so it uses the same platform. Another team needs a sales assistant, so it uses the same platform. A data team needs text-to-SQL, so it uses the same platform. Soon the company is not choosing the tool because it is the best fit; it is choosing the tool because it is already there.

That can be fine when the platform keeps fitting the work. It becomes expensive when the work changes and the organization cannot move.

AI systems are especially vulnerable because they touch many layers at once: user experience, models, prompts, retrieval, permissions, logging, evaluation, workflow automation, data storage, and cost management. If all of those layers are hidden inside one vendor relationship, the company may gain speed in the first month and lose negotiating power later.

The decision can still be right. But it should be made with open eyes.

AI has moved from experiments to operating systems

AI adoption is no longer only a research topic or a side project. McKinsey’s 2025 State of AI report describes broad use of AI across business functions, while also showing that many organizations are still trying to turn experiments into scaled value. That gap matters because the move from pilot to production is where lock-in usually appears.

In a pilot, the team cares about whether the tool works at all. In production, the questions change:

  • Who owns the data pipeline?
  • Can we move prompts, evaluations, and logs elsewhere?
  • Can we switch models without rebuilding the workflow?
  • Can we see why the system made a recommendation?
  • Can we enforce permissions from the source systems?
  • Can we predict cost when usage grows?
  • Can we end the contract without breaking daily operations?

These are not abstract architecture questions. They decide whether a company can adapt.

The market is still moving quickly. New models appear, prices change, context windows expand, agent frameworks mature, regulation develops, and teams learn which use cases are actually worth scaling. A decision that looks obvious in July 2026 may look restrictive by July 2027.

That does not mean organizations should wait. Waiting has its own cost. But moving fast is not the same as giving up future choice. The strongest teams learn quickly while keeping enough flexibility to change course.

A good first decision can become a bad operating model

One of the hardest things for leaders to accept is that a decision can be correct in its original context and still become wrong later.

This happens often in technology. A team uses one tool because it is available. It picks one vendor because procurement can approve it faster. It hard-codes one model because the API is simple. It stores generated outputs in a format that works for the first dashboard. It lets one department define the first taxonomy because that department sponsored the pilot.

Each choice may be defensible. The trouble comes when nobody marks the assumptions.

For AI projects, assumptions should be written down early:

  • We expect this workflow to stay narrow for the first six months.
  • We are choosing this model because latency matters more than deep reasoning.
  • We are storing prompts here because the evaluation process is still immature.
  • We are using this vendor’s retrieval layer because it helps us launch faster.
  • We are accepting higher cost per task because volume is low during the pilot.

Those statements are useful because they create a reason to revisit the decision. Without them, the team may treat the first architecture as if it were a strategy.

I think this is one of the most practical leadership habits in AI work: separate the reason a decision was made from the reason it continues. If the original reason no longer applies, the decision deserves a fresh review.

Do not outsource the learning you still need

Buying an AI product can be sensible. But outsourcing the entire learning process is risky.

If a vendor builds the assistant, manages the retrieval pipeline, hosts the evaluation tools, owns the workflow analytics, controls the model routing, and defines the success metrics, the buyer may get a faster launch. The buyer may also lose the internal understanding needed to govern the system.

This does not mean every company needs a large AI research team. Most organizations do not need to train foundation models or build every component from scratch. They do need enough internal skill to ask good questions, inspect failures, understand cost drivers, and challenge weak claims.

This is why practical AI skill matters even for teams that buy more than they build. In How to build practical AI skills for today’s tech job market, I argued that knowing the vocabulary is not the same as building reliable systems. The same applies to management. A leader does not need to implement every embedding pipeline personally, but someone on the team should understand how retrieval quality, context limits, structured outputs, tool calls, evaluation, and observability affect the product.

When the buyer lacks that knowledge, the vendor’s architecture becomes the buyer’s strategy by default.

That is dangerous because vendors optimize for their product. That is normal. Your organization has to optimize for its users, risk, cost, data, and future options. Those interests overlap, but they are not identical.

Design for model and vendor change

In traditional software, switching vendors can be painful. In AI systems, switching can be painful in more ways because the model is not the only dependency.

A production AI workflow may include prompts, system instructions, tool schemas, vector indexes, document parsers, chunking strategies, evaluation datasets, human feedback, traces, logs, safety filters, approval rules, and user-facing explanations. If those pieces are tightly coupled to one vendor’s format, the team may discover that the exit cost is higher than expected.

The goal is not perfect portability. Perfect portability can become an excuse for overengineering. The goal is reasonable reversibility.

For example:

  • Keep your source documents and metadata in systems you control.
  • Store evaluation datasets in a vendor-neutral format.
  • Version prompts and tool schemas outside the vendor UI when possible.
  • Log inputs, outputs, retrieved context, tool calls, and decisions in a way your team can inspect.
  • Avoid mixing business rules so deeply into a vendor workflow that nobody can explain them later.
  • Prefer APIs and interfaces that let you test more than one model or provider.
  • Document which parts of the system would need to change if the vendor changed.

This is not bureaucracy. It is future maintenance.

Model routing is a good example. Some tasks may need a stronger model. Others may work well with a cheaper, faster model. Some workflows may need structured outputs. Others may need long-context reasoning. If a platform hides all of this behind one magic button, it may be easy to launch but hard to optimize.

The more important the workflow becomes, the more the team needs visibility into these choices.

Contracts should assume the workflow will change

Many bad technology commitments come from pretending that the future will look like the purchasing document.

The first AI use case may be internal knowledge search. Six months later, the company may want workflow automation. Later, it may need human approval, audit logs, multilingual support, private deployment, different models, region-specific data handling, or integration with new systems. A contract that looked fine for the first use case may not fit the third.

Contract reviews should include technical change, not only price.

Before signing a long commitment, ask:

  • Can we reduce seats or usage if the pilot does not scale?
  • Can we export data, prompts, logs, evaluations, and configuration?
  • What happens if model pricing changes?
  • What happens if the vendor changes the underlying model?
  • Can we test alternative models or providers?
  • Are there limits on connectors, API calls, storage, or tool execution?
  • How are security, privacy, and compliance obligations handled as use cases expand?
  • What support do we get if we need to migrate?

The answer does not have to be perfect. But if the answer is unclear, the risk should be visible in the decision.

Long contracts can make sense when the value is proven, the workflow is stable, and the exit cost is understood. They are more dangerous when the organization is still discovering what it needs.

The same applies to discounts. A discount can be useful, but a cheap commitment to the wrong operating model is still expensive.

Cost needs to be visible before it becomes political

AI cost is easy to underestimate because the first version is usually small.

A few users ask questions. A handful of documents are indexed. The model calls look affordable. The pilot budget survives. Then usage expands, prompts get longer, documents multiply, agents call tools repeatedly, retries increase, and teams ask for better models. Suddenly the conversation changes from “this is innovative” to “why is this bill growing?”

That is when cost becomes political.

FinOps exists because cloud cost is not only a finance problem; it is an operating discipline. The FinOps Foundation describes FinOps as a way for engineering, finance, technology, and business teams to collaborate on data-driven spending decisions. AI needs the same habit, especially when model usage, retrieval, storage, observability, and workflow automation all contribute to cost.

In AI Budget Transparency Is a Leadership Skill, I wrote that cost visibility is part of trust. That is even more true when teams are buying or building AI systems. A leader should not wait for a surprising invoice before asking how cost behaves.

Good cost questions include:

  • What is the cost per completed workflow, not only the cost per model call?
  • Which prompts or tools consume the most tokens?
  • How often does the system retry or repeat a tool call?
  • Which users, teams, or use cases drive most usage?
  • Can we set budgets, limits, alerts, or approval thresholds?
  • Can simpler tasks use smaller models?
  • Can repeated context be cached or shortened?
  • Does the vendor pricing encourage behavior that is bad for our workflow?

Cost control should not be used to block all experimentation. But experimentation without cost visibility is not serious engineering.

Governance is how you keep options open

Governance is often described as a constraint. In AI work, good governance is also a way to preserve optionality.

The NIST Generative AI Profile emphasizes that generative AI risk has to be managed across the system lifecycle, not only at launch. That is a useful way to think about lock-in. A company needs to know how the system is designed, how it is monitored, how it changes, how failures are handled, and how it can be retired or replaced.

If governance starts only after the contract is signed, the organization may discover too late that important controls are missing. The tool cannot produce the logs legal needs. The vendor cannot explain model changes clearly enough. Permissions do not map cleanly to internal systems. Evaluation data cannot be exported. Human review is awkward to add. The security team approves a narrow pilot but not the broader workflow the business now wants.

That creates a familiar pattern: the company keeps the imperfect system because replacing it is too much work.

Good governance asks uncomfortable questions early:

  • Which decisions can the AI system influence?
  • Which actions require human approval?
  • What data is allowed in the system?
  • How are permissions enforced?
  • What evidence supports an output?
  • Who owns failures after deployment?
  • How are changes tested before release?
  • How can users challenge or report bad outputs?
  • What is the exit plan if the tool no longer fits?

These questions do not slow down serious teams as much as people fear. They prevent slow, expensive surprises later.

The build-versus-buy question is really a capability question

Teams often frame the decision as build versus buy. That framing is useful, but incomplete.

The deeper question is: which capabilities must remain inside the organization?

You may buy the model API, the vector database, the agent platform, the monitoring tool, the document processing system, or the workflow interface. But you probably should not outsource all judgment about data quality, evaluation, security, user needs, cost, and success metrics.

Different organizations will draw the line differently. A small team may need managed tools because it cannot maintain infrastructure. A regulated enterprise may need tighter control over data and auditability. A product company may treat AI capability as core and build more internally. A nontechnical department may use approved tools but rely on a central platform team for governance.

The right answer depends on context.

What worries me is not that teams buy products. What worries me is when they buy a product and stop learning. AI work is still too young for that. The tools will change. The economics will change. User expectations will change. Regulation and security practice will mature. If the organization has no internal capability, every change becomes something it receives from the vendor instead of something it can reason about.

That is not strategy. That is dependency.

A practical review before committing

Before a team turns an AI pilot into a long-term platform commitment, I would want a short review that covers more than enthusiasm.

Start with the workflow. What work changed during the pilot? Did users actually use the system? Did it improve speed, quality, consistency, or decision making? Did it create hidden review work? Did it shift risk to another team?

Then review the architecture. Which components are vendor-specific? Which data stores are controlled internally? Can prompts, evaluations, logs, and outputs be exported? Can the team test another model? Can the workflow survive if one provider becomes too expensive, too slow, or unavailable?

Review the economics. What is the expected cost per useful outcome at real volume? What are the cost drivers? Who sees the dashboard? Who can intervene? What happens if usage grows faster than expected?

Review the governance. Are permissions correct? Are logs useful? Are human approval points clear? Are model and prompt changes tested? Are failure modes documented? Is there a process for incidents?

Finally, review the contract. Does the commitment match the maturity of the use case? Are renewal terms clear? Is export possible? Is support adequate? Is the organization buying flexibility or buying pressure to keep using the same tool?

This review does not have to be dramatic. It can be a simple decision memo. The value is in forcing the team to state what it knows, what it assumes, and what it is accepting.

The better habit is planned reversibility

The most useful principle here is planned reversibility.

Planned reversibility does not mean every decision must be temporary. It means the team understands what would be required to change the decision later. Some choices are easy to reverse. Some are expensive. Some become nearly impossible once workflows, data, contracts, and user habits settle around them.

AI leaders should know which kind of choice they are making.

If the decision is easy to reverse, move quickly. If the decision is hard to reverse, slow down enough to test the assumptions. If the decision becomes harder to reverse over time, set a review date before the organization forgets why it made the choice.

That is a practical way to avoid old decisions becoming invisible policy.

The point is not to fear commitment. Serious work requires commitment. The point is to commit at the right level of confidence. Use pilots to learn. Use contracts to support proven value. Use architecture to preserve future choice. Use governance to make change manageable. Use cost visibility to prevent surprises. Use internal skill to keep the organization from becoming dependent on someone else’s roadmap.

AI is moving too quickly for every decision to be perfect. That is fine. The goal is not perfect prediction. The goal is to avoid pretending that nothing will change.

Technology will change. Pricing will change. Models will change. Regulations will change. User expectations will change. Your own understanding of the problem will change after people start using the system.

Build that truth into the decision from the beginning.

More notes