// topic

Vendor evaluation

How to evaluate AI vendors for security, compliance, and supply-chain risk — checklists, contract clauses, and NIS2-aligned questions before you sign.

1 note · last update June 9, 2026

AI vendor lock-in: three layers and two contractual traps

7 min · June 9, 2026

AI vendor lock-in is rarely one bad decision — it's the sum of reasonable steps across three layers (data, model, integrations). The worst traps sit not in the architecture but in the contract. How to spot them before you sign an MSA.