If your LinkedIn feed looks anything like mine, it is wall to wall AI content and I understand why. At BuyingStation we are deep in it. I personally use Claude, Lovable, Perplexity, ChatGPT, DeepSeek and more besides. The capability is real, the pace of development is staggering and the things you can build in a matter of hours would have seemed extraordinary just a few years ago.
What concerns me, though, is what is not being said in all of that noise. Too many organisations are treating AI as the answer rather than as a tool, building on it, advising from it and depending on it without stopping to ask some very important questions first.
Where is your data actually going?
The moment you connect AI to your business systems or share proprietary data with a model, you have a data governance question on your hands. Where is that data stored? Who has access to it? Is it being used to train the model you are feeding it into? These are not paranoid questions they are basic due diligence.
UK regulators are already examining how liability sits across the AI supply chain, and in a world of GDPR and increasingly stringent data protection obligations, your organisation needs to be able to answer these questions clearly. A risk assessment on data sharing is not optional. It is essential.
If AI gives you bad advice, who carries the liability?
This one does not get enough airtime. If you are using AI to generate business advice and something goes wrong, are you insured for that outcome? Does your professional indemnity cover decisions made on the basis of AI-generated outputs?
The source of advice matters enormously when things unravel, and an AI system is not a regulated professional body. A UK tribunal ruled in 2024 that transparency about AI-driven decisions is particularly important given growing global concern over automated decision-making and that scrutiny is only increasing. Understanding your exposure before you rely on AI is far more sensible than discovering the gap after the fact.
Governance does not manage itself
Deploying something on AI and walking away is not a strategy. AI systems need maintenance, compliance oversight, bug fixes and updates just like any other technology, and someone needs to own that. The UK government’s own AI regulatory framework identifies accountability and governance as one of its five core cross-sector principles, and for good reason. Defining responsibilities clearly from the outset and budgeting properly for the people who will carry them is the difference between a sustainable deployment and an expensive problem waiting to happen.
The token question nobody is asking
Here is something sitting quietly underneath a lot of AI enthusiasm right now. A significant proportion of what makes AI feel affordable at this moment is subsidy. The big platforms have been investing heavily to drive adoption and that will not last indefinitely. If you are building systems and workflows that are deeply dependent on AI without having modelled what the true long-term cost looks like, you are carrying a financial risk you may not have priced in.
The human element is not a nice-to-have
According to the CIPS Global State of Procurement and Supply 2024 report, procurement has become a central strategic function whose influence now reaches across sustainability, risk management and business growth. That influence exists because of human expertise, judgement and relationships, not because of the tools used to support it. AI can accelerate ideation and automate the repetitive work that consumes too much time, and those are real benefits. The moment it starts replacing human judgement and accountability rather than supporting them, however, something important has been lost and the risks described above become significantly harder to manage.
Why working with BuyingStation is different
At BuyingStation, we use AI where it adds value and we do so within a framework of professional accountability and certified governance. We hold ISO 27001 for information security, ISO 9001 for quality management and ISO 14001 for environmental management alongside Cyber Essentials. The data security, compliance and oversight questions are built into how we operate rather than bolted on as an afterthought.
You get the benefits of AI-enabled procurement advisory with the protections that come from working with a certified, professionally qualified partner who has thought carefully about exactly the risks described above.
Ready to use AI in your procurement activity with confidence? Visit buyingstation.com or get in touch directly to find out how we can help your organisation buy better, smarter and more sustainably without the exposure that comes from going it alone.
