A fixed battery
Every vendor scored against the same legal question set — the evaluation the firm runs on its own tools, applied to yours.
AI tool and vendor evaluation from Aun & Co.: data handling, contractual terms, security posture and exit routes assessed before your workflows depend on them.
Choosing an AI vendor is signing a data relationship, and the important part is in the clauses nobody demos: whether your inputs train their models, where the data sits and for how long, which sub-processors touch it, what the liability terms actually leave you, and what exit looks like when you need one. The firm evaluates tools and vendors against a fixed legal battery — the same one it applies before any system touches its own practice — and returns a comparison a decision-maker can act on without reading a single vendor contract.
Every candidate runs the same gauntlet, because comparability is the point: a fixed question set across data handling, terms, security and exit, scored from the documents the vendor actually signs — not the website. Deal-breakers are separated from negotiables, and for the negotiables the firm drafts the amendment asks. The output is a ranked comparison with a recommendation: adopt, adopt-with-amendments, or walk.
Every vendor scored against the same legal question set — the evaluation the firm runs on its own tools, applied to yours.
Findings sourced from the terms the vendor will actually sign, where the marketing and the contract routinely disagree.
For fixable gaps, the evaluation includes the negotiation asks — turning a risk report into a procurement position.
A typical engagement: a shortlist of three document-AI vendors, functionally similar, evaluated on their paper. One trains on customer inputs by default, one holds data in an unacceptable jurisdiction, one is clean but for a liability cap — which the drafted amendment fixes. The choice makes itself.
Described in abbreviated, anonymised form to preserve client confidentiality.
Four fronts in order: data handling — training rights, retention, residency; the contract — liability, warranties, unilateral-change clauses; the supply chain — who the sub-processors are; and exit — portability and proof of deletion. Function matters only after all four survive.
Some do by default, some on opt-out, some contractually never — and the answer often differs between the consumer and enterprise tiers of the same product. The only reliable source is the signed terms, which is precisely what the evaluation reads.
More is negotiable than vendors suggest, particularly at enterprise tiers: training exclusions, retention limits, liability floors and audit rights are routinely amended. The evaluation identifies which gaps are negotiable and drafts the asks — leverage is highest before signature.