SMBs without legal teams sign AI vendor MSAs that lock them in via seven recurring clause patterns: (1) data-portability narrowness (prompts/embeddings/agent state excluded from 'your data' definitions), (2) auto-renewal with short notice windows, (3) model-deprecation rights without credit, (4) sub-processor expansion without consent, (5) output-IP ambiguity, (6) pricing escalator without cap, (7) termination-data export window too short. Pattern recognition + a 1-page checklist applied before signature is the practical defence. Five questions emailed to the vendor sales rep before signing — and their willingness to answer in writing — is itself a signal.
SMB-specific procurement piece. Lead-magnet pair with RES-005 (AI MSA Red-Team Checklist downloadable). Cadence 45-day (vendor MSA template revisions + EU AI Act enforcement guidance both move at this cadence). Trigger conditions: major AI vendor MSA template revision (Microsoft, OpenAI, Anthropic, Google all publish public MSAs); new EU AI Act Article 16 implementation guidance affecting deployer obligations; SMB-tier consumer protection rulings on auto-renewal / data-portability. Sister claims: AM-145 (enterprise-tier exit clauses), OPS-014 (vendor due diligence small business), RES-005 (MSA red-team checklist).
/holding/OPS-059/Embed this claimiframe + oEmbed
The card auto-updates when the claim's status, last-reviewed date, or correction log changes. Embedders never need to refresh — the card is rendered live from the canonical record.
Email-me when OPS-059's status, next review date, or correction log changes. One email per change. No newsletter subscription, no other mail.
The claim: SMBs without legal teams sign AI vendor MSAs that lock them in via seven recurring clause patterns: (1) data-portability narrowness (prompts/embeddings/agent state excluded from 'your data' definitions), (2) auto-renewal with short notice windows, (3) model-deprecation rights without credit, (4) sub-processor expansion without consent, (5) output-IP ambiguity, (6) pricing escalator without cap, (7) termination-data export window too short. Pattern recognition + a 1-page checklist applied before signature is the practical defence. Five questions emailed to the vendor sales rep before signing — and their willingness to answer in writing — is itself a signal.
About this register
The Operators register tracks claims published from practitioner-advisory pieces addressed to solo founders, micro-SMB, and small businesses up to around fifty people. Claims are reviewed on a 30–45 day cadence — tooling and SMB-relevant pricing shift faster than enterprise procurement signals.
Recent corrections in Operators
- OPS-068 · Partial · 17 Jun 2026
Source-text re-review: the '$300-$500 (2024) toward $100-$130 (early 2026)' median trajectory is not stated in either cited source — the Godberry Studios teardown reports stack cost by revenue tier (not a year-over-year median) and BetterCloud's SaaS-industry data covers enterprise spend, not solopreneur AI subscriptions. The compression direction is supported by the Godberry tier data and observable foundation-model bundling; the specific year-anchored median figures are reclassified as source:our-estimate in the article. The load-bearing claim (active compression / category-collapse) holds; status moved to Partial pending a primary source carrying a dated solopreneur-median series.
- OPS-051 · Partial · 10 Jun 2026
One named member of the generation cluster was already defunct at publication: Tome shut down its presentation/narrative product (Tome Slides) in March 2025 and pivoted to sales tooling, with the brand later sold to AngelList (deckary.com shutdown timeline; signalhub.substack.com post-mortem, both checked 10 Jun 2026). The generation cluster reduces to Pitch + Gamma. The two-cluster thesis itself is unaffected and arguably strengthened — the pure AI-narrative product failed to find a sustainable business while Gamma (70M users, $100M ARR as of Nov 2025) and the assembly cluster (PandaDoc, Better Proposals, Proposify per Luniq 2026 agency comparison) both compound. Status Up → Partial for the factual error in the tool list.
- OPS-022 · Partial · 10 Jun 2026
Vendor attribution error in the claim text. The claim names Polley Faith among 'Spellbook with named small-firm customers Westaway, KMSC Law, Polley Faith'. Polley Faith LLP is a Harvey-listed law-firm customer, not a Spellbook customer: the live Spellbook site (now spellbook.com; spellbook.legal 301-redirects) names Westaway, KMSC Law, and McInnes Cooper with no Polley Faith, and the source article's own body correctly places Polley Faith on Harvey's roster — the claim text and the article excerpt bundled it with the wrong vendor at publish. The remaining legs verify against extracted source text on 10 Jun 2026: Anthropic's GC AI customer story carries 'More than 1,500 companies' and '14 hours saved per week on average ... based on a survey of more than 100 active customers' verbatim; Harvey's published roster (Thompson Hine, Fox Rothschild, Lowenstein Sandler, Polley Faith) matches; ABA Formal Opinion 512 remains the governance baseline. The corpus reading (AI ships at 1-to-20 lawyer scale; privileged work stays on Enterprise-tier zero-retention access) is unaffected. Status Up -> Partial.
Reviews coming up in Operators
- OPS-030 · Holding · next +9d (27 Jun 2026)
The fastest path for an owner-operator to build practical agentic-AI competence in 2026 is the three-week build-by-ship…
- OPS-029 · Holding · next +9d (27 Jun 2026)
For solo founders and small teams (under ~50 people) building with AI in 2026, the build-vs-buy decision tree has inver…
- OPS-005 · Holding · next +9d (27 Jun 2026)
At sub-1M tokens per month (typical SMB agent volume) in 2026, the absolute dollar gap between Claude Haiku 4.5, GPT-4o…