AI buyer guide

What to Include in an AI Project Scope of Work or Contract

A clear AI scope of work (SOW) turns a vague brief into a measurable, enforceable agreement. This checklist covers the clauses that prevent the most common AI project disputes.

What should you include in an AI project scope of work or contract? Define the specific deliverables and success metrics, who owns the code, models, and prompts, how training and customer data is handled, accuracy and uptime SLAs, a written acceptance test, the price and payment milestones, change-request process, and post-launch maintenance. The biggest gaps in AI contracts are measurable acceptance criteria, data and IP ownership, and who pays for ongoing model and API costs.

Core sections every AI scope of work needs

An AI SOW differs from a normal software contract because the output is probabilistic, the system depends on third-party models and APIs, and it usually keeps running and costing money after launch. Treat the document as the single source of truth: if a requirement is not written down with a number attached, assume it will not be delivered. Use this checklist as the spine of the agreement.

Deliverables: the exact agents, workflows, integrations, dashboards, and documentation, listed as discrete items, not a paragraph of intent.
Success metrics: target accuracy, precision or recall, task completion rate, latency, and cost per task, each with a measurement method.
Acceptance criteria: a written test the build must pass before final payment, run on an agreed dataset.
Data terms: what data the vendor can access, where it is stored, retention, deletion on exit, and whether your data trains shared models.
IP and ownership: who owns the code, prompts, fine-tuned weights, and the data pipeline after payment.
SLAs: uptime target (for example 99.5 percent), response and resolution times, and remedies if missed.
Pricing and ongoing costs: build fee, milestones, and who pays model, API, and infrastructure bills after launch.
Change process: how new requests are scoped, priced, and approved so scope creep is visible.

The AI-specific clauses people forget

Generic SOW templates miss the terms that cause AI disputes. Pin down model dependency: name the models used, and state what happens if a provider deprecates a model, changes pricing, or alters output behavior. Address hallucination and error handling directly, since no model is 100 percent accurate. Define a confidence threshold, a human-in-the-loop step for high-stakes actions, and a fallback when the model is unsure. Add a regulatory clause covering the EU AI Act, GDPR, and any sector rules, naming who is responsible for compliance. Specify evaluation: how the system is tested before launch and monitored for drift afterward.

Acceptance, payment, and exit

Tie money to measurable proof. A common structure is a deposit, a milestone payment at a working prototype, and a final payment only after the system passes the written acceptance test on real data. Avoid 100 percent up front. Define a warranty or bug-fix window (often 30 to 90 days) where defects are fixed at no charge. Include an exit clause: on termination you receive the code, prompts, configuration, and a data export in a usable format, with credentials handed over and the vendor's access revoked. Without an exit clause, you can be locked into one provider.

Roles, timeline, and communication

State who does what on both sides, including the client inputs the vendor depends on, such as data access, subject-matter review, and sign-off windows. Late client inputs are the most common cause of slipped timelines, so make that dependency explicit. Set a realistic schedule with phase dates, a single point of contact, and a regular check-in cadence. For context, internal AI systems can be fast once scoped: Digiton's own product Parci produces a full real-estate report across 308 Portuguese municipalities in about 47 seconds, but that speed is the result of tight scope and clear acceptance criteria, not a vague brief.

Frequently asked questions

What should be in an AI project scope of work?

An AI SOW should list specific deliverables, measurable success metrics (accuracy, latency, cost per task), a written acceptance test, data handling and IP ownership terms, SLAs for uptime and support, pricing with milestones, who pays ongoing model and API costs, a change-request process, and an exit clause for code and data handover.

What is the most common gap in AI contracts?

The most common gap is measurable acceptance criteria. Many contracts say the system should work well without defining a target accuracy, a test dataset, or a pass threshold. Without a written acceptance test tied to final payment, disputes over whether the AI is good enough become subjective and hard to resolve.

Who owns the AI code and models after a project?

Ownership depends on the contract, so state it explicitly. Clarify who owns the source code, prompts, fine-tuned weights, embeddings, and the data pipeline once payment is complete. Many disputes arise because the vendor keeps ownership by default. If you want full ownership, name code, prompts, and configuration specifically, not just deliverables.

How should data handling be covered in an AI SOW?

Specify what data the vendor can access, where it is stored and in which region, retention and deletion timelines, and whether your data is used to train shared or third-party models. Include a confidentiality clause and a guarantee that data is exported and deleted on exit. For EU work, name GDPR responsibilities and any sub-processors.

What accuracy guarantee should I ask for in an AI contract?

Ask for a target metric appropriate to the task, such as 95 percent task completion or a precision and recall figure, measured on an agreed test set. No model is 100 percent accurate, so also require a confidence threshold, a human-in-the-loop step for high-stakes actions, and a defined fallback when the model is uncertain.

How should payment be structured for an AI project?

Tie payment to milestones, not a single up-front fee. A common split is a deposit, a payment at a working prototype, and a final payment only after the system passes the written acceptance test on real data. This protects both sides and keeps the vendor accountable to measurable results rather than a demo.

Should an AI contract cover ongoing model and API costs?

Yes. AI systems keep incurring model, API, and infrastructure costs after launch, and these can exceed the build fee over time. State clearly who pays them, provide an estimated monthly range, and define what happens if a provider raises prices. Leaving this out is a frequent source of post-launch friction.

What is an acceptance test for an AI system?

An acceptance test is a written procedure the build must pass before final sign-off. It runs the system on an agreed dataset and checks results against defined thresholds for accuracy, latency, and behavior. Document the dataset, the metrics, the pass bar, and how many test runs are allowed so acceptance is objective, not a matter of opinion.

How do you prevent scope creep in an AI project?

Prevent scope creep with a written change-request process. Anything not in the original deliverables list is scoped, priced, and approved in writing before work starts. Keep deliverables as discrete items rather than vague goals, and tie acceptance to that list so additions are visible and billed rather than absorbed silently.

What SLA should an AI agency contract include?

Include an uptime target such as 99.5 percent, response times by severity, resolution time commitments, and remedies (credits or fixes) if targets are missed. For agentic systems also define monitoring, alerting, and who is on call. An SLA without remedies is just a promise, so attach a consequence to each missed target.

What should an AI contract say about hallucinations and errors?

Address them directly, since no model is error-free. Define acceptable error rates, a confidence threshold below which the system asks for human review, a human-in-the-loop step for high-stakes actions, and a logging requirement so errors are traceable. Assign responsibility for harm caused by incorrect output, especially in regulated or customer-facing use.

Do I need a compliance clause in an AI scope of work?

Yes if the system handles personal data, makes automated decisions, or operates in a regulated sector. Name applicable rules (EU AI Act, GDPR, sector regulations), state who is responsible for compliance, and require documentation such as data processing records. This is essential before any launch that collects data, sends email, or charges money.

What is an exit clause in an AI contract and why does it matter?

An exit clause defines what you receive if the relationship ends: the source code, prompts, configuration, a usable data export, and credentials, with the vendor's access revoked. It matters because AI systems can create lock-in through proprietary pipelines. Without an exit clause, switching vendors or bringing the work in-house becomes expensive or impossible.

How detailed should AI deliverables be in the contract?

List deliverables as discrete, testable items: each agent, workflow, integration, dashboard, and document named individually with what done looks like. Avoid paragraphs of intent. Detailed deliverables make acceptance objective, expose scope creep, and give both sides a shared checklist, which is the single biggest factor in finishing an AI project cleanly.

AI answers knowledge base AI agency pricing in Portugal (2026 data)AI agency in Lisbon

Ready to put AI to work?

Book a discovery audit and we will map the highest-ROI AI agents and automations for your business.

Book a discovery audit →