What are the legal risks of using open-source AI tools in a commercial business?

Open-source AI tools introduce legal risk in three main areas: supply chain security, intellectual property, and contractual liability. On security, most commercial contracts for AI-integrated software do not address what happens when a third-party dependency is compromised. Unless vendor contracts include supply chain incident notification obligations and defined liability allocation, a business may have no clear legal recourse. On intellectual property, open-source licence terms vary significantly and can create unintended obligations for businesses embedding these tools in proprietary products. On contractual liability, if an AI tool produces a defective output that causes loss to a client, the question of who is responsible depends on how contracts are drafted. The practical starting point is to request a software bill of materials from AI vendors and review whether existing contracts address these risks.

Does the EU AI Act apply to UK businesses?

Yes, in many cases it does. The EU AI Act applies on the basis of where an AI system is placed on the market or put into service, and where its outputs affect people, rather than where the developer or deployer is based. A UK business that sells AI-powered products or services into EU markets, or whose AI systems affect EU users or residents, falls within scope. Prohibitions on certain high-risk AI practices have applied since February 2025. Rules for general-purpose AI models became applicable in August 2025. High-risk AI system obligations are currently scheduled to apply from December 2027. Transparency obligations for AI-generated content under Article 50, including requirements to mark synthetic audio, images and video in machine-readable formats, are set to apply from August 2026. UK businesses with EU market exposure should treat the EU AI Act as a live compliance obligation now.

What should an AI use policy include for content and communications?

An AI use policy for content and communications should address six areas. First, scope: which AI tools are approved, by whom, and for what purposes. Second, disclosure: when AI-generated or AI-assisted content must be disclosed, to whom, and in what form, particularly for client-facing communications and proposals. Third, intellectual property: who owns AI-generated output and how third-party IP is handled when prompting AI systems. Fourth, accuracy and review: a requirement for human review of AI-generated content before commercial use, with defined accountability. Fifth, data handling: a prohibition on inputting confidential business information, client data or personal data into unapproved AI tools. Sixth, record keeping: documentation of AI use in significant commercial outputs so the business can demonstrate governance if challenged by a regulator, client or court.

How does the Meta verdict affect UK platform operators?

The Los Angeles verdict of March 2026, in which Meta and YouTube were found liable for negligent platform design, has direct relevance for UK platform operators even though it was decided under US law. The case succeeded by targeting design decisions the platforms made rather than content posted by users. In the UK, the Online Safety Act places duties on platforms to assess and mitigate the risk of harm arising from their services, and Ofcom has ordered major platforms to demonstrate child safety measures by April 2026. For UK platform operators, the Meta verdict is a prompt to document the reasoning behind engagement design decisions, ensure internal research on user harm is acted upon, and review whether governance frameworks reflect the standard that regulators and courts are beginning to apply.

What does the UK government's position on AI and copyright mean for businesses using generative AI?

It means operating in a jurisdiction where the rules are unresolved. On 18 March 2026, the UK government confirmed that no reforms to copyright law are being introduced at this stage, and its previously preferred text and data mining exception with an opt-out mechanism was abandoned. For businesses using generative AI, this creates three categories of live risk: training data risk, where the copyright position of data used to train AI tools remains uncertain; output risk, where AI-generated content may incorporate elements of copyrighted works without the user's knowledge; and competitive risk, where the absence of a framework will eventually produce litigation. The sensible approach is to review where valuable IP sits in the business, ensure contracts with AI tool providers include appropriate warranties, and put written guardrails around staff use of generative AI in commercial outputs.

RMOK Legal is a commercial legal services company based at 60 Cannon Street, City of London. We provide fractional general counsel support, strategic legal advice and commercial legal services to businesses of all sizes. Our specialism is technology, AI, digital and contract law. RMOK Legal is registered with the Solicitors Regulation Authority (SRA No. 8008227).

Who is Rory O'Keeffe?

Rory O'Keeffe is the founder of RMOK Legal and a solicitor regulated by the SRA with over 20 years of experience in commercial, technology and AI law. He was a Partner at Matheson, a top-tier European law firm, and previously served as Director of Legal at Accenture, a Fortune Global 500 company. Rory is recognised in Legal 500, is a published author on AI law, and a featured contributor to LexisNexis on AI contracting.

What is a fractional general counsel?

A fractional general counsel (fractional GC) is an experienced senior lawyer who works with your business on a part-time, flexible or project basis — giving you access to top-tier legal expertise without the cost of a full-time hire. At RMOK Legal, our fractional GC service means you get partner-level commercial legal support precisely when you need it.

Why is RMOK Legal qualified to advise on AI law?

Rory O'Keeffe has specialised in technology and AI law throughout his career, advising on complex technology contracts as a Partner at Matheson and as Director of Legal at Accenture. He is a published author on AI law, a featured contributor to LexisNexis on AI contracting, and a recognised speaker at the Eyes-Off Data Summit, LegalTechTalk and the SCL Data Conference. RMOK Legal is one of the few SRA-regulated practices with dedicated, current expertise across the EU AI Act, UK AI regulation, AI contracting and AI governance.

Does my business need to comply with the EU AI Act?

If your business develops, deploys or uses AI systems that affect individuals in the European Union, the EU AI Act is likely to apply to you regardless of where your business is based. The first provisions came into force in February 2025, with further requirements phasing in through 2026 and 2027. RMOK Legal advises businesses on their EU AI Act obligations and helps them implement practical compliance programmes.

How much does AI contract review cost?

The cost of AI contract review depends on the complexity and length of the agreement and whether redlining or negotiation support is needed. RMOK Legal offers transparent, fixed-fee or capped-cost arrangements for AI contract review. Contact us for a no-obligation quote based on your specific document and requirements.

Five AI and Tech Law Stories Every Business Leader Should Know This Week

It has been a busy week at the intersection of technology, law and governance. Below is a clear-eyed summary of the stories that matter, what they mean, and what business leaders should be thinking about.

The LiteLLM Breach: Your AI Stack Has a Legal Problem You Have Not Fixed Yet

On 24 March 2026, two malicious versions of LiteLLM, the open-source library that routes traffic between applications and AI models, were published to PyPI, Python's main package repository. The attack stemmed from a compromised maintainer account and the malicious code was live for approximately six hours. Long enough.

The payload was designed to scan infected systems for cloud credentials, API keys, SSH keys and database passwords, including AWS, Google Cloud and Azure tokens. No crash. No alert. Just a silent exfiltration running quietly in the background while your applications did exactly what they were supposed to do.

The technical response has been well-documented. What has not been is the legal gap underneath it.

Most commercial contracts for AI-integrated software say nothing about supply chain risk. There is no obligation on the vendor to disclose which open-source dependencies they rely on, no defined incident notification window if one of those dependencies is compromised, and no clear allocation of liability when the breach originates two or three steps removed from the contract itself.

If your vendor uses open-source AI infrastructure, and they almost certainly do, that is a conversation your legal team should be having now. Before the next six-hour window opens.

What to do: Ask your AI vendors for a software bill of materials. Check whether your contracts include supply chain incident notification obligations. If they do not, that is a gap worth closing.

The EU Banned Its Own Staff From Using AI-Generated Images. The Business Lesson is Bigger Than It Looks.

The European Commission, European Parliament and Council of the EU have all adopted policies restricting the use of fully AI-generated images and videos in official communications. The ban is intended to protect the credibility and authenticity of official communications, with the Commission concerned that AI-generated content could be perceived as misleading or harmful. Limited AI use for technical editing, such as enhancing image quality, remains permitted.

The institution that spent three years drafting the world's most comprehensive AI regulation quietly applied that regulation to itself. In a week of tech law news, that is worth a moment.

The more important point for businesses is this: the EU's move is a preview of where disclosure obligations are heading. Article 50 of the EU AI Act includes obligations for providers to mark AI-generated content in a machine-readable format, with the transparency rules becoming applicable on 2 August 2026.

UK businesses should not assume distance from Brussels means distance from these obligations. If you operate in EU markets, serve EU customers, or use AI tools in client-facing communications, the question of what you disclose, and when, is becoming a legal one rather than a reputational one.

What to do: Review your internal AI use policy. If it does not address AI-generated content in client communications, proposals, reports or marketing materials, it needs updating before your competitors use the gap against you.

Meta Found Liable in Los Angeles. The Section 230 Question That Follows Is Bigger Than Meta.

A Los Angeles jury has ordered Meta and Google to pay $3 million following a ruling that they designed their platforms to be addictive but failed to include adequate warnings. Meta was found liable for 70% of that judgment, with the remaining liability allocated to YouTube, owned by Google. TikTok and Snapchat, also named as defendants, settled before trial.

The verdict followed a parallel ruling in New Mexico, where a jury found that Meta misled users about the safety of its platforms in relation to children being targeted by online predators, with a $375 million fine.

The legal architecture that made these verdicts possible is worth understanding. Both cases worked around Section 230 of the Communications Decency Act, which has shielded platforms from liability for the conduct of their users for 30 years, by targeting design decisions the platforms themselves made rather than content posted by third parties.

New Mexico's Attorney General stated there is a distinct possibility that these cases motivate Congress to re-examine Section 230 and, if not eliminate it, dramatically revise it.

For UK and European businesses, the precedent matters beyond Section 230. If platform design choices can generate tortious liability in the United States, the same logic will find its way into arguments under the Online Safety Act and the EU's Digital Services Act. Algorithmic recommendation, notification design, and engagement mechanics are not just product decisions. Increasingly, they are legal ones.

What to do: If your business operates a platform, application or digital service with features designed to drive engagement, now is the time to review whether your governance and documentation reflect the design choices you have made and why you made them.

The UK Government on AI and Copyright: Still No Answer, Still a Problem for Your Business

On 18 March 2026, the UK government published its long-awaited report on copyright and AI. The government confirmed that a broad copyright exception with an opt-out mechanism is no longer its preferred option, stating the approach had been overwhelmingly rejected by the creative industries.

No reforms to copyright law are being introduced at this stage. The government has said it will not move forward unless it is confident any changes will work.

This is not a neutral position. The absence of a framework is itself a source of legal risk. Businesses that create original content are left without clarity on how their IP rights apply to AI training. Businesses that use AI tools to generate commercial output are operating in a jurisdiction where the rules are, by official admission, still being worked out.

The lack of a position leaves many businesses making decisions about licensing, marketing content, training data and AI use without a clear long-term framework, creating risk on both sides, whether they are protecting their own IP rights or using AI tools in day-to-day operations.

What to do: Review where your valuable IP sits. Check your contracts and platform terms for AI-specific provisions. Put clear internal guardrails around staff use of generative AI, in writing, before the regulatory position hardens around you.

The FRC Has Something to Say About AI. Audit Firms Are First. You Are Next.

On 30 March 2026, the Financial Reporting Council published guidance for audit firms on the use of generative AI. It is the first sector-specific governance guidance from a UK financial regulator on AI deployment.

The direction of travel is clear. Sector regulators in the UK are beginning to issue concrete expectations for how AI is used, supervised, and documented in professional contexts. Audit is first because the stakes of AI error in a financial context are immediately obvious. It will not be last.

For regulated businesses in financial services, healthcare, energy and professional services, the question is not whether your regulator will issue similar guidance. It is whether you will be ready when they do.

What to do: Begin mapping how AI tools are being used across your business now. Identify who is accountable, what the outputs are being used for, and whether your current governance framework would satisfy a regulator asking you to demonstrate oversight. If the answer is uncertain, that is where to start.

The Pattern Across All Five Stories

These stories are not unrelated. They point in the same direction.

AI is being embedded into supply chains, communications, platforms and professional workflows at a pace that has consistently outrun the legal and governance frameworks that should accompany it. Courts, regulators and legislators are now catching up, and they are doing so with increasing speed and specificity.

The businesses that will navigate this well are not necessarily the ones that use the least AI. They are the ones that have asked the right legal questions before the enforcement action, the lawsuit, or the regulator's letter arrived.

That is what governance actually looks like.

FAQs

Open-source AI tools introduce legal risk in three main areas: supply chain security, intellectual property, and contractual liability.
On security, most commercial contracts for AI-integrated software do not address what happens when a third-party dependency is compromised. The LiteLLM breach of March 2026 is a clear example. Malicious code reached production environments through a trusted open-source library, exposing cloud credentials and API keys. Unless your vendor contracts include supply chain incident notification obligations and defined liability allocation, your business may have no clear legal recourse.
On intellectual property, the licensing terms of open-source components vary significantly. Some licences require that any software incorporating them be made available under the same terms, which can create unintended obligations for businesses that embed open-source AI tools in proprietary products.
On contractual liability, if an AI tool produces a defective output that causes loss to a client, the question of who is responsible depends on how your contracts are drafted. Most standard terms do not anticipate AI-generated error or supply chain compromise as a specific risk category.
The practical starting point is to ask your AI vendors for a software bill of materials and to review whether your existing contracts address these risks. If they do not, that is a gap worth closing before an incident makes it urgent.
Yes, in many cases it does, despite the UK having left the European Union.
The EU AI Act applies on the basis of where an AI system is placed on the market or put into service, and where its outputs affect people, rather than where the developer or deployer is based. A UK business that sells AI-powered products or services into EU markets, or whose AI systems affect EU users or residents, falls within scope.
The Act is being phased in over time. Prohibitions on certain high-risk AI practices have applied since February 2025. Rules for general-purpose AI models became applicable in August 2025. The broader high-risk AI system obligations are currently scheduled to apply from December 2027, subject to the Digital Omnibus simplification proposals currently under consideration.
Transparency obligations for AI-generated content under Article 50, including requirements to mark synthetic audio, images and video in machine-readable formats, are set to apply from August 2026.
UK businesses with EU market exposure should be treating the EU AI Act as a live compliance obligation now, not a future consideration. The lead time required to build compliant governance frameworks is longer than most businesses assume.
An AI use policy for content and communications should address at minimum six areas.
First, scope. The policy should define which AI tools are approved for use, by whom, and for what purposes. A blanket prohibition is rarely workable. A blanket permission is a governance failure.
Second, disclosure. The policy should set out when AI-generated or AI-assisted content must be disclosed, to whom, and in what form. This is particularly important for client-facing communications, proposals, reports and marketing materials, where disclosure obligations are hardening under the EU AI Act and equivalent frameworks.
Third, intellectual property. The policy should address who owns the output of AI tools, what copyright position the business is taking on AI-generated content, and how staff should handle third-party IP when prompting AI systems.
Fourth, accuracy and review. The policy should require human review of AI-generated content before it is used commercially, with defined accountability for that review. AI systems produce errors. The business remains responsible for the output regardless of how it was generated.
Fifth, data handling. The policy should prohibit staff from inputting confidential business information, client data or personal data into AI tools that have not been approved and assessed for data security.
Sixth, record keeping. The policy should require that AI use in significant commercial outputs is documented, so that the business can demonstrate governance if challenged by a regulator, client or court.
The EU ban on AI-generated content in official communications, announced in April 2026, is a useful reference point. If the institution that wrote the AI rulebook felt it necessary to govern its own use in writing, businesses should feel the same urgency.
The Los Angeles verdict of March 2026, in which Meta and YouTube were found liable for negligent platform design, has direct relevance for UK platform operators even though it was decided under US law.
The case succeeded by targeting design decisions the platforms made, rather than content posted by users. That framing sidesteps the Section 230 shield that has protected US platforms for 30 years. In the UK, the equivalent question is whether the Online Safety Act creates comparable exposure for design choices that cause harm to users, particularly children and young people.
The Online Safety Act places duties on platforms to assess and mitigate the risk of harm arising from their services. Ofcom has already ordered major platforms to demonstrate how they will prevent under-13s from accessing their services by April 2026. The legal architecture is different from the US, but the underlying question is the same: when a platform knows its design choices cause harm and does not act, who is responsible?
For UK platform operators, the Meta verdict is a useful prompt to document the reasoning behind engagement design decisions, ensure internal research on user harm is acted upon and not simply filed, and review whether governance frameworks reflect the standard that regulators and courts are beginning to apply.
The comparison to Big Tobacco that has appeared repeatedly in US commentary is not accidental. That analogy took decades to produce legal consequences in the tobacco industry. In the technology sector, the timeline is considerably shorter.
In practical terms, it means operating in a jurisdiction where the rules are unresolved, and being responsible for managing the consequences of that uncertainty yourself.
On 18 March 2026, the UK government published its report on copyright and AI. The headline conclusion was that no reforms to copyright law are being introduced at this stage. The government's previously preferred approach, a broad text and data mining exception with an opt-out mechanism, was abandoned after being rejected by the creative industries. No replacement has been confirmed.
For businesses using generative AI tools, this creates three categories of live risk.
The first is training data risk. If your AI tools were trained on copyrighted material without a licence, and the law subsequently clarifies that a licence was required, your business may have indirect exposure depending on how those tools are contracted and warranted.
The second is output risk. AI-generated content may incorporate elements of copyrighted works in ways that are not visible to the user. In the absence of a clear legal framework, the copyright position of AI-generated commercial output remains genuinely uncertain.
The third is competitive risk. Businesses in the creative industries that are supplying content, design, writing or media services are operating without clarity on how their IP rights apply. That uncertainty will eventually produce litigation, and commercial relationships caught in the middle will need to take a position.
The government has indicated it will not act until it is confident any framework is practical and effective. There is no defined timeline for that confidence to arrive. In the meantime, the sensible approach is to review where valuable IP sits in your business, ensure contracts with AI tool providers include appropriate warranties, and put written guardrails around staff use of generative AI in commercial outputs.