AI for finance basics
When not to automate
The most mature automation decision is sometimes a deliberate no, a narrower scope, or a tool that is not AI.
Before you start
Why this matters
For each task, choose assist, automate deterministically, or do not automate:
- explain a generic finance term;
- calculate invoice tax under an approved formula;
- decide whether a distressed customer deserves credit;
- summarize approved variance notes for controller review;
- change supplier bank details from an emailed request;
- release payroll.
The answer depends on context and controls, but a useful starting point is: AI may assist with 1 and 4; tested deterministic systems may calculate 2; 3 requires formal governance and may be inappropriate for a general AI workflow; 5 demands independent verification and controlled system changes; 6 requires established authorization and execution controls, not a model’s discretion.
1Learn the idea
Read
Automation is not the default goal
Automation can increase speed and consistency, but it can also scale errors, hide assumptions, weaken review, and concentrate authority. First ask whether the task should exist, whether the process is stable, and whether simpler improvements solve the problem.
A standard report, clearer chart of accounts, required form fields, spreadsheet validation, database rule, or staff training may outperform AI. If an exact rule exists, implement it as an exact rule. If the process is changing weekly, automating it may freeze confusion into software.
The goal is a reliable outcome, not the highest automation percentage.
Read
Stop for missing authority or evidence
Do not automate when the workflow cannot identify:
- an accountable owner;
- authoritative sources;
- valid input definitions;
- permitted data use;
- decision and transaction authority;
- measurable success and unacceptable errors;
- an exception path;
- a rollback or recovery process;
- a qualified reviewer where required.
An AI system cannot repair missing governance. It may make an undefined process look more organized while preserving the underlying ambiguity.
If employees disagree about what “approved,” “material,” “late,” or “high risk” means, resolve the policy and definitions before asking a model to classify cases.
Read
Avoid irreversible and high-impact autonomy
Be especially cautious when an action is hard to reverse, difficult to detect, high value, large scale, or consequential to a person. Examples include:
- moving money or changing payment destinations;
- approving credit, insurance, benefits, or financial access;
- filing tax, regulatory, or statutory reports;
- posting material journal entries or closing books;
- making public or investor-facing disclosures;
- setting compensation or terminating access based on financial signals;
- issuing personalized investment, debt, or tax recommendations;
- deleting records or evidence;
- overriding sanctions, fraud, procurement, or segregation-of-duty controls.
AI may support carefully governed parts of some processes, but it should not receive broad autonomous authority. Established systems and accountable people should control consequential actions.
Read
Watch for weak review designs
“A human is in the loop” can describe a checkbox, not a control. Do not automate if reviewers:
- see only a score or recommendation without source evidence;
- cannot inspect calculations and assumptions;
- lack subject expertise or authority;
- receive too many cases for meaningful attention;
- are encouraged to accept the default;
- cannot record disagreement or correction;
- review after the action already happened;
- do not know what changed since prior approval.
Automation bias makes plausible outputs easy to accept, especially under time pressure. Design the interface to foreground evidence, uncertainty, and exceptions rather than confidence theater.
Read
Consider rare but severe failures
Average accuracy is not enough. A workflow can perform well on routine invoices yet fail catastrophically on a fraudulent bank-detail change. It can summarize most reports correctly yet omit one material caveat.
Before automation, define severe-error classes and test them separately:
- wrong person or account;
- wrong sign, currency, unit, or decimal placement;
- duplicated or unauthorized transaction;
- fabricated source or explanation;
- omitted qualification or disclosure;
- privacy exposure;
- discriminatory or proxy-based treatment;
- prompt injection from a document;
- stale or conflicting source;
- inability to determine whether a timed-out action succeeded.
If a severe error cannot be reliably prevented, detected before harm, contained, and recovered, keep the task manual or redesign it.
Read
Use a reversibility test
Ask six questions:
- What exact action occurs?
- How quickly would an error be detected?
- Who or what could be affected?
- Can the action be reversed completely?
- What evidence is preserved?
- Who can stop the system immediately?
Drafting a private list of review questions is easy to discard. Sending a customer denial, posting a journal entry, or transferring funds may not be. The control level must reflect the action, not the apparent simplicity of the prompt.
Read
Choose staged assistance
When the task is promising but not ready for automation, progress through stages:
- Manual baseline: measure current quality, volume, exceptions, and severe errors.
- Offline evaluation: test AI on representative, appropriately handled historical or synthetic cases.
- Shadow mode: produce outputs without showing or acting on them; compare with actual outcomes.
- Suggestion mode: show evidence-backed proposals to trained reviewers.
- Narrow automation: automate only low-risk, high-confidence cases with deterministic checks and fallback.
- Monitored expansion: expand only after predefined evidence, with pause and rollback thresholds.
Some human gates should never disappear because they exist for accountability, legal obligations, ethical judgment, or segregation of duties—not because the model is temporarily inaccurate.
Read
Write a “do not automate” memo
A strong no is specific. Record the proposed task, expected benefit, blockers, severe failure modes, controls that are missing, and conditions for reconsideration. Suggest a safer alternative, such as better source exports, deterministic validation, or an AI-generated question list with no actions.
This keeps the decision reviewable. It also prevents the team from trying the same unsafe shortcut under a different name.
Continue learning · glossary & guides
- Why is automation percentage a poor goal?
- What process ambiguities must be resolved before classification?
- What makes a human review gate weak?
- Why can high average accuracy still be unsafe?
- Which gates may remain even when model quality improves?
- What should a useful “do not automate” memo contain?
- Glossary: guardrails · Glossary: human in the loop