← All posts

May 15, 2026

When Your Bot Speaks for You: The Hidden Cost of AI Without Guardrails

Air Canada's chatbot told a customer he could claim a bereavement discount after his trip. He did exactly that. A court ruled Air Canada was responsible for what its bot said — and ordered them to pay. The tool wasn't rogue. The problem was governance.

In early 2024, a Canadian civil resolution tribunal ruled against Air Canada over something its AI chatbot said. A passenger named Jake Moffatt asked the airline's virtual assistant about bereavement fare policy before booking a last-minute flight. The bot told him he could apply for the discount retroactively after travel. He booked. He flew. He applied. Air Canada refused, calling the chatbot's guidance incorrect. The tribunal didn't accept that defense. The chatbot was Air Canada's system, running on Air Canada's website, answering Air Canada's customers. The airline was liable for what it said. They paid.

This wasn't sabotage. It wasn't a breach. The system did exactly what it was built to do — answer questions — but it hadn't been tested against the questions that matter most, and no one was watching when it went wrong.

The small-business version is quieter, but the cost is the same

Airline cases make the news. Small business AI mistakes rarely do, which makes them harder to learn from. But the pattern repeats constantly at smaller scale. A local service company deploys a chatbot to handle booking inquiries. The bot confidently quotes prices based on stale data, confirms availability it can't actually check, and promises next-day appointments during a fully booked week. No court ruling follows — just three frustrated customers, two disputed charges, and a Google review that sticks around. The AI didn't malfunction. It answered questions. It just didn't have the information or guardrails to answer them correctly, and no human was close enough to catch the gap before the damage was done. That's the core problem: AI was given authority it wasn't equipped to exercise. It could speak but couldn't verify. It could promise but couldn't fulfill.

What responsible deployment actually looks like

Getting this right doesn't require waiting for the technology to be perfect. It requires being specific about what the system can and cannot do before you point it at customers.

  • Define scope tightly. "Answer customer questions" is not a scope. "Answer questions from this approved list, and flag everything else for a human" is a guardrail. The difference is accountability.
  • Test adversarially. Before going live, ask the system the ten questions you'd least want it to answer wrong: pricing, lead times, refund policy, what happens when something's out of stock. If any answer surprises you, fix it first.
  • Build in escalation. Every customer-facing AI needs a clear path to a human for anything the system isn't certain about. "I'll connect you with our team" is not a failure state — it's a feature.
  • Review regularly. AI trained on static information goes stale. If your policies or inventory change and the bot doesn't know, you own what it says.

Air Canada's case didn't hinge on a technical failure. It hinged on a governance gap: deploying a system that could make commitments without any mechanism to ensure those commitments were accurate. That gap doesn't belong to large airlines. It's available at any business size. So is the fix. The businesses that do well with AI are the ones that treat it as a member of staff — one that needs clear boundaries, regular supervision, and a manager close enough to step in when something goes sideways.

Back to blog Start your assessment