AI agents in business: what they run, and what to watch

5 April 2026 · 3 min read · After Penser avec les machines

There is a difference in kind between an AI that answers and an AI that acts. The first gives you a reply, and you do what you want with it. The second, which we call an agent, executes: it sends, sorts, triggers, updates, chains several steps on its own. It is a considerable jump in power. It is also exactly where you have to pay double the attention.

What an agent does well

An agent excels at everything repetitive and mapped out. Receive a request, extract the useful information from it, fill in a system, alert the right person, move on to the next one. Chains of small tasks that, put end to end, eat hours every week and bring no value to the person doing them.

Handed to a well tuned agent, these chains run with no intervention. The salesperson no longer re-enters orders, support no longer sorts tickets by hand, billing no longer chases missing items. The gain is not only time, it is less mental load, and therefore people available for what really matters.

What to watch, precisely

The danger of an agent is the exact flip side of its strength. It acts without asking. An error in an answer can be caught, you validated nothing, you reread and correct. An error in an action has already happened. The email has gone, the entry has posted, the status has changed, the customer has been billed. Catching it back costs more, and sometimes it is impossible.

The more autonomous an agent is, the more this question becomes central. We have seen, in recent years, agents able to chain dozens of actions on their own. Impressive in a demonstration, formidable in production if no one has set limits, because a small error at the start of a chain spreads and amplifies at each step.

Three safeguards to sleep soundly

Mastering an agent does not come down to its sophistication, but to three simple rules I apply systematically with NS Corp.

First, a corridor. An agent acts only within a perimeter defined in advance, never beyond. It handles orders below a certain amount, in a certain format, for a certain type of customer. Anything outside the corridor, it does not force, it flags.

Next, a door. On the actions that truly commit you, money, a contract, an external communication, you keep a human validation point. Not on everything, otherwise the agent is useless. On what matters, and only on what matters.

Finally, a trace. Everything the agent does is logged, so you can reread, understand and correct. An agent that acts without leaving a trace is an agent you do not steer, you endure.

The right question before you deploy

I am often asked which agent is the most powerful, the most capable, the most fashionable. That is almost never the right question. The right question, before deploying anything, is this: what is this agent allowed to do alone, and what must stay under control?

Answer that one, set the corridor, the door and the trace, and an agent becomes an excellent silent colleague. Skip that step, seduced by a smooth demonstration, and you will discover the hardest rule of automation: a system that acts fast does things fast, errors included. The power of an agent is not measured by what it can do. It is measured by the quality of the limits you have given it.

← All writing Get in touch