AI Organization & Separation of Powers — Structure Log

An implementation log of organizing AI agents

Why We Use an AI from a Different Vendor as the Auditor

2026-06-13

The auditor role in this system is filled by an AI built by a different company than the one that built the executor (the AI that carries out tasks). This is a core design principle of the organization described in this series.

Why? In one sentence: you cannot audit yourself.

Self-Auditing Has Structural Limits

In earlier chapters, we established that an AI organization splits its work into three roles: execution, audit, and approval. The executor AI does the work, the auditor AI checks the results, and a human gives the final approval.

That raises a natural question. What if the auditor and the executor are the same AI?

The answer is simple. It would be meaningless.

Think of a person who writes a document and then checks it for mistakes themselves. Because that person already knows what they meant to say, they tend to read it in a way that confirms their own intention, without noticing it. Errors slip through precisely because the knowledge and assumptions behind the writing overlap with the knowledge behind the review.

The same structural problem applies to AI.

Same Vendor, Same Way of Thinking

Every AI has a particular pattern of reasoning shaped by the company that designed it.

If you keep using models from the same vendor (a company that builds AI), you end up with a consistent style, structure, and set of judgment criteria. That is not a problem in itself, but it becomes a problem in auditing. If the auditor shares the same reasoning patterns as the executor, it is more likely to miss the same mistakes and blind spots.

More concretely, AI models from the same company often share the same training data and the same architecture (the underlying design structure of the AI). As a result, they tend to make similar kinds of errors. If the executor outputs "this judgment is sound" and the auditor from the same family of models responds "no issues found," a structural blind spot has just gone undetected.

Why We Use a Different Vendor

That is why we deliberately assign the auditor role to an AI from a different vendor.

The idea is straightforward: AI Company A runs the execution step, and AI Company B checks the result. Because Company B's AI was built on a different design and trained differently, it can approach what Company A's AI tends to overlook from a different angle.

This is not a guarantee. "Use a different vendor and all problems are solved" is not what this is saying. But it does mean that the patterns of oversight are less likely to align and cancel each other out. That is the main reason for putting a different-vendor AI in the auditor seat.

In human organizations, this is similar to the difference between an internal audit and an external audit (a review conducted by someone outside the organization). Having an outside perspective makes it easier to maintain objectivity than relying entirely on people who work inside the same system. The same idea is applied here to an AI organization.

A Design Principle: Role Separation and Independence Work Together

Separating roles and securing independence are two things that only work when they come as a pair.

You can assign the labels "executor, auditor, and approver" to three separate entities (separate units, each with their own defined role and responsibility), but if all three share the same reasoning foundation, the separation loses most of its meaning. Role separation and reasoning-foundation separation must both be in place before the system can actually keep each part in check.

In the design used in this series, the executor is Claude (Anthropic) and the auditor is Gemini (Google). The vendor assignments are made consciously this way. The point is not which AI is better. It is a design choice made to secure independent judgment bases.

The Auditor's Job Is Not to Reject

One clarification worth making.

The auditor's role is not to reject or block the executor's work. Its function is to act as a gate: detect problems when they exist, and pass the work through when there are none.

When the system is working well, the auditor is barely noticeable. If the execution result is appropriate, the process simply moves to the next step. The auditor becomes visible only when something crosses a threshold (the line at which something is flagged as a problem).

When you actually build and run this kind of structure, it is quieter than it sounds. "AI systems checking each other" may sound dramatic, but in day-to-day operation, the process just moves along steadily without much fanfare.

Summary of This Chapter

  • Self-auditing has structural limits
  • AI models from the same vendor share the same reasoning patterns, which makes them less effective as auditors
  • Using a different vendor for the auditor role reduces the chance that blind spots will overlap
  • Role separation and reasoning-foundation separation only work when both are in place
  • The auditor's job is not to reject work, but to function as a gate
← cd ..