Why most Copilot pilots never become operating systems

The technical demo is rarely the hard part. Production adoption depends on permissions, content ownership and an operating model that survives the launch meeting.

3 minute readBy Lucas North

Microsoft 365 Copilot can produce a convincing demonstration in an afternoon. Give it a curated SharePoint site, a clean meeting transcript and a cooperative prompt, and the result looks finished. It proves capability under controlled conditions, not readiness across an organisation.

The difficult work begins when the demonstration ends. Real tenants contain inherited permissions, abandoned workspaces, inconsistent labels and information whose owner left three reorganisations ago. Copilot does not create those conditions. It makes them visible.

The pilot tests capability, not readiness

A pilot usually asks whether the model can summarise a meeting, draft a proposal or answer a question. Those are capability questions. Production asks different questions: can people trust the sources, can security teams explain access, and can somebody improve a poor result without opening a support ticket called “AI is wrong”?

The distinction matters because capability tests have a natural end. Readiness is an operating condition. It requires named owners, measurable controls and a feedback loop.

A successful demonstration shows what the tool can do. A successful deployment shows who is responsible when it does the wrong thing.

Permissions are part of the product

The most common surprise is not that Copilot cannot find content. It is that Copilot finds content people had forgotten they could access. Search already exposed much of this material, but generative interfaces reduce the effort required to discover and combine it.

Before rollout, I treat permission analysis as product work rather than a security workstream running beside it. The experience depends on it. A technically correct answer assembled from stale or ambiguously owned sources is still a bad answer.

Control Useful question Evidence
Ownership Who can approve changes? Named content owner
Access Why can this group read it? Reviewed permission path
Currency When was it last validated? Review date and lifecycle
Sensitivity Can it be combined safely? Applied label and policy

Build the operating model before broad access

Start with a narrow set of repeatable jobs, not a department-wide invitation. For each job, record the source systems, expected answer shape, accountable owner and failure route. This gives support teams something concrete to diagnose and gives governance teams something measurable to control.

Adoption metrics should distinguish curiosity from durable use. Weekly active users are weak evidence on their own. Look for repeated completion of valuable tasks, reduced hand-offs and fewer manual reconciliations. If the workflow still requires users to verify every sentence against five source documents, the product has not removed much work.

The production test

The question I use at the end of a pilot is simple: if usage increased tenfold on Monday, would the organisation know what to do on Tuesday? If the answer depends on the original project team remaining in every meeting, the pilot has not yet produced a system.

Moving to production is not a bigger licence order. It is the point at which ownership, measurement and remediation stop being project activities and become ordinary work.

Written by

Lucas North

I build enterprise software and write about the decisions, constraints and failure modes that rarely fit into a product announcement.

More about me →