If you want to buy or sell AI services for federal government use, review our resources on AI acquisition to get started. AI CoE offers extensive resources for procuring AI resources as well.
For federal buyers
Find out what AI solutions are already available to your agency. You might have them in the tools you already use or be able to access them through existing government cloud platforms. You may also be able to access them through your agency’s existing cloud platform contracts.
If your use case does require a new tool, consider these factors as you begin the acquisition process.
- Start with your agency’s needs instead of solutions and specifications. Define the problem that your agency needs AI tools to help solve.
- Scope and test solutions. Use testbeds and sandboxes to try solutions before committing to large scale buys with too many unknowns about product performance.
- Manage and protect data. AI relies on data “inputs” to create content “outputs.” You need to understand where your data comes from, how data will be used and protected, and any data limitations.
- Engage AI-relevant officials. Work with your agency’s Chief Information Officer, Chief Artificial Intelligence Officer, Chief Data Officer, Chief Information Security Officer, Chief Privacy Officer, and other relevant officials to comply with laws and policies.
- Control costs. AI is often billed like other Software as a Service so usage costs can grow quickly if not appropriately monitored and managed.
If you are interested in procuring generative AI, consult the Generative AI and Specialized Computing Infrastructure Acquisition Resource Guide. It offers questions that contracting officers should ask when scoping a generative AI acquisition and potential resources for getting more information. You can also learn more about acquisition methods and vehicles.
How GSA uses AI in the acquisition process
GSA uses AI to support and streamline the acquisition process. Learn more about our acquisition-related use cases, including analytics, category taxonomy, and compliance review.
AI security and privacy
AI-related cloud services that expose federal data or connect AI services to federal systems must comply with federal and agency security and privacy policies. Before buying or using AI-based solutions, you may need to follow your agency’s assessment and authorization processes. Consult with your agency’s IT security team to see if you need to obtain an Authority to Operate, or a FedRAMP-provisional ATO.
FedRAMP
FedRAMP is the governmentwide program that provides a standardized approach to security and risk assessment for cloud technologies for federal agencies.
- All cloud service providers must be FedRAMP-authorized providers or be in the process of obtaining authorization.
- AI cloud services must leverage an existing authority to operate from other agencies to maximize savings.
FedRAMP has published the final Emerging Technology Prioritization Framework. The framework will help the FedRAMP Marketplace include AI technologies more rapidly, so agencies can more easily use modern tools to deliver their missions.
For sellers
We offer multiple pathways to sell IT services (including AI tools) to the federal government on cloud platform contracts. Learn more about selling cloud-related services.
U.S. General Services Administration