Book a demo

By industry

HealthcareFHIR/HL7, HIPAA, BAA Finance & insuranceFINRA/SEC audit trails Government & public sectorAir-gapped, sovereign AI agent platformsAccountability for your users

By use case

Audit readinessSOC 2 · HIPAA · ISO 42001 · EU AI Act Incident responseReconstruct & prove in minutes Compliance evidenceRecords assessors actually ask for Agent governanceWho authorized what, proven

By framework

SOC 2CC7.2 / CC7.3 agent evidence HIPAA45 CFR 164.312(b) ISO 42001AI management system EU AI ActArticle 12 logging

Highlights

Book an agent audit
See what your agents did. Free eval, nothing deployed.
Hardware-rooted evidence
Validated on real NVIDIA H100 confidential compute.
Project AIR Platform
Your complete agent-accountability HQ
Explore platform →
Audit
The record you take into your audit.
Learn more →
Prove
Signed, anchored, independently verifiable.
Learn more →
Protect
Halt agents before harm, not after.
Learn more →
Monitor
16 detectors, every action, live.
Learn more →
AIR SDK & CLI
Open source, on PyPI. Start in an afternoon.
Learn more →
FlightDeck
The operator cockpit for your fleet.
See the demo →
AIR Cloud
Hosted ingestion, retention, alerting.
Learn more →
Admissibility
Self-authenticating, FRE 902(13)–(14).
Learn more →
Structural Verification
The deterministic floor agents can't talk past.
Learn more →

Company

AboutWhy we build the record AxiisiumOur healthcare AI initiative ContactTalk to us PolicyEvidence-based agent governance

Resources

BlogWriting on agent accountability PressNews & coverage Docs & GitHubMIT, read every line

Community

Open sourceOur OSS projects EventsWhere to find us PartnersBuild with Vindicara

Highlights

Axiisium
Our healthcare initiative: multimodal AI for blood cancer, built to be provable.
Open source on PyPI
MIT-licensed. Install projectair and verify every line.
Policy

The rules for autonomous AI agents should be built on evidence.

AI agents are moving out of demos and into production workflows that touch patient records, money movement, and critical infrastructure, faster than the frameworks meant to govern them. Vindicara works with regulators, standards bodies, auditors, and the teams shipping agents to make agent accountability rest on something you can verify, not something you have to take on faith.

The accountability gap
Prevention is not proof
When an autonomous agent acts, most organizations cannot show what it was authorized to do, or that the record was not edited afterward. Our position on why accountability, not just prevention, is the layer that is missing.
Read more →
An evidence standard
A baseline for agent actions
A proposal for treating every consequential agent action as a signed, tamper-evident, independently verifiable record, the bar we believe high-risk deployments should be held to.
Read more →
EU AI Act
Article 72, in practice
How the record-keeping and logging obligations of the EU AI Act map to a concrete, cryptographically verifiable implementation that exists today, not a policy aspiration.
Read more →
Admissibility
Built to hold up where it counts
Agent evidence is only useful where decisions get made: an audit, an insurance claim, a courtroom. Designing for US Federal Rules of Evidence 902(13)-(14) from the very first record.
Read more →

Philosophy & approach

We expect AI agents to run a growing share of the work that matters, and to make consequential decisions without a human watching each step. That is the premise of the technology, and it is not going away. The open question is not whether agents will act on their own. It is whether anyone will be able to prove what they did when it counts.

Accountability cannot be retrofitted. A log written after the fact, by the same system that may have failed, is not evidence. It can be incomplete, it can be edited, and it asks a regulator or a court to simply trust the operator. We take the opposite position: the record has to be created at the moment of action, signed in the process that took it, anchored to a public transparency log, and bound to the human who authorized it. Then it is evidence anyone can check without trusting us.

This is why Project AIR ships as open source under the MIT license. Accountability infrastructure that asks you to trust a black box reproduces the problem it claims to solve. The CLI, the SDK, and the record format are public, and any chain can be verified with no Vindicara infrastructure in the path.

We also believe the industry should not write these rules alone. Standards bodies, regulators, and the courts set the bar that makes evidence portable and comparable across vendors. Our work is to make sure that bar is technically achievable today, and grounded in how agents actually behave rather than how anyone wishes they did.

Our policy priorities

01Verifiable accountability over assertion

Operators of high-risk agents should be able to show, not state, what their agents did. We map agent behavior against the OWASP Top 10 for Agentic Applications and write tamper-evident records, Signed Intent Capsules, that are signed in the process that took the action and anchored to the public Sigstore Rekor transparency log. A single altered byte breaks verification at the exact record.

02Human authority over autonomous action

No consequential action should run without tracing back to a named human. Project AIR binds each action to an authorizing identity through standard OIDC providers, and can halt an agent before it crosses a line a human never approved. Accountability requires a human in the chain of custody, not only a model in the loop.

03Open standards and interoperability

Evidence is only valuable if it travels. We build to an open record format and align with the frameworks assessors already use: EU AI Act record-keeping (Articles 12 and 72), NIST AI RMF, and ISO 42001. We support a shared evidence standard so accountability stays portable across tools, vendors, and borders, including when one agent delegates work to another.

04Legal and audit admissibility

The purpose of a record is the moment someone has to rely on it. We design agent evidence to be self-authenticating under US Federal Rules of Evidence 902(13)-(14), so an auditor, insurer, or court can act on it without weeks of reconstruction.

05Open source and independent verification

Trust should not be a prerequisite for accountability. The core of Project AIR is MIT-licensed and public on PyPI. We dogfood it: every request to this site is recorded with the same library we ship and anchored to a log anyone can inspect, with zero Vindicara infrastructure in the path.

06Honest disclosure

We state what Project AIR does not do as plainly as what it does. Overclaiming the capabilities of accountability tooling is itself a governance risk. Our published coverage is grounded in specific standards, and we label clearly what is shipped, what is in beta, and what is on the roadmap.

Working with us

We work with policymakers, standards organizations, auditors, and enterprises deploying agents in regulated environments. If you are shaping the rules for autonomous AI, or trying to meet the ones that already exist, we would like to help, and we will show you working evidence rather than slides.

Talk to our team → Become a design partner