Book a demo

By industry

HealthcareFHIR/HL7, HIPAA, BAA Finance & insuranceFINRA/SEC audit trails Government & public sectorAir-gapped, sovereign AI agent platformsAccountability for your users

By use case

Audit readinessSOC 2 · HIPAA · ISO 42001 · EU AI Act Incident responseReconstruct & prove in minutes Compliance evidenceRecords assessors actually ask for Agent governanceWho authorized what, proven

By framework

SOC 2CC7.2 / CC7.3 agent evidence HIPAA45 CFR 164.312(b) ISO 42001AI management system EU AI ActArticle 12 logging

Highlights

Book an agent audit
See what your agents did. Free eval, nothing deployed.
Hardware-rooted evidence
Validated on real NVIDIA H100 confidential compute.
Project AIR Platform
Your complete agent-accountability HQ
Explore platform →
Audit
The record you take into your audit.
Learn more →
Prove
Signed, anchored, independently verifiable.
Learn more →
Protect
Halt agents before harm, not after.
Learn more →
Monitor
16 detectors, every action, live.
Learn more →
AIR SDK & CLI
Open source, on PyPI. Start in an afternoon.
Learn more →
FlightDeck
The operator cockpit for your fleet.
See the demo →
AIR Cloud
Hosted ingestion, retention, alerting.
Learn more →
Admissibility
Self-authenticating, FRE 902(13)–(14).
Learn more →
Structural Verification
The deterministic floor agents can't talk past.
Learn more →

Company

AboutWhy we build the record AxiisiumOur healthcare AI initiative ContactTalk to us PolicyEvidence-based agent governance

Resources

BlogWriting on agent accountability PressNews & coverage Docs & GitHubMIT, read every line

Community

Open sourceOur OSS projects EventsWhere to find us PartnersBuild with Vindicara

Highlights

Axiisium
Our healthcare initiative: multimodal AI for blood cancer, built to be provable.
Open source on PyPI
MIT-licensed. Install projectair and verify every line.
Framework / HIPAA

HIPAA wants an audit trail.
Your agents aren't in it.

45 CFR 164.312(b) requires audit controls over who accessed ePHI. Your EHR logs the humans; the autonomous agents touching FHIR resources are the gap. AIR records every agent action against ePHI, signed and attributable.

45 CFR 164.312(b)audit controlsePHIBAA
Book an agent audit See the evidence ↓
Per-agent · attributable · ePHI stays in your boundary
HIPAA audit · live
Agentnotes-summarizer-02
ePHI accessPatient/8841 · read
Authorized bydr.okafor · Auth0
Bulk exportblocked · SV-EXFIL
164.312(b) record · signed · anchored Rekor
✓ attributable · who, what, when
01The stakes
OCR inquiry · ePHI access review
An agent accessed ePHI. 164.312(b) wants the audit trail. Your EHR's stops at humans.
Audit logging is "addressable" today and routinely skipped for agents; the 2025 Security Rule NPRM would make it mandatory. Either way the autonomous agents are the uncovered gap, and AIR closes it with a signed, attributable record of every agent access.
02The rule

What 164.312(b) requires, stated straight.

164.312(b)
audit controls

Implement mechanisms that record and examine activity in systems containing ePHI. For humans your EHR does; for agents, it doesn't.

The forensic question: which agent touched which patient's record.
Addressable → mandatory
the 2025 NPRM

Today it's "addressable," and routinely skipped. The 2025 Security Rule NPRM would remove the addressable-vs-required split.

Proposed, not final — as of mid-2026 OCR has issued no final rule.
BAA
the contract

A vendor touching ePHI signs a Business Associate Agreement, with annual certification under the proposed rule.

Air-gapped AIR keeps the ePHI inside your boundary — nothing to phone home.
03How AIR answers

Every audit-control question, for the agent layer.

Which agent accessed which patient's ePHI?
MonitorPer-agent identity with DataSubjectRef / DataAssetRef on every action.
Under whose authority?
AccountBound to a named human via Auth0, Entra, Okta or SPIFFE.
Can you prove the record wasn't edited?
ProveBLAKE3 + Ed25519, anchored to a public log.
Does it satisfy 164.312(b)?
ReportRecords map to the audit-controls requirement.
Keep ePHI inside the boundary?
Air-gappedOn-prem deployment; the record never leaves.
04The evidence

The 164.312(b) record, for an autonomous agent.

A signed, attributable, timestamped record of an agent's ePHI access — who, what, when, under whose authority — verifiable independently and admissible under FRE 902(13)–(14).

See the healthcare view →
HIPAA 164.312(b) record · agdr/v2
Delegation · dr.okafor authorized notes-summarizer-02
Subject · DataSubjectRef = Patient/8841
Action · FHIR read — in scope, signed
Halt · bulk export blocked — SV-EXFIL
signed in-process · blake3 · ed25519 · anchored Rekor
✓ attributable · search.sigstore.dev
05What you get

The tiers HIPAA-covered teams choose.

Enterprise
most teams here
  • 164.312(b) agent-layer audit records
  • Containment — halt agents before harm
  • Causal graph, query & replay
  • SIEM: Splunk · Datadog · Sentinel · Sumo
  • SSO / OIDC, SLA
Book an agent audit
Air-gapped
regulated · sovereign
Everything in Enterprise, plus
  • Signed BAA
  • HL7v2 / FHIR R4 interop
  • On-prem / offline anchoring
  • Admissibility Pack — FRE 902 + expert support
Talk to us

Put your agents in the audit trail.

A free agent audit shows exactly what 164.312(b) evidence you'd have for your agents today — nothing deployed, ePHI never leaves your boundary.

Book an agent audit →
45 CFR 164.312(b)BAAFHIR R4 / R5FRE 902(13)–(14)
Vindicara · project AIR v1.0.1 support@vindicara.io · This page is itself on the record.