Recordkeeping

Every Decision, Documented

A non-repudiable audit trail of every compliance check — capability evaluation, sanctions screen, delegation verification, revocation status — logged with cryptographic evidence and regulatory citation.

8
PASS
1
FAIL
1
WARN
TimeAgent DIDStepCheckResultEvidence HashRegulatory
10:22:01.103did:web:agent.acme-corp.com01 PrincipalResolve Principal — DID document parsed, controller identifiedPASSsha256:9f3c...e7a1W3C DID Core 1.1, ACK-ID, GENIUS Act §4(a)
10:22:01.714did:web:agent.acme-corp.com02 DelegationVerify Delegation — 3-level chain, authority attenuated $50K→$10K→$5KPASSsha256:b2e4...3d0fBSA Beneficial Ownership, GENIUS Act §4(b)
10:22:02.118did:web:agent.acme-corp.com03 CapabilityEvaluate Capability — 5/5 checks passed ($3,500 USDC transfer)PASSsha256:c7f1...a492ACK Rulebook, AML Transaction Limits
10:22:02.572did:web:agent.acme-corp.com04 JurisdictionJurisdiction Rules — US-DE originator, EU-FR beneficiary, Travel Rule appliesPASSsha256:d9a3...f7b2FATF Travel Rule R.16, GENIUS Act, MiCA
10:22:03.289did:web:agent.acme-corp.com05 SanctionsSanctions Screen — Originator CLEAR, Beneficiary CLEARPASSsha256:e5b7...c1d8OFAC SDN, EU Consolidated List, GENIUS Act §5
10:22:03.641did:web:agent.acme-corp.com06 RevocationRevocation Status — 3 credentials checked, all ACTIVEPASSsha256:f1c9...8e34W3C VC BitstringStatusList, Incident Response
10:22:04.152did:web:agent.acme-corp.com07 Crypto HealthCryptographic Health — Ed25519 detected, quantum-vulnerableWARNsha256:a2d6...5f90NIST FIPS 203/204/205, CISA PQC Guidance
10:25:11.440did:web:bot.payroll-co.net01 PrincipalResolve Principal — DID document parsed, controller identifiedPASSsha256:7a4b...d2e1W3C DID Core 1.1, ACK-ID, GENIUS Act §4(a)
10:25:12.012did:web:bot.payroll-co.net02 DelegationVerify Delegation — 2-level chain, authority attenuated $25K→$5KPASSsha256:8c5d...e3f2BSA Beneficial Ownership, GENIUS Act §4(b)
10:25:12.419did:web:bot.payroll-co.net03 CapabilityEvaluate Capability — FAIL: DAI not in permitted assets [USDC, USDT]FAILsha256:9d6e...f4a3ACK Rulebook, AML Transaction Limits
Showing 10 of 10 records

Why This Matters

The Non-Repudiable Audit Trail

Sean Neville explicitly requires a "non-repudiable audit trail" for agent commerce. When an AI agent makes a financial decision autonomously, every stakeholder — the principal, the counterparty, the regulator — needs to see exactly what was checked, what the outcome was, and what evidence supports that outcome.

Every record in the audit trail includes a cryptographic evidence hash that can be independently verified. The hash covers the input data (agent DID, transaction parameters), the check logic (rule evaluated), and the result. Tampering with any element changes the hash.

The GENIUS Act §8 mandates recordkeeping for all payment stablecoin transactions. This audit trail satisfies that requirement by generating exportable, structured records that a compliance officer could file as evidence of due diligence.

Export

Compliance-Ready Formats

JSON Export
Machine-readable format for integration with existing compliance systems, SIEM platforms, and regulatory reporting pipelines. Each record includes full metadata: timestamp, agent DID, check name, result, evidence hash, and regulatory citation.
PDF Report
Human-readable compliance report formatted for filing with regulators or internal audit committees. Includes summary statistics, individual check details, and the complete evidence chain. (Coming soon.)
Regulatory Mapping
Every audit entry is tagged with the regulatory framework it satisfies: GENIUS Act section, FATF recommendation, BSA requirement, or W3C standard. Filter by framework to generate targeted compliance reports.

Dedicated Audit Platform

Want the full audit infrastructure?

StableAudit.com extends this audit trail into a complete platform — receipt verification, regulatory field mapping across BSA/AML, FATF, GENIUS Act, and FinCEN, interactive pipeline architecture diagrams, and VC-format export for tamper-evident regulatory submissions.

Explore StableAudit.com →

Regulatory Alignment

How the Audit Trail Satisfies Regulation

Requirement Source Audit Trail Coverage
Recordkeeping GENIUS Act §8 Every compliance check logged with timestamp, evidence hash, and regulatory citation
Transaction monitoring BSA/AML Real-time logging of all capability evaluations and sanctions screenings
Suspicious activity evidence BSA SAR, GENIUS §5(c) Failed checks generate immediate audit entries with failure reason and evidence
Non-repudiable trail ACK Architecture Cryptographic evidence hashes ensure tamper-evident records
Examiner access GENIUS Act §8(b) Exportable JSON and PDF formats for regulatory examination