WARRANT
[email protected] Open the demo →
v0.4 · public beta EU AI Act high-risk · application 2026-08-02 · Omnibus deferral provisional to 2027-12-02

warrant.an instrument for evidence.

Warrant is regulator-grade evidence infrastructure for AI agents in regulated industries: drop an agent's execution trace, get a record mapped to a specific EU AI Act obligation, independently verifiable without contacting Warrant.

drop your AI agent's execution trace. get a record mapped to a specific EU AI Act obligation, and to NYDFS Part 500, SR 11-7, FCA Consumer Duty, RBI FREE-AI, SEBI, India DPDP, MAS FEAT. in 60 seconds.

drop a trace → verify a sample →
WARRANT · ARTEFACT№ 7DE85CEA
in the matter of trace 7de85ceaeac42a47 · eu-fintech-prod.
EU AI Act · Art. 12(1)YES ✓
NYDFS · 23 NYCRR § 500.6(a)(2)YES ✓
NYDFS · § 500.17(b)(2)YES ✓
SR 11-7 · § III.BYES ✓
FCA · PRIN 2A.1.1RYES ✓
independently verifiableYES ✓
ON THE PUBLIC RECORD · 14:23:08 UTC
60strace → PDF
9regimes mapped
6jurisdictions
verifiablewithout contacting Warrant
01 · DELIVERABLE PREVIEW

the artefact a regulator accepts.

one PDF. the trace's actions, mapped per-action to the article numbers that govern them — a record mapped to a specific EU AI Act obligation. it is independently verifiable without contacting Warrant, so any auditor can confirm it for themselves.

SAMPLE · EU FINTECH PROD№ 7DE85CEAEAC42A47
in the matter of an autonomous lending agent. 14 actions reviewed. 14 mapped under regulation. 0 unauthorised.
EU AI Act · Art. 12(1) automatic event recordingYES ✓
EU AI Act · Art. 13 transparency to deployerYES ✓
NYDFS · 23 NYCRR § 500.6(a)(2) audit trailYES ✓
NYDFS · § 500.17(a)(1) cyber-event notificationYES ✓
NYDFS · § 500.17(b)(2) annual certificationYES ✓
NYDFS · § 500.1(e/f/k) covered-entity definitionsYES ✓
SR 11-7 · § III.B model risk managementYES ✓
FCA · PRIN 2A.1.1R consumer outcomesYES ✓
mapped to a specific EU AI Act obligationYES ✓
independently verifiable without contacting WarrantVERIFIED
on the public recordYES ✓
ON THE PUBLIC RECORD · 2026-05-08 · 14:23:08 UTC

read the sample PDF → verify 7de85ceaeac42a47 →

02 · FROM TRACE TO RECORD

what does the record state? it reads the way a regulator reasons.

one trace in, one PDF out. the record states, per action the agent took, whether it stayed within purpose, whether the obligation was met, and the article number that governs it — a record mapped to a specific EU AI Act obligation.

Art. 12(1)
each action is on the record, with its actor, subject, inputs, outputs and timestamp the record states within_purpose for every action and answers EU AI Act Article 12(1) automatic event recording over the lifetime of the system.
Art. 13
the record states whether each action was authorised, and why per-action preconditions_met and human_oversight_appropriate answer EU AI Act Article 13 transparency toward the deployer, and flag drift from intended purpose.
Art. 26
each action is mapped to the obligation that binds it, with an article-level citation the authorization_envelope and trace.actions[*] rows answer EU AI Act Article 26 deployer obligations. this is what the PDF prints.

end-to-end target on the sample traces · 60 seconds. trace truncation cap · 80,000 characters. the resulting record is independently verifiable without contacting Warrant.

03 · NINE REGIMES, SIX JURISDICTIONS

we cite the regulations we map evidence against. we do not claim coverage we do not hold.

status reflects production coverage as of 2026-05-08. mapping is article-level. nine regimes across six jurisdictions. the scope is fixed in writing on the artefact itself.

EU · live

EU AI Act · Art. 12

Reg. (EU) 2024/1689, Art. 12(1) · Art. 13 · automatic event recording over the lifetime of high-risk systems. enforcement 2026-08-02 (provisional deferral to 2027-12-02 pending OJEU). penalty up to 3% turnover or €15M under Art. 99(4).

Art. 12(1) · Art. 13 · enforcement 2026-08-02 (provisional deferral to 2027-12-02 pending OJEU) · penalty 3% turnover or €15M (Art. 99(4))
EU · live

EU AI Act · Art. 13

Reg. (EU) 2024/1689, Art. 13 § 1–3 · transparency obligations toward downstream deployers. instructions for use, capabilities, limitations, oversight measures.

Art. 13(1) · Art. 13(2) · Art. 13(3) · enforcement 2026-08-02 (provisional deferral to 2027-12-02 pending OJEU)
UK · live

FCA Consumer Duty

Principles for Businesses Sourcebook · Principle 12 and PRIN 2A. outcomes monitoring, support for retail customers, adverse-action disclosure. PS22/9 published 27 July 2022.

PRIN 2A.1.1R · Principle 12 · PS22/9
NY · live

NYDFS Part 500

23 NYCRR Part 500 · audit trail, cybersecurity-event notification, annual certification, covered-entity scope. Oct 2024 industry letter applies the rule to AI deployments.

§ 500.6(a)(2) · § 500.17(a)(1) · § 500.17(b)(2) · § 500.1(e/f/k)
US FED · live

SR 11-7 + SR 26-2

Federal Reserve Supervisory Letter SR 11-7 · the bank's "model risk management framework" verbatim, ongoing monitoring of model performance and stability. SR 26-2 carry-forward for AI. GAO B-331324.

SR 11-7 · § III.B · SR 26-2 · GAO B-331324
IN · partial

RBI FREE-AI

Reserve Bank of India · Framework for Responsible and Ethical Enablement of AI · Committee Report released 13 August 2025. principles for regulated entities, lifecycle controls, audit obligations.

RBI FREE-AI · 13 Aug 2025
IN · live

SEBI Retail Algo

Securities and Exchange Board of India · Retail Algorithmic Trading Framework. February 2025 circular plus September 2025 extension. mandatory 1 April 2026. today is post-enforcement.

Feb 2025 + Sep 2025 circulars · mandatory 1 April 2026
IN · live

India DPDP

Digital Personal Data Protection Act 2023 · § 8(3) accuracy of personal data used for decisions affecting the data principal · § 8(5) reasonable security safeguards by the data fiduciary.

DPDP Act 2023 · § 8(3) accuracy · § 8(5) safeguards
SG · partial

MAS FEAT

Monetary Authority of Singapore · Fairness, Ethics, Accountability, Transparency principles for AI in finance. published 2018. principles guidance, not binding rule. Veritas toolkit operationalises the four principles.

MAS FEAT · published 2018 · Veritas toolkit
CANONICAL SOURCES · the regulators we read directly
EUR-Lex CELEX:32024R1689 · dfs.ny.gov NYDFS Industry Letter · federalreserve.gov SR2602.pdf
sebi.gov.in Retail Algo Framework · rbidocs.rbi.org.in FREE-AI · fca.org.uk PS22/9
04 · INDEPENDENTLY VERIFIABLE

who can verify a Warrant record, and how long does it take?

anyone can, in under a minute, with no account and no API key. paste a package id or upload the PDF. the artefact is independently verifiable without contacting Warrant. it passes or it fails. there is no third option.

01
INDEPENDENTLY VERIFIABLE
the artefact is independently verifiable without contacting Warrant. the result is binary: it passes or it fails. no metadata or external service is consulted on Warrant's behalf.
02
A RECORD MAPPED TO REGULATION
each artefact is a record mapped to a specific EU AI Act obligation, and to the other regimes Warrant cites. the mapping is article-level and fixed in writing on the artefact.
verify 7de85ceaeac42a47 →
CASE STUDY · 7DE85CEA · LIVE

can a regulator verify a real package in three minutes?

Yes. Package 7de85ceaeac42a47 was entered into the public record on 2026-04-29 against an EU/DE-BaFin lending advisory trace. It is a record mapped to a specific EU AI Act obligation. Anyone with an internet connection can confirm it is independently verifiable without contacting Warrant.

PACKAGE
7de85ceaeac42a47 A record mapped to a specific EU AI Act obligation, independently verifiable without contacting Warrant.
DOMAIN
Lending advisory · DE/EU jurisdiction High-risk classification under EU AI Act Annex III §5 (creditworthiness assessment).
REGIMES
EU AI Act Art. 12(1) · 23 NYCRR § 500.6(a)(2) · FCA PRIN 2A Principle 12 · SR III.B 4 actions extracted, 5 obligations cited, 3 gaps surfaced.
VERIFY
/verify?id=7de85ceaeac42a47 → ~30 seconds round-trip · independently verifiable without contacting Warrant.
21d
ON THE PUBLIC RECORD
First production package, post-cohort. A record mapped to a specific EU AI Act obligation, on the public record and independently verifiable without contacting Warrant for 21d.
PASS
VERIFIES
Independently verifiable without contacting Warrant. The result is binary: it passes or it fails.
~30s
VERIFY ROUND-TRIP
From paste of package_id to a verified result. No tool installation. No Warrant API key required.
verify this package now → download the sample PDF →
LATEST · package 7de85ceaeac42a47 · on the public record 2026-04-29 · a record mapped to a specific EU AI Act obligation · independently verifiable without contacting Warrant · VERIFIES
05 · THE LIMITS · COURT-DOCUMENT DISCIPLINE

what Warrant does not do.

we name the perimeter so the regulator can read it. the artefact is precise about what it asserts and silent on what it does not.

not
we do not provide legal advice. the artefact is a structured statement of fact about a trace under a regulatory mapping we publish. retain qualified counsel for any reliance decision.
not
we are not a notified body and we do not perform conformity assessment under EU AI Act Art. 43. conformity assessment for Annex III high-risk systems sits with the provider and the relevant notified body. Warrant produces evidence usable in that process.
not
we do not certify compliance. Warrant maps a single trace to article-level obligations. one PDF is not a certification of the deploying organisation's overall posture.
not
we do not replace runtime guardrails. Warrant is a record-keeping and evidence layer. it runs after the agent executes. policy enforcement, prompt-injection defence, output validation belong upstream.
not
we do not replace the observability platform. application traces, metrics, profiling continue to live where they live. Warrant consumes the trace. it does not collect it.
06 · THE STATUTE

the load-bearing verb.

High-risk AI systems shall technically allow for the automatic recording of events ('logs') over the lifetime of the system. Regulation (EU) 2024/1689 · Article 12(1) · 13 June 2024
"the text is the spec. the artefact is the deliverable. everything between is engineering."WARRANT COMPLIANCE · 2026-05-08

three steps from one sentence in Article 12(1) to the EUR 15 million ceiling. Article 12 binds the system. Article 16(c) reads it back as a provider obligation. Article 99(4) sets the fineable consequence at the higher of EUR 15 million or 3 percent of global turnover.

read the full statutory reading →

07 · FILED ALONGSIDE
ENTRY № 01 · 2026-05-07
EU AI Act Article 12, line by line.
four paragraphs of the EU AI Act. one column of the Official Journal. application 2026-08-02 (provisionally deferred).
ENTRY № 03 · 2026-05-07
Standard API call logs do not satisfy § 500.6.
23 NYCRR Part 500 audit trail rule applied to AI agents. what the rule actually asks for.
ENTRY № 07 · 2026-05-08
The four-layer evidence stack.
Article 12(1) over the lifetime of the system. the architecture answer.
RECENT REGISTER
№ 09 · REGULATION
one agent, many jurisdictions.
One trace, mapped to the obligations that bind it across nine regimes in six jurisdictions. The artefact is what the regulator reads.
№ 07 · ARCHITECTURE
the four-layer evidence stack.
Observability is not runtime is not evidence is not attestation.
№ 01 · REGULATION
Article 12, line by line.
Four paragraphs of the EU AI Act. One column of the Official Journal. The load-bearing verb.
08 · CLOSING

drop a trace. get the artefact.

one trace JSON, one PDF, sixty seconds. independently verifiable without contacting Warrant. the citations name the article. the artefact reads in court.

drop a trace → talk to the team · [email protected]

WAITLIST

Compliance officer, deployer engineer, regulator, builder — tell us who you are and we'll write back within 48h. Two fields. No sequence drip. No newsletter.

join the waitlist →