Data Model

Organization

The top-level entity representing a legal entity (company, institution, or DAO). Each organization has a legal entity type, a primary jurisdiction, an Ed25519 public key, and owns agents, mandates, and settings. Organizations are the root of all access control and billing.

Agent

An AI agent registered with a name, Ed25519 public key, framework identifier (e.g., LangGraph, AutoGen), runtime metadata, and a status of active, suspended, or deregistered. Agents carry a behavioral baseline and maintain a key rotation history for audit purposes.

Mandate

A signed authorization that defines what an agent is permitted to do. Mandates follow a status lifecycle: draft → review → active → expired or revoked. Each mandate specifies allowed action types, target resources, and scope constraints (temporal, geographic, or quantitative). Mandates can be created from templates for repeatable governance patterns.

Action

A record of an agent performing a discrete operation. Each action belongs to a chain of custody linked back to its originating mandate. Actions include input and output content hashes, timestamps, and optional anomaly scores for behavioral monitoring.

Evidence Package

A cryptographically signed bundle of action records scoped to a mandate. Evidence packages support five types: court_submission, regulatory_submission, internal_audit, compliance_report, and customer_facing. Packages support dual-signing for cross-organizational evidence sharing and can be exported as PDF or XML.

Delegation

A chain of authority that extends a mandate's permissions to another agent or sub-agent. Delegations include nonce replay protection, a 24-hour expiry window per hop, and support cross-boundary delegation between organizations. Each delegation must narrow the scope relative to its parent.