Pilot AqtaCore
Pilot signed AI receipts in one regulated use case
Evaluate provable AI governance in one regulated workflow before rolling it out across your organisation.
Built for public healthcare systems, Irish private healthcare networks, EU hospitals, and Eurozone tier-2 banks running first AI deployments. We add auditability without replacing your existing models or tools.
Mapped to DORA Art. 28, MiFID II Art. 16(7), NIS2 Art. 21, and EU AI Act Arts. 12 + 14 under the Digital Omnibus phased rollout.
Privacy guarantee
Our proxy operates inline before actions execute and returns cryptographic receipts immediately. Prompts and responses pass through and are not retained. SHA-256 hashes and signed metadata are stored per your retention tier.
Integration
One line of code, no model swap. Your existing stack stays in place; AqtaCore sits inline as the gateway.
Sandboxed Pilot
Test cryptographic attestation, policy enforcement, and signed evidence in a sandbox before committing to production.
What you get
- ✓Signed receipts on every AI call in your sandbox
- ✓Custom runtime policy checks enforced
- ✓Cost and performance baseline against your current stack
- ✓Go / no-go deployment recommendation
Best for
Innovation, security, or compliance teams validating one production-adjacent use case.
We reply within two business days. Pilots run four to six weeks. Sandboxed pilot is free; production deployment pricing on request.
Already vetted us? Read the Aqta trust centre for sub-processors, security posture, and the procurement pack.
How a decision becomes a signed receipt
Your agent acts
A model decides, approves, denies, or routes a step.
Aqta seals it
Decision, policy outcome and context are signed in place.
Auditor confirms
Anyone with the receipt can check it is real without calling us.
Signed at runtime. Verifiable offline. One receipt per decision.
What a pilot includes
- ScopeOne use case, one workflow, success criteria agreed in writing. Week 1: two to three hours of your team's time for the scope call and written brief.
- IntegrateYour sandbox routed through the AqtaCore gateway. One line of code, no model swap. Week 2: one to two hours with one engineer.
- EvaluateSigned traffic through the gateway, policy tuning as you go. Weeks 2 to 5: a weekly 30-minute check-in.
- DecideFinal report: receipts archive, cost and performance baseline, go / no-go recommendation with a production deployment plan if green. Week 6: one hour for the report review.
How AqtaCore sits next to existing categories
| Cloud audit logs | Governance dashboards | AqtaCore receipts | |
|---|---|---|---|
| Cross-provider | |||
| Spans AWS + GCP + on-prem in one chain | – | ~ | ✓ |
| Pre-execution | |||
| Decision recorded before the action runs | – | – | ✓ |
| Regulator-shaped | |||
| ATTESTATION-v1 + offline verifier | – | – | open spec |
| Bank-portable | |||
| Receipts move out with the customer | – | – | signed + chained |
Legend: ✓ fully supported · ~ partial / vendor-specific · – not supported
Other ways to engage
Read ATTESTATION-v1, run a reference verifier offline, evaluate the format before talking to us. Apache 2.0 plus CC BY 4.0.
Read the specSingle-tenant deployment in your AWS or GCP region, custom PKI, post-quantum hybrid signatures, contractual SLA on request. After the pilot, or instead of it.
None of these documents are publicly downloadable. They are sent direct to your inbox so we can record what was shared, with whom, and on what date. Standard SLA is one business day; the three scoped artefacts (BCM/DR, InfoSec, SIG/CAIQ-lite) may need clarifying questions about cloud and processing scope before we send. Use the procurement request form for the on-record path, or email legal@aqta.ai directly.