BLACKBOX
flight recorder for AI agents

SOC2 Compliance Narrative

✓ PASSTSC MAPPED
Automatically generated from immutable recorded evidence. Maps BLACKBOX capabilities to SOC2 Trust Service Criteria (TSC). Suitable for audit preparation.
BLACKBOX flight recorder provides cryptographic evidence for 37 AI agent runs (311 events) in scope. Chain integrity: 100.0%. Fault rate: 75.0%. All SOC2 TSC controls pass.
PASS
TRUST SERVICE CRITERIA
CC6.1✓ PASS
Logical and Physical Access Controls — all AI agent operations are authenticated via API key with role-based access (admin/agent/auditor).
DB-backed API keys with role enforcement active. 37 runs recorded under key authentication.
CC6.7✓ PASS
Transmission Integrity — every AI agent event is SHA-256 hash-chained; tampering is cryptographically detectable.
37/37 runs passed chain integrity verification (100.0%). Algorithm: sha256(prev_hash || canonical_json(event)).
CC7.2✓ PASS
System Monitoring — fault detection runs on every AI output; anomaly detection surfaces statistically unusual runs.
15 faults detected across 37 runs (fault rate 75.0%). Automated webhook and Slack alerting configured.
CC7.4✓ PASS
Incident Response — fault events are immutably logged with fault class, severity, and evidence; legal hold prevents deletion during investigation.
15 fault events logged immutably. 0 runs currently under legal hold.
CC9.2✓ PASS
Risk Mitigation — policy packs enforce output constraints; the upgrade regression harness validates model changes before promotion.
Policy decisions recorded across all runs. Champion-challenger testing available via /v1/challenge.
P4.2✓ PASS
Data Retention and Disposal — GDPR crypto-shred (right-to-erasure) appends a tombstone event preserving chain integrity while masking payloads.
0 runs have been crypto-shredded with auditable tombstone events.
A1.2✓ PASS
Availability and Capacity — daily Merkle anchors create external timestamp proofs; OpenTelemetry export enables integration with external observability platforms.
Daily anchor mechanism operational. OTel export endpoint available at /v1/runs/{id}/otel.
Generated at Thu, 18 Jun 2026 02:58:19 GMT · Evidence sourced from immutable hash-chained event log