The problem
An AI agent and your customer look identical to your platform. The agent signs in with your customer's login and acts. Your systems can't tell the two apart, so you can't prove who was really behind an action. When a charge is disputed — "I never authorised that" — you have no record that the customer instructed their agent, or what limits they set on it.
Only about 1 in 5 disputed charges resolve in the platform's favour today — and that's before agents make actions harder to recognise and easier to deny.
Three things you can't prove today
- No way to tell the agent from the human. The agent borrows your customer's login. To you, it's indistinguishable from the real person sitting at the keyboard.
- No proof the customer ever said yes. Nothing records that the human instructed the agent, or what limits they set. In a dispute, that's your word against theirs.
- No trail you can actually trust. Actions sit in an ordinary database. Anyone with access can quietly rewrite the history, so even your own logs don't settle the question.
What HAIL gives you
- Tie every agent to a real person. Your customer explicitly links the agents acting for them to their own verified identity. No more anonymous logins — every agent has a human behind it.
- Let customers set the rules. Spending caps, time windows, what an agent is and isn't allowed to do — set by the customer, enforced automatically before any action goes through.
- A record no one can fake. Every action is written to a tamper-proof log. When a dispute comes, you export one file that proves the customer authorised it and that nothing was altered.
How it works
You integrate one SDK. Everything below happens in the background, in well under a second, on every agent action.
- Customer authorises their agent. Once, with a passkey on their own device, the customer links their AI agent to their verified identity and sets what it's allowed to do (e.g. spend up to €500/week, travel and checkout only, expires in 7 days).
- The agent asks before it acts. When the agent wants to do something, it sends its signed intention to HAIL first — it can't be faked.
- HAIL runs the checks and records them. HAIL verifies the agent is who it claims, that the customer authorised it, and that the action sits inside the customer's limits. Then it writes the whole thing to a record that can't be edited.
- You get a clear pass or fail. Proceed automatically when it passes — knowing the human is on record — or stop it cold when it doesn't.
The dispute bundle: one file, five proofs
When a charge is questioned, you export a single file (dispute_bundle.json, ~4 KB). It settles the entire question on its own — no calling HAIL, no special tools.
- The customer authorised this specific agent
- The agent had exactly these permissions, no more
- The agent performed this exact action
- Your platform didn't alter anything
- The record is permanent and can't be rewritten
Verifiable by anyone, even without HAIL.
Who it's for
Any platform where an AI agent's action creates real liability:
- E-commerce and travel — where an agent's purchase creates a real bill
- Legal SaaS — where agents file documents or execute agreements on a client's behalf
- Healthcare platforms — where agents book procedures or request prescriptions for patients
- Fintechs and banks — subject to strict rules on automated decisions and AI-agent liability
Technical foundations
- Identity: Ed25519 keypairs — human, agent, and server each hold their own cryptographic key
- Delegation: Signed UCAN tokens — grants specific powers (spend caps, time limits, allowlists) enforced by cryptography, not policy
- Audit log: Hash-chained and Merkle-anchored — alter one entry and every later hash breaks
- Offline-verifiable: Dispute bundles check out cryptographically with no dependency on HAIL being online
- Deployment: SaaS or self-hosted — data residency solved on day one with self-hosting
- Compliance: EBA Art. 28 and GDPR-ready
How to deploy
- HAIL Cloud (SaaS): We run HAIL for you. Integrate one SDK and we handle hosting, scaling, and uptime — live in a day.
- Self-hosted: Deploy HAIL inside your environment when data residency or compliance demands it. Transaction data never leaves you.
Get access
We're onboarding our first platform design partners now. Working hands-on with early adopters.
- Live in a day with one SDK
- SaaS or self-hosted
- Talk to a founder, not a form
Email: team@hail-agent.com · Website: hail-agent.com