What is the AI Receipt Rail™?

AI Receipt Rail™ records the material steps of every AI-assisted workflow: actor, system, policy, model, location, approval, change, blocks, reason, outcome grade, and a cryptographic hash. It's the auditable proof trail that makes governed AI work defensible — built into GW Slate™.

What does a single receipt contain?

Each receipt records: actor identity (who started the run), system context, policy that applied, model used, region/location, approval chain, what changed, any blocks triggered, why the system made each decision, outcome grade, and a hash for tamper-evident verification.

Why do AI workflows need receipts?

Without receipts, AI output is just text — unauditable, undisputable, indefensible. The Receipt Rail turns AI work into business records: regulators, auditors, legal teams, and your own ops people can verify what happened, when, by which model, under which policy.

Capability · Receipt Rail

Receipts before trust.

Most AI work leaves no trace. A receipt rail records the material steps of an AI-assisted workflow so the work can be inspected, audited, and disputed later.

Get a receipt packet in 4 weeks How GW Slate seals receipts

Receipt· rcpt_8a31…f02

ALLOWED

Workflow: Localized launch copy → CMS
Actor identity: amy.l@acme (Brand Lead)
Agent identity: iris.meridian@gw
System touched: CMS · Contentful · prod
Policy pack: brand_v3.2 · launch_2026
Model / runtime: GW_Edge · local · sealed
Execution location: local · sealed
Input hash: sha256:0x71ac…8e
Output hash: sha256:0x9c12…44
Approval state: approved · amy.l
Outcome grade: A− · brand/locale/safety
Receipt hash: sha256:0xb91e…02af

Answer

What is an AI receipt rail?

An AI receipt rail records the material steps of an AI-assisted workflow: who or what acted, what system was touched, what policy applied, where inference ran, whether a human approved it, what changed, what was blocked, and what evidence can be inspected later.

What a receipt is for

Audit and compliance review.
Incident reconstruction.
Dispute resolution with clients.
Operational tuning.
Trust handshake between teams.
Provenance for published work.

Why proof

AI work without receipts is unreviewable.

You can't reconstruct a run.
Without receipts, post-incident review is forensic guesswork.
You can't prove approval.
Email threads and Slack messages aren't a chain of custody.
You can't prove what was blocked.
A clean run looks the same as a hidden retry.
You can't honor a client request to inspect.
Regulated and enterprise buyers expect to see the chain.

Receipt anatomy

The fields a real receipt carries.

Field	What it captures
Actor identity	The human or service account that initiated the run.
Agent identity	The agent or operator that executed the run (e.g., Iris Meridian).
System touched	The system of record changed or read (CMS, CRM, DAM, etc.).
Policy pack / version	The signed bundle of rules bound to the run.
Model / runtime	Which model and which runtime location handled inference.
Execution location	Local, hybrid, or cloud — proven, not asserted.
Input hash	Cryptographic hash of the input artifacts.
Output hash	Cryptographic hash of the produced artifacts.
Approval state	Who approved, when, and at which step.
Action allowed or blocked	Each material action recorded with verdict.
Reason code	Why an action was allowed or blocked.
Outcome grade	Brand / locale / safety / provenance grade.
Receipt hash	Hash that anchors the receipt for later inspection.

How receipts are sealed

The chain from run to receipt.

01STEP
Plan signed
Iris's run plan signed with operator identity.
02PASS
Policy pack bound
Pack hash recorded as part of the run.
03PASS
Inputs hashed
Input artifacts hashed before inference.
04PASS
Run logged
Each material step appended.
05GATE
Approval anchored
Human decision signed and timestamped.
06PASS
Outputs hashed
Output artifacts hashed before writeback.
07PASS
Grade attached
Outcome grade dimensions attached.
08PASS
Receipt sealed
Receipt hash anchors the chain.

Sample receipts

What allow, block, and partial look like.

Receipt· rcpt_8a31…f02

ALLOWED

Workflow: DE launch copy → CMS
Policy pack: brand_v3.2
Approval: amy.l
Outcome grade: A−

Receipt· rcpt_91f4…ca10

BLOCKED

Workflow: Outbound email → Send
Block reason: P-1 · unverified claim
Approval: no human in loop
Outcome grade: F

Receipt· rcpt_44b1…dd02

PARTIAL

Workflow: Quarterly report → BI
Approval: 1 of 2
Outcome grade: B+
Promote step: deferred · awaiting CFO

Why this rail

The receipt rail is a system, not a log file.

Inspectable later

Receipts are addressable, indexable, and queryable by workflow, system, policy, and approver.

Hash-anchored

Each receipt's hash anchors the chain. Tampering breaks the seal.

Policy-aware

Receipts know which policy pack version applied at runtime.

Approval-aware

Receipts record who approved which step and when.

Grade-aware

Receipts carry the outcome grade dimensions.

Revocation-aware

Receipts reflect revocation state at the time of the action.

Buyer-specific examples

Chief Information Security Officer

What does a receipt let me do that a log doesn't?

A receipt is a sealed, addressable artifact. It survives review. Logs decay; receipts hold up under audit, dispute, and incident reconstruction.

Faster post-incident reconstruction
Audit packets on demand
Hash-anchored evidence
Receipt feed into SIEM

Get a real receipt packet in four weeks.

The Receipt Rail Sprint binds one high-risk AI workflow end-to-end and delivers a sealed packet.

Start the receipt sprint See GW Slate

Keep reading

GW Slate

Where receipts are sealed.

Iris Meridian

Operator that produces receipts.

Governed Agentic Operations

Receipts at scale.

Governed Media Supply Chain

Receipts + C2PA provenance.