Compliance overview
Yo there. here's the vibe check.
β
Orgβwide AI health
LIVE
β
interactions logged today
Threat
Analytics
Analytics
Verify a
Hash
Hash
0
Breaches stopped
0
Open alerts
β
Clean rate
β
Time to verdict
Verification card
tap to verify β»
audit health
β events
β’β’β’β’ β’β’β’β’ β’β’β’β’ β’β’β’β’FOXY
Quick hash check β local only
Recent ledger
view all
loadingβ¦
Active alerts
see all
loadingβ¦
Clean rateβ
Time to verdictβ
Quick actions
Policy rules
configure the AI Judge
Export
compliance passport pdf
API keys
manage tenants
Audit ledger
tamper-proof log
Security posture
Threat analytics.
unresolved alerts and weekly trend
β
Total logged
0
Breaches prevented
0
Active alerts
β
Clean rate
Active alerts
loadingβ¦
Activity β last 7 days
MonTueWedThuFriSatSun
No prompts stored
Audit ledger.
Only the verdict + a tamper-proof fingerprint of each interaction β never the raw prompt or response.
| tenant | hash | verdict | time |
|---|---|---|---|
| loading⦠| |||
Prove it
Verify a record.
Confirm any logged AI interaction is exactly as recorded β untampered.
Check a single record
raw prompt
raw response
timestamp
previous hash
ledger hash (to compare)
Verification card
quick lookup β»
tamper-proof fingerprint
paste any hash
to check status
to check status
β’β’β’β’ β’β’β’β’ β’β’β’β’ β’β’β’β’AUDIT
check a hash against the ledger
How the fingerprint works Β· advanced
Each record is sealed with a SHA-256 fingerprint of the one before it plus the prompt, response and time β so altering anything breaks the chain and is instantly detectable.
input = prev_hash + prompt + response + ts
hash = SHA256(UTF8(input))
isVerified = (local === ledger)
hash = SHA256(UTF8(input))
isVerified = (local === ledger)
Check the whole ledger
One click re-checks every record on the server and flags any tampering.
AI Judge
Policy ruleset.
what the Judge flags or blocks across your workspace
Content safeguards
Block PII β names, SSNs, emails
Judge rejects prompts/responses with detectable personal identifiers
high severityFlag prompt injections
marks jailbreak and indirect injection attempts for review
high severityRegulated data mode β HIPAA / financial
stricter grading for regulated workloads (PHI, cardholder, account data)
medium severityJudge sensitivity
max tokens per interaction
enforcement mode
confidence threshold
notification on breach
These preferences are saved to your workspace as part of your compliance policy. Foxy Audit stores only a tamper-proof hash and the verdict of each interaction β never the raw prompt or response. See our Privacy Policy for how your data is handled.
Tamper-evident proof
Compliance passport.
export for clients, auditors, and legal
Report configuration
only verdicts and hashes are included β raw prompts and responses are never exported
from
to
tenant scope
format
Chain metadata
recordsβ
chain integrity100% β no gaps
chain headβ
org idβ
anchor SLAβ
Passports are generated on demand and open in a new tab β the server doesn't keep a download archive.
Access control
API keys & tenants.
connect, rotate, or revoke per developer or service
each key maps to one developer or service Β· keys authenticate SDK writes via POST /v1/logs/batch
Plan & consumption Β· β
Usage & billing.
daily rollups from the audit ledger Β· invoices synced from Stripe
β
Logs this month
β
Monthly quota
β
Remaining
β
Tokens Β· 30d
Daily usage β last 30 days
Quota headroomβ
| day | logs | tokens | breaches |
|---|---|---|---|
| loading⦠| |||
Invoice history
| date | amount | status | period |
|---|---|---|---|
| loading⦠| |||
Preferences
Settings.
Account
email
role
org id
Change password
current password
new password
Notifications
Breach alerts
immediate notice on every breach verdict
Weekly digest
summary of activity every Monday
Key rotation reminders
nudge after 90 days unrotated
Access control
Restrict dashboard access to specific IPs / CIDRs (comma-separated). Blank = allow all. Include your own IP or you'll lock yourself out.
Recent logins
Trust badge
Embed a live, public βaudited by Foxyβ badge on your site. It shows aggregate status only β verified state, audited count, last-anchor freshness β never your logs or workspace id.
Help & support
Questions, a bug, or help getting set up? We read every message.
Email support
Contact form
Danger zone