Skip to main content

Audit Chain

Every request and response is sealed in a tamper-proof hash chain — like a blockchain for your LLM calls.

How it works

Every request and response is cryptographically sealed and chained to the previous entry. Tampering with any record breaks the chain — detectable immediately by Autrace or by your auditors during export.

Exporting for SOC 2

Dashboard → LogsExport downloads a JSON file with the full chain, suitable for SOC 2 auditors.

The export includes:

  • Timestamps (UTC)
  • Redacted prompts (PII-safe)
  • Response hashes
  • Model, tokens, latency
  • Policy rule evaluations
  • Chain verification status

Verifying the chain

curl https://gateway.autraceai.com/api/v1/usage/verify-chain \
-H "Authorization: Bearer aut_live_YOUR_KEY"

# Response: { "valid": true, "entries": 1234, "broken_at": null }