SNAPOS.ORGONLINE
|
FRAMEWORKDIP-CORE-1.0
|
EU AI OFFICE510c3274
MANDATE INTEGRITYPROTOCOL ACTIVE
|
AUDIT@SNAPOS.ORG
ORCID0009-0000-6493-4599 · Marko Chalupa
ZENODODOI-registered publications · Open access
EU AI OFFICEExpert Forum · Contribution ID 510c3274
IT-SCHNITTSTELLEGovernance audit practice · DE
UNITED CODING20+ years production delivery
Applications

The missing control layer
for execution legitimacy.

Every system has monitoring. Every system has compliance. No standard currently defines a control layer that verifies whether execution is still legitimate. That is the gap Decision Integrity fills.

View Documented Cases → Run Decision Audit ↗ Speak with an Auditor
Financial systems and trading

Execution can remain correct while its authorization has already expired.

Trading systems, credit engines, and automated financial decisions operate under mandates that were valid at deployment. Conditions change. Market structure shifts. Regulatory context evolves. The system is not notified. Execution continues.

Monitoring detects anomalies. Compliance verifies rules. Neither asks whether the mandate authorizing the execution is still valid.

Knight Capital: $440M in 45 minutes. Everything worked. That was the problem.

What Decision Integrity detects here
Mandate expiry without system notification
The authorization basis has changed but no re-validation has been triggered. DASR measures drift magnitude and velocity.
Authority operating beyond original scope
DIP enforces scope gates. Expansion beyond the defined mandate triggers re-legitimation, not silent continuation.
Evidence-free continuation
DCF requires Authority Closure, Assumption Closure, and Evidence Closure to hold continuously — not just at approval time.
High-risk AI under EU AI Act

Article 9 and 17 require more than documentation. They require continuity.

EU AI Act high-risk systems must demonstrate that human oversight remains effective, that re-evaluation is triggered when conditions change, and that systems do not continue operating under expired authorizations.

Decision Integrity provides the protocol layer that makes these requirements operationally enforceable — not just documentable.

GCCL v0.1 submitted to EU AI Office Expert Forum as candidate governance standard. Contribution ID: 510c3274.

What Decision Integrity detects here
Policy binding and witness tuples for every decision
DIP enforces that every execution is bound to a valid policy with a traceable witness chain. No witness — no execution.
Re-legitimation triggers under Article 9
When system conditions change — data distribution, deployment context, regulatory update — DCF triggers re-evaluation before continuation.
Mandate-state alignment for lending and credit
Credit scoring and lending decisions must remain within the authority boundaries of their approval. DASR detects when they drift.
Automated customer decision systems

Scope creep without re-legitimation is authority drift.

Customer service AI, automated support systems, and interaction engines operate under defined scope boundaries. As usage patterns evolve, those boundaries are tested. Without a mechanism to detect when the system has moved beyond its authorized scope, continuation is illegitimate — even if every individual output is technically correct.

Klarna: Rule compliance = 1. Mandate integrity = 0.

What Decision Integrity detects here
Scope gates and mandate continuity
DIP enforces that every interaction remains within the authorized operational scope. Scope expansion requires explicit re-legitimation.
Quality commitment drift
Commitments made at deployment — response quality, coverage, accuracy — are tracked as mandate conditions, not just monitored as performance metrics.
Silent drift before visible failure
DASR detects drift accumulation before it produces measurable output degradation. The point of intervention is at T₁, not T₃.
Three ways to start
DASR

30-Day Mandate Drift Assessment

A structured 30-day audit that measures how far your system has drifted from its authorized mandate. Delivers Drift Magnitude, Drift Velocity, and Cumulative Exposure as audit-grade metrics. Designed for systems where compliance dashboards show green but mandate alignment is uncertain.

DRIFTBENCH

Sealed Legitimacy Evaluation

Run DriftBench against your own model endpoint. Policy binding, witness tuples, scope gates, fail-closed behavior evaluation. No data leaves your environment. Findings in PDF and JSON. The fastest way to establish a decision legitimacy baseline.

Authority and research credentials
ORCID — Research Identity
0009-0000-6493-4599
Persistent identifier linking all SnapOS publications and framework specifications
Zenodo — DOI-Registered Publications
10 publications · Open access
DCF, DASR, GCCL, SSE, DIP, Output-Only Diagnostics and more — all citable, all timestamped
EU AI Office — Expert Forum
Contribution ID 510c3274
GCCL v0.1 submitted as candidate governance standard for AI capability and compliance assessment
United Coding GmbH & Co. KG
20+ years production delivery
Decision Integrity did not emerge from theory — it emerged from production systems that continued after their conditions changed
IT-Schnittstelle GmbH
Governance audit practice · DE
German-language governance audit and decision architecture practice for regulated organizations
LinkedIn — Marko Chalupa
CTO & AI Architect
Mühltal / Darmstadt · United Coding GmbH & Co. KG · SnapOS Foundation

Assess decision legitimacy in your system.

DriftBench runs a sealed evaluation: policy binding, witness tuples, scope gates, fail-closed behavior. Against your model endpoint. No data leaves your environment.

Run a Decision Audit ↗