MiCA Art. 68 is in effect — since July 1, 2026

Your AI agents are moving money.
Who enforces the rules?

Intaglio enforces financial policy on every agent action — before the transaction happens. APPROVE, DENY, or escalate — deterministic policy evaluation in under a millisecond. Solana-anchored. MiCA Art. 68 ready. Open source.

APPROVEa3f8c291...e4d7b2f00.09mschain #47OFAC SDN screening
<1msin-process policy eval
100%deterministic — no LLM in path
Solanatamper-proof audit anchor
POST /api/enforce
{
  "outcome":          "APPROVE",
  "enforcement_ms":   0.09,
  "hash":             "sha256:a3f8c291...e4d7b2f0",
  "solana_tx":        "2zyMNt1H...jb4Em",
  "risk_level":       "low",
  "policy_found":     true
}
Decision hash-chained & anchored to Solana — regulator-verifiable forever

Drag the slider. Watch the policy decide.

APL evaluates in-process — no network call. Every outcome is hash-chained and optionally anchored to Solana devnet.

Live policy evaluationreal-time
2,500 USDC
$0$5k$10k$20k
APPROVE
reasonWithin policy limits
eval_ms— ms
hashsha256:bf67e9cb…
solana_txin-browser demo — not anchored
Against treasury-agent.apl v1.0.0
Data flow
AI Agentspend 2,500 USDCenforceAPL Engineevaluate policy<10msdecisionAPPROVEhash-chainedSolana Anchordevnet memo

This demo runs entirely in your browser. In production, every decision — APPROVE, DENY, or REVIEW — is hash-chained and anchored to Solana devnet.

Milliseconds between your agent and a compliance disaster.

Every financial decision passes through this stack. In order. Deterministically.

01
AI Agent

Tries to send USDC, call a DeFi protocol, or pay an HTTP 402 invoice.

<10ms
02
APL Engine

Evaluates the .apl policy file. No LLM. No network call. Pure deterministic evaluation in <10ms.

+0ms
03
Decision + Hash

APPROVE / DENY / REQUIRE_APPROVAL returned. SHA-256 hash chains to the previous decision. Tamper-proof sequence.

+400ms
04
Solana Anchor

Decisions are written to the Solana Memo program asynchronously. $0.00025 per anchor. 400ms finality. Tamper-evident, independently verifiable.

Total: APL eval + network overhead = <300ms. Solana anchor is async — never blocks the agent.

What happens without Intaglio.

These are the failure modes of autonomous agents that move money without an enforcement layer.

Sanctions enforcement
Without Intaglio

AI agent routes a $47,000 transfer to a newly-sanctioned wallet. Transaction confirms. OFAC fine follows.

With Intaglio

Intaglio evaluates the destination against the sanctions list before execution. DENY returned in 11ms. Transfer never happens.

Risk limits
Without Intaglio

DeFi agent opens a 50x leveraged position because the LLM interpreted 'maximize yield' too aggressively.

With Intaglio

Policy file says max_leverage: 10. Intaglio returns DENY before the instruction reaches the protocol. Max loss: zero.

MiCA Art. 68 audit trail
Without Intaglio

EU regulator requests 2-year audit log of all AI financial decisions. You reconstruct from scattered database tables that could have been altered.

With Intaglio

Every decision is hash-chained and anchored to Solana. Regulator-verifiable, tamper-proof, exportable to PDF in one click.

Human-in-the-loop
Without Intaglio

AI payroll agent processes 300 contractor payments overnight. One contains a typo in the amount field. $300,000 instead of $3,000.

With Intaglio

Policy says REQUIRE_APPROVAL for any single payment above $50,000. Human reviews. Catches the error. $297,000 saved.

Three steps between your agent and a compliance failure.

01

Write policy

Author an .apl file declaring allowed rails, spend limits, approval thresholds, and logging obligations. Human-readable. Auditor-verifiable.

02

Engine enforces

Before every agent financial action, Intaglio returns APPROVE, DENY, or REQUIRE_APPROVAL in <300ms. No LLM in the enforcement path. Deterministic.

03

Solana anchors

Every decision is hash-chained and its signature anchored to Solana. Tamper-proof. Regulator-verifiable. Exportable to PDF in one click.

For Individuals

Protect your wallet from your AI

Connect your wallet. Set limits in 60 seconds. Your AI can never spend beyond what you allow. Get started free →

Human-readable.
Auditor-verifiable.

APL (Agent Policy Language) is an open specification for declaring what an AI agent is and is not allowed to do with money. Write it once. Attach it to any agent framework. Every decision is evaluated deterministically — no LLM interpretation, no prompt injection risk.

  • Spend limits per transaction, per day, per month
  • OFAC sanctions check on every destination address
  • Human approval threshold with documented workflow
  • Obligation block maps directly to MiCA Art. 68 requirements
Read the full spec →
treasury-agent.apl
policy treasury-agent v1.0.0
agent  treasury-bot-01
operator acme-gmbh

scope {
  rails      [x402 solana-pay]
  currencies [USDC USDT]
}

limit {
    per_transaction { value 10000 currency USDC }
    per_day         { value 50000 currency USDC }
  }

  require {
    human_approval_above { value 5000  currency USDC }
  deny_if_sanctioned   true
  deny_if_destination  NOT_IN whitelist.json
}

obligation {
  log_to    solana:devnet
  retention 7y
  # MiCA Art. 68 — immutable audit trail requirement
}

Every alternative has a critical gap.

The compliance layer every AI agent runs on. Not a guardrail. Not a wallet. The enforcement layer. None of them enforce policy before execution with an auditable open standard.

LangChainCritical gap

Observable, not enforceable. Has no deny() primitive. If the LLM decides to send $500k to a blacklisted address, LangChain executes it.

OpenAI Agents SDKCritical gap

Policy is your system prompt. Prompt injection bypasses every rule. Your compliance officer cannot audit a system prompt.

Guardrails AICritical gap

Built for content moderation, not treasury operations. Zero financial transaction logic. No APPROVE/DENY for monetary transfers.

Coinbase AgentKitCritical gap

Gives AI agents the keys to your wallet. Policy enforcement is explicitly out of scope. Spending limits are your problem.

Cequence SecurityCritical gap

Enterprise API gateway — Agent Personas launched Apr 28 2026. Plain-English rules map to tool-level permissions. No on-chain audit. No open spec. No MiCA. Enterprise-only pricing.

ZenityCritical gap

Gartner 'Company to Beat' for AI governance. Strong observability — discovers shadow AI agents across your org. No financial transaction enforcement. No Solana. No open APL spec. Requires enterprise contract.

Microsoft Agent Governance ToolkitCritical gap

Open-source, OWASP 10/10 coverage, <0.1ms enforcement. Strong general governance. No on-chain audit — tamper-evident requires trusting Microsoft's infrastructure. No MiCA-specific compliance. No financial transaction logic.

Stripe (Sessions 2026)Critical gap

Issues agents a card with a spend cap. No pre-execution semantic policy — structural controls only (MCC blocks, spend limits set at provisioning). No per-action OFAC screening: sanctions check is account-level only. Agent guardrails: Q4 2026 private preview, not shipped. Compliance audit = transaction log, not policy decision record. No MiCA Art. 68. No open spec auditors can read.

IntaglioEnforcement layer

Open APL spec (CC-BY-4.0). Deterministic enforcement before execution. Solana-anchored audit trail — no trust required, regulator-verifiable forever. MiCA Art. 68 templates included. Free self-hosted tier.

MiCA Art. 68 enforcement begins June 30, 2026.

Every AI agent operator processing financial transactions in Europe is affected. Intaglio is the only open-standard solution that addresses these requirements today.

RequirementIntaglioAlternatives
MiCA Art. 68 — AI decision audit trail✓ Yes✗ No
EU AI Act Art. 12 — high-risk system logging✓ Yes✗ No
DORA — financial system resilience records✓ Yes✗ No
OFAC sanctions list enforcement✓ Yes✗ No
Tamper-proof on-chain record✓ Yes✗ No
Open standard (auditor-readable policy)✓ Yes✗ No
Deterministic (no LLM in enforcement path)✓ Yes✗ No
Human approval workflow✓ Yes✗ No

Why Solana is the only viable chain for compliance at scale.

Every Intaglio decision is anchored to Solana devnet. Here is why that choice is not arbitrary.

400ms
Block finality

Ethereum takes 12-15 seconds. Bitcoin 60 minutes. A compliance anchor in 400ms adds zero operational latency. Banks cannot afford compliance bottlenecks.

$0.00025
Per anchor transaction

Ethereum costs $2-5 per transaction. At 1M decisions/day, Ethereum would cost $2-5M daily. Solana costs $250. The economics make every other chain unviable.

Permanent
Vendor-independent record

If Intaglio shuts down, every Solana transaction still exists. Your regulator can verify audit records forever, without trusting Intaglio. No other off-chain log offers this.

Public
Regulator-verifiable

Any regulator — FINMA, BaFin, FMA — can independently verify a Solana transaction with a block explorer. No API access required. No trust required.

MiCA Art. 68 requires audit records to be "tamper-evident." A database log that Intaglio controls is not tamper-evident — we can edit it. A Solana transaction that no one controls IS tamper-evident — cryptographically guaranteed. This is why blockchain is not optional for MiCA compliance. It is the compliance mechanism.

Every x402 payment. Policy-checked first.

x402 is the HTTP payment protocol for AI agents. Without enforcement, your agent pays any HTTP 402 request automatically — no questions asked. Intaglio wraps x402: the policy check runs before any payment executes — in-process APL eval in <10ms, under 300ms end-to-end.

Without Intaglio

// Agent pays automatically
// No policy check
// No audit trail
// No human override
const result = await x402.pay(invoice)
// ← could be $50,000
// ← could be sanctioned wallet
// ← could be fraud

With Intaglio

// Policy check runs first (<10ms)
// Only pays if policy says APPROVE
const decision = await intaglio.enforce({
  amount: invoice.amount,
  destination: invoice.payTo,
})
if (decision.outcome === 'APPROVE') {
  await x402.pay(invoice) // ← safe
}
// DENY = blocked + hash-anchored
// REQUIRE_APPROVAL = queued for human

<10ms

Enforcement latency

does not slow x402 flow

100%

Payment blocked

when policy says DENY

Every payment

Audit record

hash-anchored to Solana

Pricing

Start free. Scale by decision volume.

Every plan includes the APL engine, hash-chained audit records, and the operator dashboard.

Free

$0/month

Try Intaglio. No credit card.

  • 1 agent
  • 100 decisions/month
  • Basic audit trail
  • JSON policy engine
  • Community support
Start free
MOST POPULAR

Starter

$49/month

For teams shipping AI agents.

  • 5 agents
  • 1,000 decisions/month
  • Solana-anchored records
  • OFAC sanctions screening
  • Audit export + webhook alerts
Contact us

Pro

$199/month

For growing agent fleets.

  • 25 agents
  • 10,000 decisions/month
  • MiCA audit export
  • SIEM / Slack integration
  • Priority support, 4h SLA
Contact us

Enterprise

Custom decision volume, VPC / on-premise deploy, custom compliance modules, dedicated support.

Contact sales

Built for the long arc of AI agent regulation.

v0.1
Live today

APL engine (MIT), hash-chain audit, operator dashboard, Solana devnet anchoring.

v0.2
May 2026

PDF audit export, MiCA Art. 68 templates, webhook notifications, Slack integration.

v0.3
Q3 2026

Multi-rail support (x402, MPP, AP2), team RBAC, sanctions list auto-update.

v1.0
2027

Standards body donation, third-party audit, ISO 42001 mapping, mainnet anchoring.

We are building the spec, not the moat.

  • The APL language spec is CC-BY-4.0. Perpetually.
  • We will never ship a closed extension that creates lock-in.
  • At v1.0 we donate the spec to a neutral standards body.

Your next AI agent deployment needs a compliance layer.

Try the live demo. Read the spec. Deploy in 10 minutes.