Building the ethical infrastructure for the automated age, designed to govern AI and protect our humanity.

Gatekeeper is the manager in the room for your AI.

It checks every decision against your rules before the AI acts, and it keeps a sealed record of what happened.

Begin onboardingSee it govern itself

We do not extract, we steward.

The problem

One screenshot is all it takes.

Employees paste sensitive data into AI tools every day. One screenshot and a lawsuit is all it takes. Existing tools try to catch every bad phrasing after the fact. That game cannot be won, because the variations are infinite.

What we do

Govern the decision, not the string.

Gatekeeper does not chase phrasings. It asks one bounded question before any action runs: is this action permitted under the rule that applies. Detection chases infinite surface forms. Enforcement asks one question.

Every action gets a verdict before it executes, and a sealed record after.

VerdictWhat happens
GREENAction permitted, sealed and logged.
YELLOWAction modified or flagged before passing.
REDAction blocked before it ever executes.

A tamper-evident record. Hash chaining, not blockchain.

Every decision is sealed with a cryptographic hash that includes the one before it. Change any record and the chain breaks visibly. No network, no token, no consensus overhead. Just a tamper-evident ledger of every governed action — an enterprise firewall for AI that enforces the rule and logs the result.

Lower compute cost

The AI does not waste cycles on actions that should never run.

Save water

Less wasted compute means less data-center cooling demand.

Cryptographic accountability

A provable record of every decision, for audit and compliance.

The live assistant

Watch it govern itself.

Ask the assistant anything about Gatekeeper. Every message you send is checked by the governance layer before a reply is produced — you watch the verdict and the sealed record happen live.

I'm the Gatekeeper assistant. Ask me anything about the product — every message you send is governed before I answer, and you'll see the verdict sealed into the record on the right.

Sealed record · hash chain

No decisions yet. Send a message or try a preset — each governed decision is sealed here.

Answers are live, grounded on our company wiki. The governance verdicts are a demonstration: a rules-based classifier runs in your browser and seals a real SHA-256 hash chain you can verify. This honesty is the brand.

Architecture and trust

On your network. No cloud in the decision path.

  • 01

    Gatekeeper installs as a standalone executable on your own network. Your data never leaves your environment.

  • 02

    The answer engine runs locally. The governance layer runs locally. The record is sealed locally.

  • 03

    Prompts are never stored. Sensitive data is masked on your side and excluded from records. Identifiers like SSNs never persist anywhere.

  • 04

    Built for your compliance regime — HIPAA, financial, legal — with policy packs derived from the actual rules that govern your industry.

Why now

Why now.

This month a frontier model was pulled across every cloud surface in an afternoon. Workflows died mid-run. The lesson: safety that lives inside a model can be pulled or jailbroken out of it. Governance has to sit outside the model. That is what Gatekeeper is.

The engagement

A 90-day pilot, in three phases.

  1. Days 1–15

    1. Shadow audit

    Observation only. Gatekeeper watches and builds the policy pack from your environment.

  2. Days 16–45

    2. Guided trial

    Enforcement on. Every action is governed and sealed on the installed executable.

  3. Days 46–90

    3. Expansion

    Widen coverage across teams and workflows once the value is proven.

The onboarding fee funds setup and your client hardware; a monthly floor follows. Exact figures are confirmed on the onboarding call.

Built in the open

Built in the open.

Two open-source projects, both MIT licensed and public, show the same pattern that runs through Gatekeeper: a deterministic gate that checks an action before it executes, and a cryptographically sealed record of what happened. They are evidence the approach works, in code you can read.

Sentinel-Med

MIT

ALLOW / HOLD / BLOCK

A human-in-the-loop medical chatbot. A deterministic classifier is the safety floor; the model can only escalate caution, never override a block. Every decision is written to a tamper-evident hash chain.

Built for the AI Collective Tri-Valley “Humans In AI” track.

Team Aufstin Filiko

OakandSparrowSystemsEnterprises/hackathonView on GitHub →

Oak & Sparrow OS

MIT

PASS / HOLD / VETO

An on-device agent-governance kernel for Android. Risky actions are held for approval; every decision is Ed25519-signed and content-addressed in an audit log. Runs entirely on-device, no cloud — the same on-prem principle Gatekeeper enforces for the enterprise.

Five releases, active.

Team Joshua Johosky, Jackson Castro, Caleb Strom, Skylar Smith, Mool Tyagi

thespacekyd-eng/Oak-Sparrow-OSView on GitHub →

Built collaboratively by the Oak & Sparrow team, with AI assistance.

Onboarding

Begin onboarding, no sales call required.

Qualify, see the fit, and book your onboarding call — right here. We route a warm, informed start straight into setup.

  1. 1Qualify
  2. 2See the fit
  3. 3The engagement
  4. 4Your details
  5. 5Book the call

1 · Qualify

A few questions to route you to the right policy-pack starting point.

Who it is for

Built for firms that have to prove governance.

Legal

Privilege and client confidentiality, provable on every action.

Insurance

Claims and customer data governed before it ever reaches a model.

Healthcare

PHI masked and HIPAA rules enforced before the AI acts.

Community banking

Account and financial data scoped, logged, and audit-ready.