P2 · Verifiable AI

Prove AI model integrity across version changes, retroactively.

Hide the model internals, parameters and training data
Prove the same decision before and after a model change (or the diff)

When you update an AI model (v3.5 → v4.0, etc.), you want to verify later whether past decisions are reproducible or whether results change. Lemma commits each point-in-time modelId and policyHash at decision time, keeping past decision logic cryptographically traceable even after the model updates.

Finance / FinTech · AI adoption (cross-industry) · AI governance 2 min read
live in production since 2025 · Public-infrastructure PoC in production · ETHGlobal AI Agents 2026 Finalist
01 · THE PROBLEM

Three voices from the front line.

  • AI engineering / operations

    “After a model update, we end up needing to reproduce and verify past decisions retroactively”

  • Audit / regulatory

    “We want to prove we ran "that policy" on "that model" at the time”

  • Legal

    “We want to clarify accountability for past AI decisions after the fact”

02 · THE SHIFT

Hand over the source, or just the facts?

Change what reaches the AI, and the leakage risk goes with it.

Without Lemma
Hand over the original
decision_id:
D-001
model:
claude-3.7-sonnet
old_model:
gpt-4-turbo
policy:
? (unknown at the time)
output:
approved
↓ all of it goes to the AI / outside
With Lemma
Hand over just the facts
agent:
did:lemma:agent-decision-001
modelId:
claude-3.7-sonnet@2024-08-15
policyHash:
0x71c5…
inputCommitment:
0xb4e2…
outputCommitment:
approved
satisfiesPolicy:
true
recordedAt:
2024-08-15T10:23:00Z
ZK verified:
✓ VALID
↓ only the necessary facts to the AI

At the moment of decision, modelId@timestamp and policyHash are pinned and committed together with the input/output commitments and satisfiesPolicy. This record stays immutable even after the model updates, so past decisions can be verified retroactively against "that model, that policy." Without disclosing model internals or parameters, the integrity of a decision can be independently shown.

See the technical details ↗
03 · HOW TO CHOOSE

Choose on three criteria.

Only work that needs all three at once — pass without exposing, independent verification, tamper-proof — is Lemma's domain.

Method Pass without exposing Independent verification Tamper-proof
Access control only
Masking / anonymization
Encryption only
Lemma (ZK proof)the only one with all 3
04 · HOW IT WORKS

What's next

We enter through version-pinning schema design and a PoC, and stay alongside you through to operations.

  1. A 30-minute review — identify the AI systems and decision types where a model change is expected.
  2. Design the version-pinning schema — define the modelId@timestamp + policyHash combination.
  3. Connect proof issuance at decision time — attach a commitment to every AI inference result.
  4. Prove one system via a PoC — roll out to one decision flow in 4 weeks, confirming retroactive verification after a model update.
  5. Hands-on support through operations — existing plan tiers (Civic / Critical / Compliance) serve only as a cost reference; the setup and pricing are designed together.

Tell us one AI system worried about explaining past decisions after a model update, in the first 30 minutes. No disclosure of model internals required.

05 · RELATED

Related use cases

Still have questions? See the FAQ →

The bigger picture

The bigger picture this use case belongs to.

We map use scenarios across industries and workflows by the four axes.

See use scenarios for Verifiable AI in Solutions →

TRY LEMMA

Run it yourself.

No sales call needed — start hands-on with Lemma's products.

Try Seal → Trust402 reference implementation →