SOC 2

Security evidence from the agent personnel record.

ARX maps access, change, logging, and review controls from the actions digital employees take under supervision.

CC6

Logical access

Per-agent identity, scoped credentials, manager bindings, and revocation evidence.

CC7

System operations

Runtime verdicts, drift events, incident routing, and audit chain verification.

CC8

Change management

Approval diffs and manager decisions for high-risk writes.

CC9

Risk mitigation

Thresholds, suspensions, and termination attestations by cohort.