SmartInsights.CortexOS is integrating with Humanos so relevant legally consequential actions an agent takes are verified, and proved, before execution.
SmartInsights.CortexOS is the governance-first agentic operating system for regulated industries. Humanos integrates as its external mandate verifier, branded GuardianShield Consent: the layer that lets a SmartInsights.CortexOS agent prove a human authorized an action, to any party.
SmartInsights.CortexOS orchestrates multi-agent teams, called Pelotons, inside enterprise workflows: onboarding, dispute resolution, claims, KYC, attestations. Governance is enforced at the infrastructure boundary, not inside a prompt. Every action passes an 18-stage tool gateway and is recorded in a hash-chained, tamper-evident audit trail.
Inside SmartInsights.CortexOS, the human-in-the-loop (HITL) engine holds legally consequential actions at an approval gate. For the defined class where the approving party is external, or the proof must be independently verifiable, it calls Humanos. GuardianShield, the governance and audit plane, records and proves it — branded inside CortexOS as GuardianShield Consent.
Explore SmartInsights.CortexOS at datawhisper.co.uk.
GuardianShield Consent does not replace the SmartInsights.CortexOS internal HITL model. Most approvals, escalations and operator overrides resolve inside SmartInsights.CortexOS, with no external dependency and no added latency. Humanos is invoked only when the proof must survive outside DataWhisper’s systems, or the approving party is external. If internal governance is sufficient, the external call never happens.
Before a legally consequential action commits, the SmartInsights.CortexOS HITL engine calls humanos.verify(). Identity, scope, counterparty, amount and validity are checked against a signed mandate, and a deterministic allow or deny is returned. No LLM sits in the verification path.
Within mandate, within constraints, within validity. SmartInsights.CortexOS writes the resolution to the case of record, and a portable proof is attached, verifiable by any party with the right access.
Out of scope, expired or revoked. The HITL engine requests step-up approval in real time, the mandate is updated, and execution resumes once authorization is valid. The agent never silently fails or guesses.
The animation on the right walks through one dispute case end-to-end — issued by DataWhisper Operations, verified by Humanos at the SmartInsights.CortexOS HITL engine gate, and committed only after a deterministic yes/no.
A DataWhisper Operations Lead authorizes scope, ceiling and validity. Humanos issues a machine-verifiable W3C Verifiable Credential, signed once and reusable across every case.
The dispute-resolution Peloton assembles the proposed resolution — refund, fee adjustment, goodwill credit — and attaches the mandate to its outbound action as x-humanos-mandate.
The HITL engine calls humanos.verify() against the mandate. Identity, scope, counterparty, amount and validity are checked in 82 ms — deterministic, no LLM in the path.
Authorized → SmartInsights.CortexOS commits the resolution. Out of scope — a £45,000 settlement against a £25,000 ceiling — the gate blocks and triggers a real-time step-up.
Each authorized action emits a cryptographic proof, recorded in both the SmartInsights.CortexOS tamper-evident audit trail and the independent consent record. Auditors, regulators and partners verify it directly, without reconstructing internal logs.
Relevant legally consequential actions are verified before they commit. The verify call is inline at the HITL gate, not after the agent has acted.
Agents stay probabilistic in reasoning. The act-or-not boundary is a yes or no, with no LLM in the verification path.
Approval and consent can come from external counterparties and data subjects, not only internal operators. The loop extends past DataWhisper’s boundary.
Issue once, verify anywhere. The proof is recorded in the SmartInsights.CortexOS tamper-evident audit trail, lives inside GuardianShield Governance, and is verifiable by any permitted party.
Refunds, settlements and goodwill credits, each authorized at the gate and carrying a portable proof.
Above an operator-defined threshold, cryptographic proof that a human authorized execution at a specific amount.
A signed human authorization record provides audit-ready evidence for FCA or equivalent review.
Tamper-proof evidence that a counterparty accepted terms at a specific time and scope.
DataWhisper · Autonomous AI for regulated industries · datawhisper.co.uk
