How it works
Wrap one function with the SDK. Every AI call gets hashed, graded, and chained automatically — you watch it live in the desktop app, and hand your auditor a proof they verify without trusting you.
$ pip install foxy-audit
from foxy_audit import audit
@audit(policy="soc2") # the only line you add
def ask_model(prompt):
return llm.generate(prompt) # your code, unchanged
That decorator is the only change to your app. It never blocks your function and never throws its own errors — everything below runs on a background thread.
01
The moment your function returns, Foxy takes a SHA-256 of the prompt and response and throws the raw text away. Only the digests, token count, and policy tag leave your servers — your data never does.
02
Every call is scored in real time against the policy you tagged — HIPAA, SOC 2, or your own rules. Anything that crosses the line is flagged the instant it happens, not in a review weeks later.
03
Each record's hash folds in the one before it — and which model produced it. Edit any past entry and every hash after it stops matching. Tampering isn't hidden; it's mathematically obvious.
04
The desktop app reacts the instant a call lands — green when it's clean, red on a breach. The dashboard shows the whole trail and exports a compliance passport your auditor re-verifies themselves, mapped to NIST AI RMF & the EU AI Act.
Pricing
Starter
$0/mo
For solo builders and prototypes.
Companion
$4.99/mo
For teams shipping AI to real customers.
Guardian
$39 once
Pay once. Lifetime license.
SSO, on-prem deployment, a bespoke SLA, or zero-knowledge payloads for regulated teams — let's talk.
Frequently asked
No. We hash your inputs, outputs, and verdicts on the way past — the raw content never leaves your infrastructure unless you explicitly opt into a support request. What we store is the hash chain, not the payloads.
We're currently completing our SOC 2 Type I audit. Until it's issued, we won't claim certification — we'll tell you exactly where we are in the process if you ask.
Your hash chain is append-only and independently re-computable, so an outage doesn't corrupt or invalidate what's already been recorded. New calls queue locally in the SDK and sync once we're back.
Yes — no contracts on Starter or Companion. Cancel from your dashboard and you'll keep access through the end of the billing period. Custom plans follow the terms in your agreement.
Team
Co-founder & CTO
Co-founder & CEO
Support
💬
Talk to a real engineer in-app — most chats get a first reply in under 10 minutes during business hours.
Open the app✉️
Write to support@foxyaudit.tech — every plan gets a same-business-day response.
Email us📚
Setup guides, SDK references, and troubleshooting for every step from install to your first audit passport.
Or send us a note — we read every message:
Send messageSet up your first verified chain in under ten minutes. No credit card needed to start.
Get started freeGet started
Drop your email and we'll send setup steps and get you going. No credit card to start.
Send itEnterprise · priority
SSO, on-prem, a custom SLA — tell us what you need. This goes straight to the founders.
Send message