Five regulated industries. One hallucination standard.
Each pilot is scoped to your vertical's specific regulatory framework. Same deposit, same 30-day window, same warranty — tuned to the rules you're actually accountable to.
⚖️
Legal
Law firms & General Counsel
ABA Model Rules 1.1 & 5.3EU AI Act Art. 6, 9, 14SEC 17a-4Mata v. Avianca
Headline metric: Zero fabricated citations in 30-day pilot window.
Every assertion traced to verified source before exit.
Triple-Gate proof rail — every response, every vertical.
Three independent verification layers run in parallel. All three must pass. Any failure is blocked and logged with a tamper-evident HMAC entry.
Gate 1 — Pre-Execution
Intent Classification & Scope Guard
Before any LLM inference runs, the intent is classified against your vertical's regulatory scope. Out-of-domain requests are refused, not guessed at.
✓ Regulatory domain classification
✓ Out-of-scope refusal enforced
✓ PHI / PII pre-scan (medical & family office)
✓ Latency target: <50ms
Gate 2 — Mid-Flight
Citation Grounding & Evidence Check
While the model runs, every factual assertion triggers a parallel citation lookup. No assertion exits unless it traces to a verified source in your vertical's regulatory corpus.
✓ Parallel citation verification
✓ Fabricated source detection
✓ Relevance scoring ≥ 0.70 required
✓ Grounding evidence attached to every response
Gate 3 — Post-Hoc
Competence Screen & Audit Commit
After the response is assembled, a final competence-standard screen checks that conclusions don't exceed the AI's verifiable knowledge. Then the full interaction is committed to the append-only audit log.
✓ Competence-standard enforcement
✓ HMAC-SHA256 chain integrity
✓ Tamper-evident, append-only log
✓ SOC 2 CC7.2 compliant
30-Day Deliverables
What you get in 30 days.
Not a generic "pilot." A scoped engagement with measurable outputs tied to your specific regulatory obligations.
📋
Conformity Document
A vertical-tailored EU AI Act conformity assessment covering Articles 9–15: risk management system, data governance, technical documentation, human oversight, and transparency obligations. Ready to present to regulators.
📦
Audit-Log Export
Full 30-day export of your HMAC-SHA256-chained audit trail. Every query, response, citation check, and override gate event. Structured for Drata / Vanta automated compliance platforms.
🔌
Workflow Integration
One production integration into your existing workflow — document review, advisory output, clinical query, or reporting pipeline. Grounding and gate enforcement active from the first real transaction.
👤
Named Compliance Contact
A dedicated compliance officer assigned to your pilot — not a support ticket queue. They scope the pilot, set success metrics at kickoff, and present the 30-day review with you.
Verification Record
Not marketing. Proof.
Every claim Sturna makes about hallucination defense is backed by public, reproducible evidence. Check the receipts.
Yes. If Sturna does not demonstrably reduce citation errors during your 30-day pilot, you receive a pro-rated refund at the 30-day review. If you convert to a full contract, the deposit credits month 1 at full value — no write-off. We have no interest in locking you in before you've seen results.
Success metrics are defined at kickoff — we don't set them retroactively. Typical metrics: zero fabricated citations in production output, measurable reduction in manual review burden, conformity document ready for regulator review, and audit trail passing your compliance team's bar. Your named compliance contact sets and tracks these with you.
During the pilot, if a fabricated citation passes through Sturna's Triple-Gate and reaches your workflow unchallenged, we cover up to $10,000 in remediation costs. Specifics (scope, trigger, payment terms) are documented in the pilot agreement signed at kickoff. This is a real liability backstop — not a marketing headline.
Pilot data is processed in the US by default. EU data residency (Frankfurt region) is available for regulated clients under EU AI Act or GDPR obligations — request at kickoff. All data in transit uses TLS 1.3. Data at rest uses AES-256-GCM. No training on your data without explicit written consent.
Sturna is currently in SOC 2 Type II observation period. The compliance_audit_log (CC7.2) and AES-256-GCM encryption (CC6.6) controls are live and accumulating evidence. Full Type II report is targeted for Q3 2026. The audit trail export from your pilot will include controls-evidence structured for Drata/Vanta automated ingestion.
Yes. Multi-vertical pilots are available at a package rate — typically $4,000–$6,000 for two verticals run concurrently, depending on scope. Contact us after your first pilot deposit to discuss bundling.
Within 24 hours of your deposit, your named compliance contact will reach out to schedule the kickoff call. Most pilots start within 3–5 business days of the kickoff — time needed to provision your agent cluster and configure the one workflow integration.