Audit time-machine
Replay any moment. Six months later.
Auditability is only as good as your ability to reconstruct what happened. The Indentia time-machine lets you scroll the platform's history back to any second — for incident reviews, regulator questions and "who knew what, when".
Capabilities
Six properties that make replay actually useful.
Replay to any moment
Pick a date and time. The audit-stream viewer reconstructs the platform's state at that instant — what entities existed, what permissions applied, what answers an agent would have given.
URL-shareable
Every replay state is a URL with a `?replay=` parameter. Paste it in a ticket, an email or a slack thread; the recipient sees exactly the same moment.
Signed audit events
Every event in the stream is signed at the moment it was recorded, by the identity that triggered it. Replay is read-only; the history is tamper-evident.
Cross-source by entity
See the timeline of a single entity across systems — a customer, a contract, a dataset — with each touch (read, edit, agent action) and its initiator.
Tied to the lineage graph
Audit events live in the same knowledge graph as lineage. Trace from "this output went out" backward through the agent reasoning, the retrieval calls and the source rows that informed them.
Regulator-ready
Export a signed PDF of any replay window for a regulator, an inspector-general or your own ISMS. The chain-of-evidence travels with the file.
Forensics in one query
"Why did this output go out?" becomes a link.
Forensic reconstructions normally take weeks: pull logs from twelve systems, normalise timestamps, line up identities. With the audit time-machine, the answer is a URL. You paste it; the reviewer sees the same moment you saw, signed and verifiable.