payer_ref, the SHA-256 of the payer’s network and address, so the canonical bytes carry no wallet address and no personal data, while a verifier who already holds the original network and address can still reconstruct the reference and confirm the match.
The no-PII construction
payer_ref is a content-addressed reference to the payer identity, not the raw address. The cleartext address is screened by your provider but never emitted; only its digest appears in the receipt:
A categorical verdict, byte-distinct
The screening outcome is a closed enumeration. Each value produces a differentcontent_hash under JCS, so the verdict cannot be silently altered:
| Value | Meaning | Regulatory significance |
|---|---|---|
ALLOW | Payer passed all screening checks. | Baseline positive record, no SAR obligation triggered. |
REFER | Payer matched a watchlist or risk threshold; manual review required. | Triggers SAR obligation under POCA 2002 s.330 (UK) / AMLR Article 56 (EU). |
DENY | Payer matched a sanctions list or failed a mandatory check. | Triggers tipping-off rules under SAMLA 2018 s.20; the reason must not be disclosed to the payer. |
Bind the verdict to the policy in force
A verdict on its own does not record which policy produced it. Compliance Gate (lite) closes that gap with agate_ref that binds the verdict and the no-PII payer reference to the pinned policy snapshot:
Verify with no issuer call
A verifier holding the receipt recomputes the hash offline and confirms the verdict was made for exactly this payer under exactly this policy. No issuer call, no registry lookup, no AlgoVoi service. Thecompliance_gate_lite_v1 and compliance_receipt_v1 vector sets are published in the public conformance corpus with Python and Node runners that reproduce every value byte-for-byte.
Specification and authorship
AlgoVoi-authored, specified in IETF Internet-Draftsdraft-hopley-x402-compliance-receipt and draft-hopley-x402-retention-chain (§7.8 Compliance Gate Binding), both normatively referencing the canonicalisation substrate. Open packages: algovoi-compliance-gate-lite, Python and TypeScript byte-for-byte identical.
See also
- Compliance receipt format — the full admission receipt
- Compliance Gate (lite) — bind the verdict to the policy in force
- Verifiable x402 receipts — the x402 receipt set
- Offline-verifiable agent receipts — verify with no service call