Gate every agent action. Prove it to anyone — even people who don’t trust you.
Your agents make payments, call tools, move data. HESO checks every action against your policy in under 2 ms — allow, block, redact, or hold it for a person to approve — then turns the result into a receipt anyone can verify offline, in any browser.
your agent requested
Send $4,200.00
to Clark Kent
Your policy holds payments over $1,000 for a person.
- < 2 mspolicy decision
- Ed25519signed bytes
- BLAKE3tamper-evident chain
- offlineverify in-browser
Agents act.Logs can't prove what they did.
An agent sends a payment, calls a tool, or exports a row of customer data — and the only record is a log that whoever runs the log controls.
A log can be edited, rotated, or quietly dropped. It can’t prove who approved an action or reconstruct what actually ran. When an auditor or an incident asks for proof, a log is a claim, not evidence.
A plaintext log. Whoever keeps it can rewrite it — no signature, nothing to check.
You need proof — not a nicer log.
A log tells you what happened, according to whoever kept the log.
Decide, approve, prove — every action, every time.
A log is only as honest as whoever keeps it — so HESO hands you proof instead: every action decided against your policy, co-signed by a person when it matters, and verifiable by anyone, offline.
Policy decides in under 2 ms
Every action — a payment, a tool call, an HTTP request, a data export — is caught before it runs and checked against your policy. The first matching rule returns the verdict: allow, block, redact a sensitive field, or hold it for a person. Nothing executes until it clears.
step 1 of 3
Proof you can check yourself
A receipt is independent evidence. The math runs in your browser — not on our servers, and not on our word.
- action
- payments.transfer
- amount
- → "Clark Kent"
- verdict
- ALLOW
The recomputed hash matches the signed hash. This receipt is authentic — verified offline, in your browser.
- < 2msto decide: allow, block, redact, or ask a human
- Ed25519signature on the exact bytes of every action
- BLAKE3chain that links each receipt to the last
- byte-for-byteoffline replay — no HESO infrastructure
heso speaks the emerging agent-receipt standards — we’re the enforcement and proof layer on top, not a private format.
The EU AI Act (from Aug 2 2026) requires an append-only record of every agent action, tool call, and human override. That’s what a receipt is.
Simple pricing. You pay for scale, not for signing.
Paid tiers buy cloud scale, retention, and team features — including the third-party notary.
- Signed receiptsevery action, Ed25519-signed
- Offline verificationverify in any browser, no account
- Full local audit trailnever dropped, never capped
Free
Hosted, free forever.
- Governed agents
- 1
- Approver seats
- 1
- Cloud receipts
- 10,000
- Retention
- 7 days
- Rate limit
- undefined req/sec
Core platform · hosted free
Pro
PopularFor a small team running real agents.
- Governed agents
- 3
- Approver seats
- 3
- Cloud receipts
- 100,000
- Retention
- 30 days
- Rate limit
- undefined req/sec
Team
For teams with SSO and longer retention.
- Governed agents
- 10
- Approver seats
- 6
- Cloud receipts
- 1,000,000
- Retention
- 6 months
- Rate limit
- undefined req/sec
Custom
Bundles Compliance + Enterprise.
- Governed agents
- 50+
- Approver seats
- 50+
- Cloud receipts
- uncapped
- Retention
- 1 year
- Rate limit
- undefined+ req/sec
A governed agent is one signing identity and policy scope — not concurrency.
Need a customer to approve an action? Embed a gate so they co-sign it from your app — heso-branded on every plan, themed and unbranded on Team. Let your customers approve.
You don’t have totrust us.
Every action your agents take becomes a receipt anyone can check — Ed25519 + BLAKE3, in any browser, with no account and nothing from us.