Architecture · Scenarios · Technology

How Signet works.

Most privacy tools explain policy. Our protocol is proof of policy. Here is the architecture.

Architecture Overview

The protocol stack that puts you in control.

Enforcement
Legal Co-Enforcement
NFT-anchored provenance · Co-plaintiff standing · Enforceable violation cases
Economics
Smart-Contract Data Economics
70/30 human-first revenue · Automated settlement · Terminating data lifecycles
Identity
Sovereign Digital Identity
Human master DID · AI agent governance · BCI and Neurotech device control
Encryption
AES-256 End-to-End Encryption
Client-side key generation · Zero platform access · IPFS decentralized storage

Built from the ground up, not bolted on.

Every other privacy solution you have encountered was designed after the infrastructure was built. It sits on top of an extraction model and tries to limit the damage. Signet inverts this entirely.

The encryption layer ensures your data is mathematically inaccessible to anyone without your explicit authorization, including Signet itself. The identity layer gives you a sovereign DID that governs every agent, device, and sensor connected to you. The economics layer encodes your data rights into smart contracts that settle automatically. The enforcement layer creates a legally provable chain of custody from the moment of NFT creation.

Each layer is dependent on the one beneath it. Remove any layer and the system fails. That interdependence is the architecture. That is why nothing else is building this at the protocol level.

ENCRYPTION AES-256 Encryption Client-side · Zero platform access · IPFS IDENTITY Sovereign Identity Human DID · AI agents · BCI devices ECONOMICS Data Economics 70/30 model · Smart contracts · Auto-settlement 70 % ENFORCEMENT Legal Co-Enforcement NFT provenance · Co-plaintiff · Enforceable PROTOCOL FOUNDATION

How It Works in Practice

Real scenarios.
Your data. Your terms.

Neurotech · BCI
A BCI user whose neural data is governed by Signet.
1. You connect your BCI device to Signet. A sovereign DID is created for the device, linked to your master human identity. You are now the controller of the device's data output, not the manufacturer.
2. Every neural recording is encrypted client-side with your keys before it leaves your device. It is stored on IPFS as a registered, uniquely identified asset. No platform, including Signet, can read it.
3. A research institution wants access to anonymized cognitive data. Their AI agent negotiates with yours. You set the terms, the price, and the permitted use. A smart contract encodes the agreement and settles automatically, returning 70% of the transaction to you.
4. If the institution shares or resells the data outside agreed terms, the NFT provenance chain creates an open-and-shut case. FISE stands beside you as co-plaintiff.
Biotech · Research
A pharmaceutical researcher buying consented genomic data.
1. Your institution needs a cohort of consented genomic data for a clinical trial. You post a data request with specific parameters — data type, anonymization level, permitted use, and price ceiling.
2. Signet surfaces matching data assets whose owners have pre-authorized this category of use. No cold outreach. No consent ambiguity. Every asset comes with a cryptographically verified consent record.
3. A smart contract is executed. The data is delivered with a legally enforceable single-use license and an automatic expiration tied to the agreed terms. Revenue settles directly to data owners at 70/30.
4. Your institution receives a full chain-of-custody provenance record for every data asset, defensible in regulatory audit, peer review, and litigation.
Enterprise · Agentic AI
An enterprise deploying AI agents under human-sovereign governance.
1. Your enterprise deploys agentic AI across operations. Each AI agent is issued a child DID linked to a human master DID, meaning every agent action is cryptographically traceable to an authorized human principal.
2. Agent permissions are encoded in smart contracts. What the agent can access, negotiate, and act on is defined and immutable without explicit human override. No agent operates outside its permissioned scope.
3. Regulatory audit requests produce a complete, tamper-proof action log for every AI agent in your ecosystem, with human authorization records attached to every decision. Compliance is architectural, not procedural.
Creative · IP
A creator protecting original work from AI scraping.
1. You upload original designs, written work, or source code to Signet. The file is encrypted client-side and minted as an NFT with smart contract protections, timestamping your authorship on the blockchain at the moment of creation.
2. The encrypted file is mathematically inaccessible to any AI training pipeline, crawler, or scraper. It cannot be read, copied, or reproduced without your explicit decryption authorization.
3. If you choose to license your work, terms are encoded in the smart contract — permitted use, duration, territory, and price. Any use outside those terms is a provable violation, with FISE as your legal co-enforcer.

The Technology

For the technical reader.

Encryption
AES-256 Client-Side Encryption

All encryption and decryption occurs on the client device before data transits to storage. Keys are generated and held exclusively by the user, never transmitted to or stored by Signet. Files are stored in encrypted form on IPFS, a decentralized content-addressed storage network, eliminating single points of failure and platform-controlled access.

Identity
Decentralized Identifier (DID) Architecture

Each user is issued a W3C-compliant Human Controller DID that they control entirely. Child DIDs are delegated to AI agents, BCI devices, and Neurotech sensors, creating a hierarchical sovereignty architecture. No identity data is stored on a centralized server. DID resolution is open and interoperable across Web2 and Web3 systems.

Ownership
NFT-Anchored Data Provenance

Each data asset is minted as an ERC-721 NFT on Polygon, creating an immutable, timestamped record of authorship, ownership, and transaction history. Smart contracts encode permitted use cases, data lifecycles, and revenue distribution. The NFT chain-of-custody record is legally admissible as provenance evidence in commercial and regulatory contexts.

Compliance
Privacy-By-Design, GDPR-Aligned

Signet is engineered around the GDPR's privacy-by-design mandate and extends compliance to neural, biometric, and genomic data types not yet fully covered by existing frameworks. Data minimization, purpose limitation, and explicit consent are architectural constraints, not policy overlays. Neurorights-aligned across Colorado, California, Montana, and Connecticut legislation.

Ready to go deeper?

Your data.
Your sovereignty.

Whether you are evaluating Signet for personal data protection, enterprise deployment, or investment, we are ready to have a real conversation.

Get in Touch
Team Use Cases How It Works LinkedIn Bluesky White Paper