Privacy-first, tamper-evident capture for disputes, audits, and compliance

Captilo gives insurance, construction, and legal-ops teams a defensible photographic record — cryptographically sealed, blockchain-anchored, and EU-qualified timestamped — without ever taking custody of the underlying photos.

Blockchain Anchored
EU eIDAS Timestamps
GDPR-Aligned
No Server-Side Photo Storage
C2PA Conformant

Unverifiable photos are a quiet liability

Claims fraud exposure

Manipulated or AI-generated damage and incident photos drive an estimated $80B in annual insurance fraud losses. Unverifiable imagery is the weak link in every digital claims process.

Audit and dispute costs

Construction milestones, delivery conditions, and site inspections documented with ordinary photos are trivially backdated or disputed — turning routine audits into costly investigations.

Evidentiary weakness

Standard EXIF metadata is stripped or rewritten with free tools in seconds. Legal and compliance teams are increasingly expected to explain how photographic evidence was authenticated, not just that it exists.

Built on open standards, reviewed like infrastructure

Nothing here asks your procurement or security team to trust a black box. Every mechanism below is a named, independently verifiable standard.

INTEGRITY

Cryptographic hashing

Split SHA-256 hashing (photo + canonicalized metadata, RFC 8785) — independently recomputable by any party, including yours.

AUDIT TRAIL

Blockchain anchoring

Every proof is anchored to the Sonic blockchain (EVM-compatible, sub-1-second finality) — a permanent record no single party controls.

LEGAL

eIDAS qualified timestamps

RFC 3161 timestamps from a certified EU trust service provider — legal proof of time recognized across EU member states.

CERTIFIED

C2PA Content Credentials

Captilo is a certified C2PA Conformant Generator Product (Max Assurance Level 1). Exports carry Content Credentials aligned with the C2PA standard backed by Adobe, Microsoft, and Google.

PRIVACY

Device-local architecture

Photos and biometric data never leave the capturing device. Only cryptographic hashes and non-sensitive metadata are transmitted.

COMPLIANCE

GDPR-aligned by design

No server-side photo storage, no biometric data transmission, and a documented legal basis for the metadata that is collected.

We never take custody of your photos

Original photos and biometric data stay on the capturing device — encrypted, in hardware-backed storage. Only cryptographic hashes and non-sensitive metadata (roughly 3-4 KB per proof) are transmitted to the blockchain. There is no central photo repository for a breach to expose.

Full detail in the Privacy Policy.

Photos never leave the device
Biometric data stays in secure hardware
No server-side photo storage
GDPR / CCPA-aware data handling

Let's talk about your evidence workflow

Procurement questions, integration scoping, or a pilot for your claims, audit, or legal-ops team — tell us where you're starting from.