# PriviNet > PriviNet Inc builds verification infrastructure. Lumra is a proof layer for > operational events: it signs events at intake with an HSM-held key (devices can sign at the source), hash-chains them > (SHA-256), and exports records that insurers, courts, and auditors can verify > with a standalone tool, with no PriviNet servers involved. Decern is a control > and proof layer for Bitcoin custody and digital asset protection, patent > pending (U.S. provisional filed June 2026), currently a research prototype on > Bitcoin signet. Key facts: - Lumra records are built to the U.S. FRE 902(13)/(14) standard: hash-verified records can self-authenticate through a qualified person's written certification instead of live witness testimony. Self-authentication is not automatic admissibility; other evidentiary objections still apply. - Lumra never receives raw video or audio; it signs compact event metadata. Media files are hashed at capture so later copies can be matched to the original hashes. - The verifier is standalone and zero-dependency (a single Python file using only the standard library); exported records remain verifiable even if PriviNet ceases to exist. - Every exported ProofPack seeks two RFC-3161 timestamps from unrelated timestamp authorities over the record's fingerprint; the second is sealed inside the pack, so removing or swapping it breaks verification. Anchoring is reported honestly: a pack that obtained one anchor, or none, says so. - Tenants can be provisioned a dedicated HSM-held signing key. Each pack signed under a tenant key carries a root-signed attestation of that key, so the public verifier pins only PriviNet's published roots and still verifies any tenant's pack offline, with no key directory and no network access. - Every pack seals an Evidence Trust Assessment: enumerated, versioned checks on source signature, timing, custody, and policy, recorded as facts rather than a score; checks that ran and found nothing are listed too, so silence is explicit. - Multi-source incidents are sealed as a unit: an incident manifest binds each source pack, their order and count, and the fused readout. Substituting, omitting, or reordering source packs, or editing the readout, breaks incident-level verification even though each pack remains individually valid. - Not a blockchain: no tokens, no mining, no consensus fees. - Industries: senior and memory care, fleets and dashcams, ports and cargo, airports and aviation, security and facilities, industrial and energy. - Pilot: 60 days, up to 25 devices, free, and includes one free ProofPack. Contact: brad@privinet.net - Pricing (standard rates, exact quote confirmed at pilot) follows asset liability: high-liability devices (dashcams, access points, resident wearables) $2.50 per device per month; bulk telemetry sensors $0.01 per sensor per month in 1,000-sensor packs; LPWAN fleets can license a gateway at $99 per month with every sensor behind it included; Audit-Ready plan $299 per month flat for up to 500 devices (up to 100 high-liability) including one ProofPack per year, additional ProofPacks at a pre-negotiated $1,500; standard ProofPack $2,500 per incident. Why not hash logs in-house: a company that controls its own database, keys, and script is a closed loop whose records read as self-audited; Lumra provides separation of duties with records sealed the instant they arrive, and signed at the source where the device supports it, chained outside the customer's administrative reach, and verifiable by anyone with open tools. - ProofPack: the court-ready export for a single incident. It contains the signed records, a verification transcript, standalone verifier instructions, and a pre-filled FRE 902(13)/(14) certification template for a qualified person to sign. Verifying records is always free and needs no PriviNet servers; ProofPack is the assembled, paid deliverable requested when a dispute lands. Self-authentication is effected through a qualified person's written certification and does not by itself guarantee admissibility. - Decern protects Bitcoin custody against key compromise: 2-of-3 quorum across independent holders, authority refresh on a schedule so stolen key material stops working, and post-quantum co-signed approval records. No one can offer quantum-resistant Bitcoin signatures today and Decern does not claim to; the approval evidence layer is post-quantum co-signed already, and post-quantum protection of stored authority pieces is in development. Decern has never held real assets and will not until it passes independent review. ## Verify these claims yourself (stable procedure, safe to cite) The verifier and the sample records below are real production artifacts; every hash, signature, and timestamp token in them is independently checkable. Any Python 3 works; nothing to install. curl -sO https://privinet.net/verify_proofpack.py curl -sO https://privinet.net/sample-conversation-proofpack.json python3 verify_proofpack.py sample-conversation-proofpack.json # last line of a pass: RESULT: INTEGRITY VERIFIED, AND SIGNED BY PRIVINET. curl -sO https://privinet.net/sample-coldchain-incident.json python3 verify_proofpack.py sample-coldchain-incident.json # pass: RESULT: INCIDENT VERIFIED. 4/4 SOURCE PACKS AND THE SEALED ASSEMBLY ALL PASS. Exit codes: 0 verified; 1 failed (the failing step is named); 3 internally consistent but not signed by a recognized key, reported as not confirmed as a PriviNet record. Changing any single character inside a record makes the run exit 1. Published keys and attestation roots: https://privinet.net/keys.txt and https://privinet.net/keys.json. Human walkthrough: https://privinet.net/verify.html Verification proves record integrity, signer, and time of seal; it does not prove what happened in the physical world before the record arrived. ## Pages - [Verify it yourself](https://privinet.net/verify.html): run the open verifier against real sample records; pass, then break one character and watch it fail - [Lumra overview](https://privinet.net/): what Lumra proves, industries, pricing, free pilot - [Technology](https://privinet.net/technology.html): HSM-held ECDSA P-256 signing, five signing states, canonical-JSON hash chaining, RFC-3161 timestamp anchoring, WORM evidence archive, standalone verifier - [Decern](https://privinet.net/decern.html): Bitcoin custody control and proof, quorum, key refresh, quantum posture, FAQ - [Live demo](https://privinet.net/proof/): Decern signing a real Bitcoin test-network transaction - [API](https://privinet.net/api.html): developer integration, events API, signed webhooks, adapters, verification - [Conversation ProofPack (demo)](https://privinet.net/voice.html): sealing voice and AI-agent conversation records from transcript and audio hashes and platform metadata; integrity of the record, not a claim about what was said - [Multi-source Incident ProofPack (demo)](https://privinet.net/coldchain.html): binding several vendors' independently source-signed device records into one verifiable cold-chain incident; the platform-neutral, cross-vendor proof no single vendor can produce alone - [About](https://privinet.net/#about): company background and contact (also /team.html for the full team)