Constitutional System Governance · Patent Pending

Architecture that
cannot be violated.

Vestral enforces your software's constitutional rules on every commit — before the code merges, before the damage is done.

csg — constitutional check · Layer 6 of 8

$ git commit -m "add wallet endpoint"

↺ Running Vestral constitutional check…

✓ Layer 0 dependency 112 edges 0 findings

✓ Layer 3 trust-boundary 67 edges 0 findings

✗ Layer 6 governance 2 findings

MISSING role:public →[prohibits]→ op:wallet-operations

Unauthenticated callers can reach the coin ledger.

Fix: add authMiddleware to POST /api/wallet

✗ Commit blocked. 2 constitutional findings must be resolved.

The problem

AI writes code faster than
humans can govern it.

Architecture decisions get made in Slack. Enforced nowhere. Dead within weeks. AI coding agents have no memory of what the system is constitutionally permitted to do.

📉

Architecture rules decay

ADRs are documents, not enforcement. Every sprint introduces drift that no existing tool catches until production breaks or an audit fails.

🤖

AI agents start blind

Each coding session begins with zero awareness of your governance doctrine. The agent generates — your constitution is invisible to it.

🔍

Audits are manual and expensive

EU AI Act, SOC 2, ISO 27001 require provable architectural lineage. Most teams have spreadsheets. Auditors have billable hours.

No existing tool can answer: "Is this commit constitutionally legal?" — before it merges.

How it works

From questionnaire to
enforced constitution in minutes.

Answer questions about your system. Vestral synthesises the full 8-layer constitutional model, wires it into your CI pipeline, and enforces it on every commit.

Step 01

Describe your system

Fill in the setup wizard — domain, roles, workflow states, economic model, threat model, integrations. Upload specs or regulations if you have them.

~10 minutes

Step 02

Receive your package

Vestral generates an 8-layer doctrine model, pre-configured analysis server, project knowledge base, and governance context file for your AI coding agent.

AI-synthesised · ~90 seconds

Step 03

Run the analysis server

Start node serve.mjs. Vestral extracts your code's live topology and reconciles it against your constitutional doctrine. Findings appear in the browser.

Runs locally · zero cloud dependency

Step 04

Enforce on every commit

A pre-commit hook and CI gate block the merge of code to the repository when there are findings pending fix.

GitHub · GitLab · Bitbucket · Azure DevOps

Constitutional architecture

8 semantic layers. Every angle covered.

Vestral reconciles observed code topology against your doctrine. Below: two live layer graphs from an actual project.

Layer 6 — Governance

Which roles are authorized, prohibited, or required to perform each operation

authorizes

prohibits

constitutionalizes

Layer 3 — Trust Boundary

Which routes require which middleware guards before reaching controllers

public route

authMiddleware

walletGate

requireAdmin

Live output

What Vestral shows after analysis.

Layer 0 · Dependency graph

Dependency Graph LIVE

0 · Dependency

3 · Trust

4 · Econ

6 · Governance

⟳ Recalculate

L0 Dependency

L1 Causality

L2 Lifecycle

L3 Trust Boundary

L4 Econ State

L5 Econ Auth

L6 Governance

L7 Adversarial

Constitutional Graph

Every node is a module, route, or service in your codebase. Every edge is a relationship — dependency, causality, trust gate, economic flow — mapped across 8 constitutional layers. The sphere makes the full topology visible at a glance.

Where text rules require a reader who already knows where to look, a graph makes the shape of your system immediately readable — who calls whom, which boundaries exist, which paths are guarded. Violations in the findings panel on the right trace directly back to edges and nodes visible here.

The graph also acts as persistent memory for the AI coding agent. Rather than re-deriving context from source files on every change, the agent reads the live graph state — knowing exactly which nodes are clean, which are flagged, and which constitutional rules apply before writing a single line.

14Compliant

2Partial

1Unmonitored

1Excess

0Missing

Remediation report →

Open findings

PARTIAL cases/ → wallet/

Dependency exists in code. Doctrine mandates walletGate middleware on this path — not wired up.

EXCESS admin/ module

Module present in codebase but absent from Layer 0 doctrine. Vestral cannot classify any dependency into or out of it.

UNMONITORED delivery/ → notify/

notifications/ not declared in doctrine. Outbound calls from delivery/ are outside constitutional scope.

System architecture

Vestral controls every path to the repository.

Setup wizard

Your constitutional model
in 10 minutes.

Answer 7 questions about your system. Vestral reads your answers — and any documents you upload — and generates the full constitutional package using AI.

No code reading required at this stage. You describe the intent; Vestral enforces it.

Project identity & paths
Supporting documents
Purpose & domain
Roles & access
Workflow & state
Economic model
Threat model

What you receive

✓ 8 doctrine YAML files
✓ Pre-configured serve.mjs
✓ AI context file (CLAUDE.md / Cursor / Copilot)
✓ CI gate workflow
✓ 8-page knowledge base
✓ invariants.md

Step 3 of 7 — Purpose & Domain

What does this system do?

Describe the system's core function. This becomes the foundation of your constitutional doctrine.

System description *

A platform for licensed notaries to certify and deliver legal documents across jurisdictions, with cryptographic integrity guarantees under D.Leg. 1049…

Industry / domain

Legal · Notarial · FinTech

Regulatory framework

Peru D.Leg. 1049 · GDPR · SOC 2

What should this system never do? *

Never certify without notarial signature
Never release payout before delivery…

← Back

Progress auto-saved

Pricing

One plan for every team size.

All plans include the full 8-layer engine, AI fix generation, CI gate, and knowledge base. No per-seat fees.

Solo

$499/yr

1 project · 1 developer

8-layer constitutional engine
AI fix generation
CI gate (all platforms)
Wiki knowledge base
14-day free trial

Start free trial

Popular

Studio

$1,999/yr

Up to 5 projects · unlimited devs

Everything in Solo
5 simultaneous projects
Multi-agent governance
Audit export (PDF / JSON)
Priority support

Start free trial

Enterprise Gov

$4,999/yr

Unlimited projects · compliance

Everything in Studio
EU AI Act reports
SOC 2 / ISO 27001 exports
SSO / SAML
SLA + dedicated support

Start free trial

Enterprise

Custom · on-premise · white-label

Everything in Gov
On-premise deployment
Custom doctrine layers
White-label option
Volume pricing

Get in touch

FAQ

Common questions.

Everything you need to know before you generate your first constitutional package.

What exactly is Vestral? How is it different from a linter or static analysis tool?

A linter checks code style and known anti-patterns against a fixed rule set. Static analysis finds bugs and type errors. Vestral is neither. It extracts an 8-layer semantic graph from your repository — dependency, causality, lifecycle, trust-boundary, economic-state, economic-authorization, governance, and adversarial propagation — and compares the observed topology against a user-authored constitutional doctrine: what the system is architecturally permitted to do. Violations are classified as MISSING, EXCESS, or MISMATCH and blocked at the pre-commit hook before they reach production. No existing linter or static analysis tool makes the distinction between "what the code does" and "what the code is constitutionally allowed to do."

Do I need to rewrite my codebase? How disruptive is the integration?

No rewrites. Vestral reads your existing repository as-is. The setup wizard generates a constitutional package — doctrine YAMLs, a pre-configured server, an AI context file, and a CI gate — and drops it alongside your code. You point it at your repo root, run node serve.mjs, and the 8-layer graph is computed from your existing dependency tree, routes, middleware, and event handlers. The only code you touch is adding a pre-commit hook (one line) and a CI step (one job). Existing code is read, never modified.

What languages and frameworks are supported?

The current extraction engine covers Node.js / TypeScript (Express, Fastify, NestJS) natively — function-level call graph, route-to-controller mapping, and middleware chain extraction are all fully implemented. Python (Django, FastAPI) and Go extractors are in active development. The doctrine layer and Vestral server are language-agnostic: any language with a call-graph extractor can feed the 8-layer model. Enterprise customers can request custom extractor development for Java/Spring, Ruby on Rails, or other stacks.

Is my source code sent to the cloud? What data leaves my machine?

The Vestral analysis engine runs entirely on your machine. The server (serve.mjs), all extractors, and the doctrine evaluation pipeline execute locally. No source code, graph data, or diff results are ever transmitted to Vestral's servers during normal operation. The only outbound calls are: (1) license key validation at activation (sends only your license key and a machine fingerprint), and (2) the AI fix generation feature, which sends a short excerpt of the specific violating code to the Anthropic API over TLS — and only when you explicitly click "Generate fix." Both can be disabled. Enterprises may deploy in fully air-gapped environments.

How does Vestral work with AI coding assistants like Claude Code, Copilot, or Cursor?

The setup wizard generates an AI context file tailored to your assistant of choice — CLAUDE.md for Claude Code, .cursor/rules/csg.mdc for Cursor, .github/copilot-instructions.md for GitHub Copilot, and equivalents for Windsurf and Aider. This file instructs the AI to read diff.json before writing any code, confirm findings before proceeding, and treat invariant violations as hard blockers. The AI assistant effectively internalises your constitutional doctrine and enforces it before suggesting or writing changes — not just after a commit. Every generated context file also includes the Vestral consultation protocol: the agent must print [Vestral] Reading <artifact> — <reason> on screen before any read from the package, giving you visible, auditable evidence in every session that the constitution was in the loop.

What is the EU AI Act connection? Why does it matter right now?

The EU AI Act (fully applicable from August 2026) requires high-risk AI systems to maintain technical documentation demonstrating that the system's architecture is consistent with its declared design. Article 9 mandates a risk management system; Article 11 mandates technical documentation including "the design specifications of the system." Vestral produces provable architectural lineage — a machine-readable diff between declared doctrine and observed topology at every commit. This is exactly the kind of evidence Article 11 compliance requires. For organisations using AI to write code (which, by mid-2026, is most of them), Vestral answers the compliance question the Act cannot: "Is this AI-generated commit constitutionally legal?"

How does the trial work? What happens after it ends?

Every organisation gets a free 3-day trial, one trial per organisation per 60 days. During the trial you get the full product — all 8 layers, AI fix generation, CI gate, and knowledge base — with no feature restrictions. When the trial expires, the server enters read-only mode: you can still view your existing diff results and graph but cannot run new analyses until you activate a license. Activating is one command: enter your license key at localhost:8082/install. Licenses are annual; they are tied to the organisation, not the developer seat count.

Can Vestral detect security vulnerabilities?

Indirectly, yes — and often earlier than vulnerability scanners. Vestral's trust-boundary layer enforces that every externally reachable route passes through the declared authentication and authorisation middleware chain. If a developer adds a new route that bypasses authMiddleware, Vestral classifies it as a trust-boundary EXCESS violation and blocks the commit. The adversarial propagation layer models known attack vectors — privilege escalation, replay, IDOR, injection — and verifies that the declared mitigations remain in the graph. It is not a CVE scanner; it is a constitutional guarantee that your security architecture cannot structurally regress.

What does the patent protect? What does "15 claims pending" mean in practice?

The patent application covers three claim families: (1) the 8-layer constitutional graph system as a data structure and extraction method, (2) the governance-constrained reachability analysis — the specific algorithm that reconciles observed topology against a constitutional doctrine to produce typed violation findings, and (3) the AI governance gate — the method of injecting constitutional context into an AI coding session to enforce doctrine at suggestion time, not just at commit time. "15 claims pending" means 15 individual claim scopes have been filed. The application is currently under examination; pending status provides provisional protection from the filing date and puts competitors on constructive notice that this territory is claimed.

How long does the initial setup take for an existing codebase?

For most codebases: under 30 minutes end-to-end. The setup wizard takes roughly 10 minutes to complete (or 2 minutes if you paste an existing spec). AI synthesis — three passes through the constitutional model — takes another 3–5 minutes. Pointing the generated server at your repository and running the first analysis takes 2–10 minutes depending on codebase size. Adding the pre-commit hook and CI step takes under 5 minutes. The generated CLAUDE.md or Cursor rules file is ready to use immediately. There is no training period and no model fine-tuning — Vestral reads your code structurally, not semantically.

Patent pending · 15 claims filed

First implementation of
governance-constrained reachability.

Vestral separates normative topology — what your code is constitutionally permitted to do — from descriptive topology — what it actually does. No existing tool makes this distinction.

Constitutional layers

Patent claims

Direct competitors

$12B

Developer tooling TAM

Generate your Vestral package → Talk to us

⚖️ Patent pending · Method + System + CRM claim families · 2026

Investor Relations

A new category in developer tooling.
No direct competitors. Patent pending.

Vestral is the first tool that enforces what software is constitutionally permitted to do — not just what it currently does. We operate at the intersection of governance, AI coding, and enterprise compliance, in a space no existing tool addresses.

$12B+

Developer tooling TAM (2025)

Patent claims filed across 3 families

Direct competitors in this category

Aug 2026

EU AI Act full enforcement deadline

🏗️

The space Vestral occupies

Developer tooling has three layers: syntax (linters), behaviour (static analysis), and now — for the first time — constitutional governance. Vestral owns this third layer: the enforcement of what a system is architecturally allowed to do, expressed as a machine-readable doctrine and verified at every commit.

🏢

The enterprise problem

At scale, architecture decays silently. Rules live in PDFs, wikis, and Notion pages that no tool reads. Every pull request is a trust decision made by a human who may not know the full doctrine. Vestral replaces that trust gap with a gate: no commit that violates declared architecture reaches production, regardless of who wrote it — human or AI agent.

🤖

The AI coding shift

By 2026, the majority of production code is written by AI agents — Claude Code, Copilot, Cursor, Codex. These agents are fast, capable, and constitutionally blind. They have no awareness of trust boundaries, economic-state rules, or governance invariants. Every enterprise adopting AI coding now needs a constitutional layer. Vestral is that layer.

📋

Regulatory tailwind

The EU AI Act (fully applicable August 2026) requires high-risk AI systems to maintain technical documentation proving architectural consistency with declared design. Vestral produces that evidence automatically at every commit — a machine-readable audit trail no compliance team can generate manually. For enterprises subject to the Act, Vestral moves from useful to necessary.

⚖️ Patent protection — 15 claims pending, 3 families

The patent application covers three claim families: (1) the 8-layer constitutional graph as a data structure and extraction method — the core architecture no competitor can replicate without infringing; (2) governance-constrained reachability analysis — the specific algorithm that reconciles observed code topology against a constitutional doctrine to produce typed violation findings; and (3) the AI governance gate — the method of injecting constitutional context into an AI coding session to enforce doctrine at suggestion time, not just at commit time. The application is under examination. Pending status provides provisional protection from the filing date and puts any would-be competitor on constructive notice. No comparable system exists in prior art.

Get in touch

We're open to conversations with seed and pre-seed investors, strategic partners, and enterprise design partners. Deck and data room available on request.

Direct: nabil-5@live.com

Request deck → Design partner

Terms of Service

Vestral · Constitutional System Governance · Version 1.0 · Effective date: 1 June 2026

1. Acceptance of Terms

By accessing vestral.io, using the Vestral setup wizard at app.vestral.io, downloading or installing any Vestral software package, or activating a license key, you ("Customer") agree to be bound by these Terms of Service ("Terms") on behalf of yourself and, where applicable, the organisation you represent. If you do not agree to these Terms, you must not use any part of the Service. Use of the Service constitutes acceptance. If you are accepting on behalf of an organisation, you represent and warrant that you have the authority to bind that organisation.

2. Description of Service

Vestral provides a software tool (the "Engine") that extracts an 8-layer semantic graph from source code repositories, evaluates that graph against user-authored constitutional doctrine rules, and produces findings classifying architectural discrepancies. The Engine includes: the local analysis server (serve.mjs), source code extractors, the doctrine evaluation engine, a setup wizard hosted at app.vestral.io, an AI fix suggestion feature, a CI gate integration, and a knowledge base reader. The Service is provided as software delivered to the Customer's local environment (on-premise execution model) with a cloud-hosted wizard for initial package generation.

3. License Grant

Subject to your payment of applicable fees and compliance with these Terms, Vestral grants you a limited, non-exclusive, non-transferable, non-sublicensable licence to: (a) install and run the Vestral software on systems owned or controlled by your organisation; (b) use the setup wizard to generate constitutional packages for projects within your licensed tier; and (c) allow your developers to interact with the locally running Vestral server. This licence is granted per organisation, not per seat. The licence term is annual unless otherwise stated on your order.

4. Restrictions

You must not: (a) sublicence, resell, redistribute, or transfer the Vestral software or any generated package to any third party without Vestral's prior written consent; (b) reverse engineer, decompile, or disassemble any component of the Vestral software to the extent prohibited by applicable law; (c) remove or obscure any proprietary notices, patent markings, or attribution text from any component; (d) use the Service to develop a competing product or service; (e) circumvent, disable, or tamper with any licence enforcement mechanism, trial expiry logic, or activation system; (f) use the setup wizard or API in an automated or bulk manner to generate packages for resale or distribution; or (g) share, publish, or expose your license key to third parties.

5. Intellectual Property

The Vestral software, including the 8-layer constitutional graph architecture, the governance-constrained reachability algorithm, the AI governance gate method, all source code, engine components, doctrine templates, and generated package structures, are and remain the exclusive intellectual property of Vestral. One or more patent applications covering these systems and methods are pending. Nothing in these Terms transfers any ownership interest to the Customer. The Customer owns the doctrine YAML files and invariant documents they author through the setup wizard; Vestral retains no claim over Customer-authored doctrine content.

6. Trial Period

Vestral offers a free 3-day trial, subject to eligibility (one trial per organisation per 60-day period). During the trial you receive full access to all features of your applicable tier with no restrictions. At the end of the trial period, the locally running Vestral server automatically enters read-only mode. Read-only mode permits viewing of previously computed findings but disables new analysis runs. Activating a paid license restores full functionality. Trial eligibility is determined by email domain and network identifiers. Vestral reserves the right to decline trial access at its sole discretion.

7. Payment Terms

Paid licenses are billed annually in advance. All fees are non-refundable except as required by applicable law or expressly stated in a separate order. Fees are exclusive of all taxes, levies, and duties imposed by taxing authorities, which are the Customer's sole responsibility. Vestral reserves the right to change pricing with 60 days' prior written notice. Continued use of the Service after a price change takes effect constitutes acceptance of the new pricing. Unpaid invoices may result in suspension of license activation.

8. No Warranty

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, VESTRAL EXPRESSLY DISCLAIMS ALL WARRANTIES, INCLUDING BUT NOT LIMITED TO: (A) WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, AND NON-INFRINGEMENT; (B) ANY WARRANTY THAT THE SERVICE WILL BE UNINTERRUPTED, ERROR-FREE, ACCURATE, COMPLETE, OR CURRENT; (C) ANY WARRANTY THAT FINDINGS PRODUCED BY THE SERVICE ARE CORRECT, APPLICABLE TO THE CUSTOMER'S SPECIFIC CIRCUMSTANCES, OR SUFFICIENT TO ACHIEVE ANY COMPLIANCE OBJECTIVE; (D) ANY WARRANTY THAT THE SERVICE WILL MEET ANY REGULATORY REQUIREMENT, INCLUDING BUT NOT LIMITED TO THE EU AI ACT, SOC 2, ISO 27001, OR HIPAA; AND (E) ANY WARRANTY ARISING FROM COURSE OF DEALING OR USAGE OF TRADE. VESTRAL DOES NOT WARRANT THAT THE SERVICE WILL IDENTIFY ALL ARCHITECTURAL VIOLATIONS, SECURITY VULNERABILITIES, OR COMPLIANCE DEFICIENCIES. THE CUSTOMER ASSUMES FULL RESPONSIBILITY FOR EVALUATING AND ACTING UPON FINDINGS.

9. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT WILL VESTRAL, ITS DIRECTORS, OFFICERS, EMPLOYEES, CONTRACTORS, AFFILIATES, OR LICENSORS BE LIABLE TO THE CUSTOMER OR ANY THIRD PARTY FOR ANY: (A) INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, PUNITIVE, OR EXEMPLARY DAMAGES; (B) LOSS OF PROFITS, REVENUE, DATA, GOODWILL, OR BUSINESS OPPORTUNITIES; (C) DAMAGES ARISING FROM SECURITY INCIDENTS, DATA BREACHES, OR SYSTEM FAILURES, WHETHER OR NOT A RELATED FINDING WAS PRODUCED; (D) DAMAGES ARISING FROM THE CUSTOMER'S RELIANCE ON OR DECISION TO ACT UPON ANY FINDING; OR (E) DAMAGES ARISING FROM REGULATORY ENFORCEMENT ACTIONS, FINES, OR PENALTIES — EVEN IF VESTRAL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES AND REGARDLESS OF WHETHER THE CLAIM IS BASED IN CONTRACT, TORT, STRICT LIABILITY, OR ANY OTHER THEORY. IN JURISDICTIONS WHERE LIMITATION OF CONSEQUENTIAL DAMAGES IS NOT PERMITTED, VESTRAL'S LIABILITY IS LIMITED TO THE MAXIMUM EXTENT PERMITTED BY LAW. IN ALL CASES, VESTRAL'S TOTAL AGGREGATE LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS OR THE SERVICE SHALL NOT EXCEED THE TOTAL FEES PAID BY THE CUSTOMER TO VESTRAL IN THE TWELVE MONTHS IMMEDIATELY PRECEDING THE EVENT GIVING RISE TO THE CLAIM.

10. Indemnification

The Customer agrees to indemnify, defend, and hold harmless Vestral and its officers, directors, employees, and contractors from and against any claims, damages, losses, liabilities, costs, and expenses (including reasonable legal fees) arising out of or related to: (a) the Customer's use of the Service, including reliance on any finding; (b) any architectural, engineering, security, or business decision made by the Customer in connection with the Service; (c) the Customer's breach of these Terms; or (d) the Customer's violation of any applicable law or regulation in connection with its use of the Service.

11. Confidentiality and Data Processing

The Vestral analysis engine runs locally on the Customer's systems. Vestral does not receive or store source code, graph data, or findings during normal operation. The AI fix generation feature transmits short, user-selected excerpts of source code to the Anthropic API over encrypted HTTPS solely for the purpose of generating a remediation suggestion; these excerpts are processed in real time and are not retained by Vestral. The setup wizard at app.vestral.io receives the Customer's questionnaire answers or pasted specification text solely to generate the constitutional package; this data is not stored after package generation is complete. Vestral may retain anonymised, aggregated usage metrics for product improvement.

12. Termination

Either party may terminate these Terms with 30 days' written notice. Vestral may terminate or suspend the Customer's access immediately and without notice if the Customer breaches Sections 4 or 5, or engages in conduct that Vestral reasonably determines to be harmful to the Service, other customers, or Vestral's intellectual property. Upon termination, the licence granted herein ceases and the Customer must cease all use of the Vestral software. Sections 5, 8, 9, 10, 13, and 14 survive termination.

13. Disclaimer of Professional Advice

Nothing in the Service or its output constitutes legal advice, regulatory advice, security certification, audit opinion, or engineering certification. Vestral findings are informational tools to assist engineering teams in maintaining architectural consistency. The Customer is solely responsible for obtaining appropriate professional advice regarding legal, regulatory, security, and compliance obligations.

14. Governing Law and Disputes

These Terms shall be governed by and construed in accordance with the laws of the jurisdiction in which Vestral is incorporated, without regard to its conflict-of-law provisions. Any dispute arising out of or related to these Terms that cannot be resolved through good-faith negotiation shall be submitted to binding arbitration in accordance with the rules of a mutually agreed arbitration body, or, where arbitration is not available, to the courts of competent jurisdiction in Vestral's domicile. Customers in the European Union retain the right to seek relief from competent national courts where mandatory consumer protection law so requires.

15. Changes to These Terms

Vestral may update these Terms from time to time. Material changes will be communicated by email or by a notice on vestral.io at least 30 days before taking effect. Continued use of the Service after the effective date of the revised Terms constitutes acceptance. If the Customer does not agree to the revised Terms, they must cease using the Service before the effective date.

16. Entire Agreement

These Terms, together with any applicable order form, constitute the entire agreement between the parties with respect to the Service and supersede all prior negotiations, representations, and agreements. No modification of these Terms is effective unless in writing and signed by an authorised representative of Vestral. If any provision of these Terms is found unenforceable, the remaining provisions continue in full force and effect.

Questions about these Terms? Contact nabil-5@live.com.

Privacy Policy

Vestral · Constitutional System Governance · Version 1.0 · Effective date: 1 June 2026

1. Who We Are

Vestral operates the vestral.io website and the Vestral setup wizard at app.vestral.io. This Privacy Policy explains what personal data we collect, how we use it, and your rights. References to "we," "us," or "Vestral" mean the operator of the vestral.io domain. Contact: nabil-5@live.com.

2. Data We Collect

Wizard usage (app.vestral.io): When you use the setup wizard, we receive the information you enter — your work email address for eligibility checking, the questionnaire answers or specification text you provide, and the identity fields (project name, AI tool preference). We do not receive your source code, repository contents, or any data from your locally running Vestral server.

License activation: When you activate a license, we receive the license key you entered and a pseudonymous machine fingerprint (a hash derived from hardware identifiers) to enforce the one-organisation-per-license policy. We do not collect your name, physical address, or payment card details directly — payment is processed by Stripe, whose privacy policy governs that data.

AI fix generation: When you use the fix generation feature, a short excerpt of the specific violating source code is transmitted to the Anthropic API. Vestral does not store these excerpts; they are processed in transit only.

Website analytics: vestral.io may collect standard web server logs (IP address, user agent, page visited, timestamp) for security and performance monitoring. We do not use third-party behavioural tracking, advertising pixels, or fingerprinting on the marketing website.

Email correspondence: If you contact us by email, we retain the content of that correspondence to respond to your enquiry.

3. How We Use Your Data

Eligibility checking: Your email is used to determine trial eligibility (one trial per organisation per 60 days) and to send you your constitutional package download link.
License management: Your email and machine fingerprint are used to activate and validate your license, send renewal reminders, and provide support.
Service improvement: Anonymised, aggregated usage patterns (not linked to individuals) may inform product development decisions.
Legal compliance: We retain ToS acceptance records (name, title, company, email, timestamp) to evidence contractual consent as required by applicable law.

We do not sell, rent, or share your personal data with third parties for their own marketing purposes.

4. Legal Basis for Processing (GDPR)

For customers in the European Economic Area, our processing bases are: contract performance (processing necessary to deliver the Service you requested); legitimate interests (fraud prevention, security monitoring, anonymised analytics); and legal obligation (retention of ToS acceptance records). Where we rely on legitimate interests, you may object to processing by contacting us.

5. Data Retention

Wizard questionnaire answers and spec text are deleted within 24 hours of package generation. Email addresses for eligibility checking are retained for 60 days (the trial eligibility window), then deleted. License activation records (email + machine fingerprint) are retained for the duration of the license plus 3 years for accounting and dispute resolution purposes. ToS acceptance records are retained for 7 years. Web server logs are retained for 90 days.

6. Data Sharing

We share personal data only with: (a) Stripe, for payment processing (governed by Stripe's Privacy Policy); (b) Anthropic, solely for AI fix generation (source code excerpts only, not personal data); (c) cloud infrastructure providers (e.g. Railway, Cloudflare) for hosting the wizard and website; and (d) law enforcement or regulatory bodies when legally required. All sub-processors are bound by data processing agreements consistent with GDPR requirements where applicable.

7. International Transfers

Vestral operates from outside the European Union. Where personal data of EEA residents is transferred to countries not recognised by the European Commission as providing adequate protection, we rely on Standard Contractual Clauses or other appropriate transfer mechanisms.

8. Your Rights

Depending on your jurisdiction, you may have the right to: access the personal data we hold about you; correct inaccurate data; request deletion of your data (subject to legal retention obligations); object to or restrict processing; and data portability. To exercise any of these rights, contact nabil-5@live.com. We will respond within 30 days. EEA residents have the right to lodge a complaint with their national data protection authority.

9. Security

All data transmitted to our servers uses TLS 1.2 or higher. Access to personal data is restricted to personnel who need it to perform their role. We do not store payment card data. While we implement reasonable security measures, no internet transmission is completely secure and we cannot guarantee absolute security.

10. Cookies

The vestral.io marketing website does not use tracking cookies or advertising cookies. The setup wizard (app.vestral.io) uses a session cookie solely to maintain your wizard state during a single session; this cookie expires when your browser session ends and contains no personal identifiers. We do not use third-party analytics cookies (e.g. Google Analytics).

11. Children's Privacy

The Service is intended for use by organisations and professional developers. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that we have collected personal data from a minor without verified parental consent, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email or by a notice on vestral.io at least 30 days before taking effect. The "Effective date" at the top of this page will be updated accordingly.

Privacy questions or data requests: nabil-5@live.com.

Architecture thatcannot be violated.

AI writes code faster thanhumans can govern it.

Architecture rules decay

AI agents start blind

Audits are manual and expensive

From questionnaire toenforced constitution in minutes.

Describe your system

Receive your package

Run the analysis server

Enforce on every commit

8 semantic layers. Every angle covered.

Layer 6 — Governance

Layer 3 — Trust Boundary

What Vestral shows after analysis.

Vestral controls every path to the repository.

Your constitutional modelin 10 minutes.

One plan for every team size.

Common questions.

First implementation ofgovernance-constrained reachability.

A new category in developer tooling.No direct competitors. Patent pending.

The space Vestral occupies

The enterprise problem

The AI coding shift

Regulatory tailwind

⚖️ Patent protection — 15 claims pending, 3 families

Get in touch

Terms of Service

1. Acceptance of Terms

2. Description of Service

3. License Grant

4. Restrictions

5. Intellectual Property

6. Trial Period

7. Payment Terms

8. No Warranty

9. Limitation of Liability

10. Indemnification

11. Confidentiality and Data Processing

12. Termination

13. Disclaimer of Professional Advice

14. Governing Law and Disputes

15. Changes to These Terms

16. Entire Agreement

Privacy Policy

1. Who We Are

2. Data We Collect

3. How We Use Your Data

4. Legal Basis for Processing (GDPR)

5. Data Retention

6. Data Sharing

7. International Transfers

8. Your Rights

9. Security

10. Cookies

11. Children's Privacy

12. Changes to This Policy

Architecture that
cannot be violated.

AI writes code faster than
humans can govern it.

From questionnaire to
enforced constitution in minutes.

Your constitutional model
in 10 minutes.

First implementation of
governance-constrained reachability.

A new category in developer tooling.
No direct competitors. Patent pending.