Government
Government / federal agency AI
FISMA MFA, IP allowlist, PII + PHI drop, geo blocklist, dual approval — OMB M-24-10 aligned.
What this package does
OMB M-24-10 and FISMA-aligned guardrails for federal and state government AI deployments. Enforces role-gated access, restricts connections to approved IP ranges, drops all PII and PHI before logs, blocks connections from embargoed countries, and requires supervisor dual approval on any action that touches citizen records. Every event is retained for the full government records schedule.
Designed for
- Federal and state agency AI deployments
- Government contractor AI systems
- Public-sector case management AI
What's included
- IP allowlist (government network CIDRs)
- FISMA-compliant MFA ≤ 15 minutes
- PII + PHI drop strategy (not mask)
- Geo blocklist (OFAC embargoed jurisdictions)
- Dual approval: supervisor countersign on citizen data
- 7-year immutable records retention
Controls in this bundle
Profile tiers
Switch profiles in Studio to retune default thresholds across the whole bundle without rewriting any control by hand. This package ships at enterprise — anything you've already tightened by hand is preserved on switch.
Every control in this package uses identical parameters across all four profiles. Switching profile in Studio has no effect here.
Attestation
The canonical hash of these bundle bytes is sha256:48eab1bc848fb3e1f6b0e3277c44d4b4956bbe82340c10ed298dd3eb5efcb999. The same hash is computed at lock time, at Stripe checkout, and again on the runtime side before any byte is honored.
Want to customize first? Opening this package in Studio prefills the canvas with the 11 controls above. You can add, remove, or retune any of them before you lock the hash and pay.