immut is the Evidence Trust Layer. It sits underneath your existing compliance tools and anchors every file to the XRP Ledger blockchain with a precise timestamp. This creates tamper-evident, independently verifiable proof that a document existed at a specific moment — court-admissible in 88 countries.

Is blockchain evidence accepted in court?

Yes. Blockchain-anchored evidence has been accepted as legal evidence in US Federal Court (US v. Sterlingov, 2024), the EUIPO across all 27 EU member states (AZ Factory v. Valeria Moda, 2025), China's Supreme People's Court (1,400+ IP cases since 2018), and under EU Regulation 2025/2531. immut certificates are accepted in 88 countries and 171 jurisdictions.

Does my file leave my device?

No. immut generates a SHA-256 hash of your file on your own device. Only the hash is recorded on the blockchain. Your original file never leaves your infrastructure. Public proof. Private work.

Does immut replace Vanta or Drata?

No. immut is the proof layer that sits underneath your existing compliance tools. Vanta and Drata collect your evidence. immut proves when that evidence existed. They complement each other — immut adds the independent timestamp your compliance platform cannot provide.

Which compliance standards does immut support?

immut produces records that satisfy evidence requirements in ISO 27001, ISO 9001, ISO 14001, ISO 45001, SOC 2, GDPR, HMRC R&D, HSE health and safety, KYC/AML, EU AI Act, HIPAA, and more. Any standard that requires dated, tamper-evident records is supported.

What happens if immut shuts down?

Every certificate already issued remains independently verifiable on the public XRP Ledger. The proof does not depend on immut existing. A regulator, a judge, or opposing counsel can verify your certificate on the public blockchain at any time, with or without immut.

Evidence Record

Commercial audit, Australia · 2022 · Fabrication

Australian Construction Contractor: Fraudulent ISO Certificates

Supplier Audit Finding, Australia (c.2022)

Compliance recordsBackdated document

What happened

A tier-2 supplier to a major Australian construction contractor held a supply agreement that required current, valid ISO 9001 and ISO 45001 certification as a contractual condition. During a routine supplier audit, both certificates were found to have been issued by an unaccredited Indian certification body, meaning the certificates had no recognised standing under the IAF multilateral recognition arrangement. The supplier's contract was terminated immediately on discovery, with a loss of $2.1 million in annual contract value. The case illustrates a gap in certificate-based compliance verification: certificates appear valid on their face, and a buyer must actively verify the issuing body's accreditation status to identify fraudulent or invalid certificates. Blockchain anchoring of the underlying quality system records, not just the certificate, would allow a buyer to verify independently that the quality processes documented in the certificate were actually being operated at the time claimed.

Outcome

$2.1 million annual contract terminated. The certificates appeared valid on their face. Neither the certificates nor the underlying quality system held up under scrutiny.

Sources

Secondary source

Primary source being verified.

Public proof. Private work.

immut records a cryptographic hash of your file on the public XRP Ledger at the moment of creation. The timestamp is independently verifiable by anyone.

Anchor your evidence

Evidence Record

See all 43 rulings on record.

Jurisdiction filters, evidence-type filters, and authority sources linked on every case.

Back to all cases|Get started free