All projects

DeepSeal

DeepSeal uses Chainlink CRE to turn off-chain RWA compliance into enforceable on-chain trust.

DeFi & Tokenization CRE & AI Risk & Compliance Privacy

What it is

  • DeepSeal is a confidential compliance orchestration layer for real-world asset tokenization. It takes the full due-diligence path around an asset submission,document verification, business KYB, private data handling, AI-based risk review, and final approval and turns it into a single, structured workflow. The core of the system is Chainlink CRE, which acts as the execution engine that connects on-chain state, external services, and final on-chain enforcement in one deterministic pipeline.
  • A user submits a diligence request on-chain with a subject address, a document bundle hash, and a metadata URI pointing to the uploaded asset documents. Chainlink CRE then powers the full execution flow: it reads the request from the smart contract, resolves and verifies the submitted document bundle, runs KYB through a provider backed by Sumsub, settles the provider payment through x402, redacts sensitive information through Confidential HTTP, and sends the sanitized data to AI risk scoring. CRE then merges the KYB result and AI result under deterministic policy rules and produces one final report. That report is submitted on-chain to the protocol receiver contract, which updates the compliance registry, creates an EAS attestation, records ERC-8004 agent reputation signals, syncs the asset record, and links or creates a dedicated ERC-4626 vault for that asset.
  • The problem DeepSeal solves is the trust gap between off-chain compliance and on-chain capital. RWA protocols need external verification before they can safely allow minting, deposits, or access, but most current implementations depend on fragmented backend systems, manual operator judgment, and provider responses that are not directly enforceable by the protocol. DeepSeal uses Chainlink CRE to make that process deterministic and auditable: sensitive checks remain private, external services are integrated securely, and the final result becomes a canonical on-chain source of truth that other contracts can enforce. In practice, this means DeepSeal turns off-chain RWA compliance into trusted on-chain policy.

How it Works

  • DeepSeal is built as a hybrid on-chain and off-chain system, with Chainlink CRE as the central execution layer. The frontend is a Next.js application that lets users submit diligence requests, run the workflow, and inspect compliance, vault, and ERC-8004 agent state in real time. The processing flow is exposed through a streaming API route, so the UI can show each workflow step live as the request moves from off-chain verification to on-chain settlement.
  • The on-chain layer is implemented in Solidity and deployed on Base Sepolia. DiligencePortal is the entry point where a user submits a request with a subject address, document bundle hash, and metadata URI. RWAComplianceReceiver is the contract that accepts the final workflow report and applies the protocol side effects. It writes canonical approval state into ComplianceRegistry, records asset-level state in RWAAssetRegistry, resolves or creates per-asset ERC-4626 vaults through RWAVaultFactory, and stores immutable attestation proof through EAS. The system also integrates the official ERC-8004 registries so agent identity and reputation signals are written on-chain alongside the compliance result.
  • The off-chain orchestration is implemented in a Chainlink CRE workflow written in TypeScript. CRE starts from an HTTP trigger with requestId, reads the request on-chain, resolves and verifies the submitted document bundle, performs KYB through a provider service, settles x402 payments, runs Confidential HTTP for sensitive calls such as document resolution, PII redaction, and audit delivery, and then sends the redacted payload to Gemini for AI risk scoring. After merging the final decision, the workflow produces the canonical report payload that is sent on-chain to RWAComplianceReceiver. Supporting this workflow is a Node.js provider service that handles Sumsub request signing, x402 seller-side verification, document resolution, PII redaction, and the confidential audit webhook. Foundry is used for smart contract development, deployment scripts, and protocol tests.

Links

Created by

  • Arunabha Dhal