01 / 07 COVER
GLACIS BRIEFING ——
GLACIS
GLACIS

Runtime AI Assurance
for Healthcare

Monitor, control, and prove AI system behavior at every inference — across every framework and every jurisdiction.

GLACIS · MAY 2026 · glacis.io
HEALTHCARE AI FRAMEWORK · GLACIS · MAY 2026

Every AI framework is moving towards real-time governance and proof. But no single infrastructure produces it.

🌐
HealthAI

Building national validation infrastructure across 50+ institutional partners in 50+ countries.

🇸🇬
Singapore

AIHGle 2.0 mandates post-market surveillance of all approved AI systems.

🇪🇺
EU AI Act

Continuous monitoring required for all high-risk AI systems at scale.

🇺🇸
United States

Utah Office of AI Policy running live runtime evidence sandboxes now.

🇬🇧
UK MHRA

AI Airlock piloting real-world AI system testing in live clinical environments.

No standardized technical infrastructure exists to continuously prove whether an AI system still does what it was approved to do.

THE GAP

Three questions no single infrastructure can answer today.

⬤ Unanswered

What was the AI system supposed to do?

Intent baselines captured at submission. Never continuously verified against live behavior.

⬤ Unanswered

Did the declared safeguards actually fire?

Controls exist on paper. Independent proof of execution at each inference does not.

⬤ Unanswered

What changed, and when?

Models update. Populations shift. Without signed evidence, no reviewer can assess behavioral drift.

The regulatory direction is convergent. The measurement infrastructure is not.

THE EVIDENCE LAYER · OVERT V1.0

Glacis: The Runtime AI Assurance Layer that monitors, controls, and proves.

i.AutoRedTeam
Break it.

Continuously tests AI agents, tools, retrieval, and workflows. Findings ranked by exploitability and business impact.

ii.Enforce
Block it.

Installs runtime controls at the action boundary. Four control surfaces live: tool allowlist, parameter validation, approval gates, content redaction.

iii.Notary
Prove it.

Signs every test, every block, every fix. OVERT 1.0 open standard. Verifiable offline by any third party.

iv.Regression
Keep testing.

Findings flow back into AutoRedTeam as regression tests. Loop closes automatically. The customer cannot fall behind the threat model.

Most named competitors ship one stage

Each owns part of the path: red-teaming or runtime or documentation. None ship the loop.

Glacis ships the loop

Find, block, sign, regress — automated end-to-end. Every stage produces evidence the next stage consumes. The loop is the product.

THE STANDARD · OVERT V1.0

OVERT: An Open Evidence Standard for Runtime Assurance

OVERT is a cryptographically signed, open receipt format for runtime AI evidence. Each inference produces a compact, tamper-proof record — which controls ran, what policy applied, and what the outcome was — stored locally and verifiable offline by any third party, without exposing patient data.

📖
Open & portable

Publicly versioned at overt.is. Any conformant verifier can check a receipt without Glacis involved.

🔗
Tamper-evident

Signed, chained receipts. Change one byte and the chain breaks. Verifiable offline by any third party.

🌐
Framework-neutral & fully customizable

Maps to EU AI Act, SOC 2, ISO 42001, or any compliance framework simultaneously. Fields and mappings are fully customizable — one evidence format serves every jurisdiction, and every organization's own standards.

What each receipt captures
OVERT · Receipt v1.0
Behavioral signals
Hallucination rate0.03% · within threshold
Drift signatureshift detected · 2026-05-01
Guardrail triggers14 / day · scope guardrail #3
Refusal patternsmed. advice: blocked (×847)
Compliance signals
Consent capturepatient consent verified · #4421
Tool-use audit3 tools · all within allowlist
Provenance
Policy versionv8 · hash 0xb3f1_49aa
Model provenancegpt-4-turbo · classifier v2.3
GLACIS · OVERT
● SIGNED

Per-inference · continuous · standardized · verifiable by a third party without trusting either side

WHAT THE EVIDENCE SUPPORTS

One evidence layer. Every stakeholder. Every jurisdiction.

Regulatory bodies

FDA · MHRA · HSA · EU AI Act

Does the AI system still meet requirements after deployment?

Post-market evidence at every inference

PCCP updates & adverse event support

Chain of custody no vendor can alter

Procurement & accreditation

ORCHA · NCQA · Digital Health Formularies

Do vendor compliance claims hold up in production?

Proves guardrails actually fired

Captures undisclosed model updates

Independent evidence record for listing decisions

Health systems & deployers

How do we maintain oversight across an AI portfolio?

One architecture across all AI systems

Comparable evidence across vendors

Zero PHI egress — data stays in your environment

Cross-jurisdictional operations

Standardized evidence stream across borders.

Singapore receipt verifiable in Geneva, London, Washington

Each jurisdiction keeps its own methodology

No cross-party trust required

AI vendors

How do I generate a single evidence stream that meets all the requirements I need?

One OVERT integration covers every jurisdiction

No custom compliance work per market

Evidence verifiable independently by any reviewer

NEXT STEPS

From shared problem to shared infrastructure.

01 / Institutional reach

Institutional networks provide cross-jurisdictional reach and governance authority.

02 / Technical layer

Glacis provides the runtime evidence layer and the OVERT open standard.

03 / Together

Scalable, adaptive, real-time AI assurance infrastructure — built to work across borders.

Get in touch
Co-Founder & CEO, GLACIS
Joe Braidwood
joe@glacis.io glacis.io
Co-Founder & CMO, GLACIS
Jennifer Shannon, MD
jennifer@glacis.io glacis.io
01 / 07
GLACIS · Glacis briefing · May 2026