HumanosHumanos
Login
By industry
Agentic finance
Capital allocation by AI
Trading
Pre-trade authorization
Treasury
Programmable approvals
Healthcare
Consent at execution time
By role
Engineering
Compliance
Security
Product
By pattern
Agent delegation
Multi-party approval
Standing policies
Customers
Numo — banking
Ralio — operations
DataWhisper — regulated AI
Lusíadas — healthcare
All case studies
Start
Get API keys
Create production credentials
Quickstart
5-minute integration
Dashboard
Manage mandates & receipts
API reference
All endpoints & types
VIA
Open verification protocol
SDKs
TypeScript
npm install humanos
Python
pip install humanos
C#
dotnet add Humanos
Orchestration
n8n
Drop verify() into workflows
Zapier
Trigger-based automation
Skills
LLM 1
Coming soon
LLM 2
Coming soon
LLM …
Coming soon
Core
humanos.verify()
Verify before execution
Requesting approvals
Capture approval at runtime
Revocation
Invalidate credentials
Webhooks
Event-driven integration
Case study·Humanos × Ralio·cs_ralio · v1 · 2026-05-19

Ralio’s agents transact across external marketplaces.
Humanos makes those transactions independently verifiable.

Ralio runs procurement and payment agents that source vendors, compare pricing, and execute purchases across external B2B marketplaces. Humanos sits at the merchant boundary and verifies every transaction before it executes.

Domain
Autonomous procurement & paymentsB2B commerce
Surface area
Marketplaces · Merchants · ProcessorsExternal counterparties
Integration
humanos.verify()One call · at the merchant boundary
Site
ralio.co ↗Agent runtime · 2026
§ 01 · About the customer

Ralio is an agent runtime for autonomous commerce, where agents transact across external marketplaces.

Procurement and payment agents source vendors, compare pricing, and execute purchases across external B2B marketplaces.

Humanos sits at the merchant boundary and verifies every transaction before it executes — identity, scope, counterparty, amount, validity.

Ralio
Integrated
Domain
Autonomous procurement & payments
Surface area
Marketplaces · Merchants · Processors · Acquirers
Runtime
ralio.agents.v3
Integration
humanos.verify() · one call
Site
ralio.co ↗
Anchored
2026-05-19 · v1
§ 02 · Problem

Transactions cross trust boundaries
no runtime can speak for.

Agents now transact with external counterparties. Merchants, marketplaces, processors, and acquirers do not trust the agent’s runtime — and runtime guardrails alone cannot prove a human authorized the action.

What’s happening

Agents act, money moves, no external party verifies.

Decisions are defined in one system. Agents execute in another. Settlement happens across merchants, processors, and networks the customer does not control. Nothing answers, in real time, whether a specific transaction was actually authorized by a human.

runtimemerchantprocessorfragmented
What it costs

Closed channels. Stranded trust. Unprovable authority.

Authorization is local application state. External counterparties cannot verify the agent acted within scope. Audits reconstruct trails after the fact. Every new integration restarts the work.

no shared answer·“was this allowed?”
Authorization stops at the runtime boundary. Commerce doesn’t.
§ 02 · close
§ 03 · Solution

Verification captured in real time,
at the moment of execution.

When the merchant accepts an agent transaction, Humanos verifies the mandate live — identity, scope, counterparty, amount, validity — and returns a deterministic decision before settlement.

verification.capture · at the merchant boundary
2026-05-19 14:02:18.412 UTC
Merchant
techsupply.eu
DID:web:techsupply.eu
Transaction
€ 23,840.00
12 × MacBook Pro 14"€ 21,588.00
12 × USB-C dock€ 1,548.00
Shipping & VAT€ 704.00
Total€ 23,840.00
x-humanos-mandate · 0xA13F…84e9
Initiated by · Ralio procurement agent
on behalf of: Finance Lead, ACME GmbH
humanos.verify() · live capture
82 ms
identityprincipal verified
12 ms
scopeprocurement · hardware
21 ms
counterpartyapproved vendor list
35 ms
amountwithin € 24,000.00 ceiling
58 ms
validitymandate active until 2026-06-19
71 ms
Authorized · proof emitted
proof:0xA13F…84e9 · attached to settlement
✓ Authorized

Merchant proceeds.

Within mandate, within constraints, within validity. The merchant settles. A Proof is attached to the transaction — portable, verifiable by any party.

✕ Not authorized

Recover — then continue.

Out of scope, expired, or revoked. Humanos requests step-up approval in real time (SMS, API), updates the mandate, and resumes once authorization is valid.

The merchant verifies the mandate directly through Humanos — not the agent’s runtime.
§ 06 · Implementation

How Ralio implemented it.

Five stages in chronological order. The animation on the right is the exact flow from our product page — adapted to Ralio’s €23,840.00 procurement order, settled at techsupply.eu.

01
§ 01 · Issue

Define mandate.

Finance lead authorizes scope, counterparties, ceiling, and validity. Humanos issues a machine-verifiable mandate — signed once, reusable across every merchant that verifies.

ApproverFinance Lead · ACME GmbH
Scopeprocurement · hardware
Ceiling€ 24,000.00
Valid until2026-06-19
02
§ 02 · Prepare

Agent prepares action.

Ralio runtime sources vendors, compares pricing, and assembles the procurement order. The agent attaches the mandate to its outbound request as x-humanos-mandate.

Agentralio.procurement.agent
Order12 × MacBook Pro · 12 × dock
Vendortechsupply.eu
Total€ 23,840.00
03
§ 03 · Verify

Merchant verifies.

At checkout, the merchant calls humanos.verify() directly against the mandate — not against Ralio’s runtime. Identity, scope, counterparty, amount, and validity are checked in 82 ms.

Callertechsupply.eu (DID:web)
Identityverified · 12 ms
Amount€ 23,840 ≤ € 24,000 · 58 ms
Latency82 ms total
04
§ 04 · Settle

Execute payment.

Authorized → payment settles. Not authorized → merchant declines deterministically. For Ralio’s out-of-scope attempts (a €50,000 server rack), Humanos blocks at the boundary and triggers real-time step-up authorization.

Authorized€ 23,840.00 · settled
Blocked€ 50,000.00 · out_of_scope
Recoverstep-up · SMS · resumes
05
§ 05 · Prove

Audit proof.

Every transaction emits a cryptographic Proof — attached to the settlement, portable forever. Auditors, processors, and acquirers verify the Proof directly against Humanos; nothing reconstructs trails from internal logs.

Proof IDproof:0xA13F…84e9
Attachedsettlement.receipt
VerifiersAuditor · Processor · Acquirer
Resultindependently verifiable · forever
Live · humanos.verify() · Ralio × techsupply.eu
§ 01 · Issue
01 · Issue · mandate signed by Finance Lead
mandatesigned
subject: "ralio.procurement.agent",
principal: "finance.lead@acme.gmbh",
action: "purchase.execute",
scope: ["procurement", "hardware"],
counterparty: approved_vendor_list,
amount_max: "€ 24,000.00",
valid_until: "2026-06-19"
02·03·04 · Prepare → Verify → Settle
  1. A1Purchase 12 × MacBook Pro 14"authorizedmissingrequesting…approvedout_of_scope
    at techsupply.eu · € 21,588.00
  2. A2Add 12 × USB-C dock + shippingauthorizedmissingrequesting…approvedout_of_scope
    at techsupply.eu · € 2,252.00
  3. A3Procure € 50,000 server rackauthorizedmissingrequesting…approvedout_of_scope
    at racks-direct.de · exceeds € 24,000 ceiling
  4. A4Add new vendor: AcmeCloud (SaaS)authorizedmissingrequesting…approvedout_of_scope
    step-up SMS · resolves · resumes
verify() — called by the merchant, not by Ralio
await humanos.verify({ subject, action, amount, counterparty, mandate }) // 82 ms · deterministic
settled · € 23,840.00 · at techsupply.eu
0xA13F…84e9
05 · Prove · cryptographic receipt, attached to settlement
proof.jsonsigned
{
  "who_approved": "Finance Lead · ACME GmbH",
  "merchant": "techsupply.eu",
  "action": "purchase.execute",
  "amount": "€ 23,840.00",
  "scope": ["procurement", "hardware"],
  "mandate": "0xA13F…84e9",
  "validity": "≤ 2026-06-19",
  "timestamp": "2026-05-19T14:02:18.412Z",
  "signature": "0xA13F…84e9"
}
AuditorProcessorAcquirerverify(proof)true
✓ proof attached · independently verifiable · forever
§ 04 · Outcome

What you get
the moment it’s wired in.

01 · Verify

Every transaction verified before execution.

Nothing settles on assumption. The verify call is non-optional and inline — at the merchant boundary, not just inside the agent.

02 · Portable

Authorization travels with the action.

Issue once, verify anywhere. The same mandate works across merchants, processors, networks, and acquirers.

03 · Independent

External counterparties verify directly.

Merchants check authority against Humanos. They do not have to trust Ralio’s runtime or your audit logs.

04 · Audit

Auditability without building logs.

Each transaction emits a cryptographic Proof attached to the settlement. Auditors query; they don’t reconstruct.

05 · Update

Change rules without code changes.

Issue a new mandate. Revoke the old one. Effective immediately, everywhere a system verifies.

06 · Recover

Recover missing authorization in real time.

Out-of-scope action? Humanos collects approval (SMS, API, KYC) and resumes execution once the mandate is updated.

Autonomous systems operate safely in the open economy — within provable, externally verifiable boundaries.
§ 05 · System flow

Agent → verify() →
execute → prove.

Live · 25s loop · verify → recover → continue → prove·humanos.verify()
Agentprepares actionverify()humanos.verify(...)82ms · deterministicMandatesubject · scope · limitsAllowwithin scopeNot authrecoverUserapprove · KYC · SMSExecutevenue / railProofreceipt · anchoredMerchantProcessorMarketplace00 · IDLE01 · Agent prepares02 · verify() called03 · Out of scope04 · Request approval05 · Mandate updated06 · Re-verify · auth07 · Execute08 · Proof emitted
§ 07 · Build vs Humanos

Authorization doesn’t scale
as an internal system.

Build it yourself

Internal authorization

With Humanos

Shared authorization layer

Trust ends at the runtime boundary.
Authorization is independently verifiable outside the runtime.
External merchants must trust the agent provider.
Merchants verify the mandate directly against Humanos.
Authorization is local application state.
Authorization is a portable, machine-verifiable object.
Audit reconstructed from internal logs.
Proof attached to every settlement, portable forever.
Every integration restarts the work.
One verify() call covers every counterparty.
Permission changes require system rebuilds.
Revoke the mandate; effective everywhere on next verify.
§ 08 · Network effect

Authorization becomes a shared primitive — not something rebuilt per system.

Humanos
verify()
Ralio agentcaller
Merchanttechsupply.eu
Marketplaceaggregator
Processorcard · ACH
Acquirernetwork

Mandates work across systems.

Issue once. Verify anywhere — merchants, processors, networks, acquirers.

Counterparties verify independently.

External parties check authority directly, without trusting the agent’s runtime.

Integrations reuse the same standard.

No new logic per venue. The integration is the verify() call.

Each participant strengthens the standard.

The more systems verify against Humanos, the more valuable each mandate becomes.

§ 09 · Use cases

Anywhere agents transact with external counterparties.

01

B2B procurement

Source vendors and execute purchases across external B2B marketplaces — hardware, software, services.

Verify before execution
purchaserenewalsubscription
02

Marketplaces

Buy on marketplaces and aggregators with authorization the marketplace itself can verify before clearing the order.

Verify before execution
checkoutbidsettle
03

Payment processors

Card networks and acquirers verify agent-initiated charges against a human mandate before authorizing the transaction.

Verify before execution
chargecapturerefund
04

Cross-org workflows

Agents acting across partner systems — verified by every system they touch, not just the issuing runtime.

Verify before execution
delegateattestaudit
§ 10 · Model

Issue → Verify → Collect → Prove.

I
01 · Issue

Mandate.

Human authorizes scope. Humanos issues a machine-verifiable mandate, reusable across every system that verifies.

V
02 · Verify

Check.

Any external system runs humanos.verify(). Deterministic yes / no.

C
03 · Collect

Approval.

Out of scope? Request step-up authorization from the human principal in real time — API, SMS, or email.

P
04 · Prove

Receipt.

Cryptographic Proof per action. Auditable forever. Verifiable by anyone.

§ 11 · Category definition

Humanos operates at the moment an agent transacts in the open economy.

At that moment, authorization must be verified, the decision must be deterministic, and the outcome must be provable. Everything else follows.

Portable

Authorization moves with the action.

Across organizations, marketplaces, processors, and networks.

Independently verifiable

External counterparties check authority directly.

No trust in the agent provider required.

Provable

Every transaction carries a portable receipt.

Anyone can verify it. Forever.

Authorization lives in your runtime.
Authorization becomes network infrastructure.