PLENA’s method separates readable structure, evidence readiness, issuer confirmation, and signed production verification. This protects trust by avoiding overclaiming.
Each level answers a different question. Public verification can be open, but higher-confidence creation and management can remain paid or institutional.
Does the receipt ID or QR link have a recognizable PLENA/VRX-1 pattern?
Does the receipt include the required public fields: protocol, receipt ID, issuer, type, timestamp, status, privacy level, and sharing mode?
Does the receipt point to evidence references, human actions, source checks, or next-step documentation without exposing unnecessary private data?
Does a trusted registry or issuer endpoint confirm that the receipt exists, is not revoked, and matches public metadata?
Does production infrastructure confirm hash/signature, issuer key, audit log, revocation status, and permission scope?
The same ladder can support individuals, institutions, and central services without turning every page into a database.
| Workflow | Receipt question | Likely level |
|---|---|---|
| PlenaProof Vault | Can this person share a readable proof profile and selected receipt timeline? | L1–L2 preview, L3–L4 later |
| AI Oversight | Can the institution show human review of an AI-assisted decision? | L2 now, L3–L4 production |
| Agent Receipts | Can a user show what an AI agent did and whether a human approved it? | L1–L2 preview |
| ORIGINA | Can a creator or founder show priority, authorship trail, contract, or NDA record? | L2 with future L4 signing |
| PROVA | Can a person or institution show evidence readiness and action history? | L2 with registry option |
| SIGILLA | Can a sealed packet show routing, custody, and selected verification status? | L2–L4 depending on deployment |