Onboarding — LitmanProvenance

I

Identify the subject

Who are we protecting?

Every protected identity is registered against an identifier the platform side can resolve. Living artists are protected during life and (in most jurisdictions) for a statutory postmortem term thereafter. Deceased personalities are protected for the term their domicile prescribes.

Status

Living artist Currently living rights-holder, registering their own likeness. Deceased personality Postmortem estate — controlling rights pass through a trust, will, or successor-in-interest.

Legal name The full legal name as it appears on the death certificate or government ID. Public / stage name Used for detection-side matching. Multiple names may be registered. Date of birth Date of death Domicile at death (postmortem) Domicile at the moment of death determines the controlling statute and the postmortem ceiling. Notable archives Free text. Surfaces fingerprinting coverage in Step III.

II

Establish authority

Who has standing to sign?

Postmortem rights pass to a successor by operation of law and instrument. The platform side will not honor an assertion without a chain of authority that resolves back to a verifiable source — a trust, a will, a court order. The chain we build here becomes the evidentiary backbone of every detection, takedown, and recovery downstream.

Role of the signing party

Self Living rights-holder. Trustee Acting under a trust instrument. Successor-in-interest Under testamentary disposition or intestate succession. Court-appointed Conservator, administrator, executor.

Signing party name Authority instrument Counsel of record Optional. Used for downstream enforcement and recovery coordination. Secretary-of-State filing Required in California (AB 1836) before damages accrue. We can file on your behalf.

Trust / will / court order PDF or image. Held under attorney-client privilege; not part of the public consent ledger record. We sign a hash, not the document.

Death certificate Postmortem only. Confirms the controlling-statute period.

Evidentiary chain begins here Every detection, takedown, and recovery we route downstream cites this chain of authority. AB 1836 in California requires registration before damages accrue — most estates do not realize this until their first violation is already in progress.

III

Likeness assets

What references the platform fingerprints?

A protected identity is only as strong as its reference set. We accept reference media in five categories — each becomes a cryptographic fingerprint that our detection arm and partner-platform pre-generation checks match against. The richer the profile, the higher the recall on unauthorized use.

𝄞 Voice

Canonical speaking and performance recordings. Embeddings produced via speaker-identification models survive resampling, codec changes, and partial obfuscation.

No samples listed

◐ Image / Likeness

Reference photographs across the subject's recognizable variants — bearded / clean-shaven, aged / youthful, lit / studio. Face embeddings remain stable across stylization.

No samples listed

▷ Video / Performance

Filmed performance reference — captures gesture, lip movement, on-camera mannerism. Required to detect video deepfakes with high specificity.

No samples listed

~ Mannerism & signature

Free-text description of recognizable verbal cadence, catchphrases, signature movements. Used to train classifier heads and weight similarity scores.

No description provided

⧗ Archive holdings

References to studio masters, broadcast archives, label catalogs the estate controls. Underpins training-data attribution claims when source material is suspected to have been used.

No archive declared

Estimated detection coverage Adjust the asset selection to project recall coverage across voice, image, and video modalities. Selecting all five typically yields 95%+ recall on industry-grade unauthorized AI output.

IV

Declare what is restricted

What we tell the world is denied by default.

The platform side reads this list. When a generator or trust-and-safety system asks "may we use this likeness for X?", the answer is computed from the boxes below. Every capability you restrict is added to the public-facing assertion the rights-holder signs at the end of this wizard.

Voice synthesis voice_synthesis Generation of speech in the subject's voice from text or other input. Includes voice-clone models trained on the subject. Voice conversion voice_conversion Real-time or batch conversion of one speaker's voice into the subject's voice over arbitrary content. Image generation image_generation Synthetic still images depicting the subject. Includes diffusion-model outputs, LoRA-conditioned generation, character-card likeness. Video generation video_generation Synthetic moving-image content depicting the subject. The Sora 2 / Runway / Pika class of model. Face swap face_swap Reattributing the subject's face onto another performer's body. The classical "deepfake" pattern. Motion capture retargeting motion_capture_retargeting Driving an avatar with the subject's signature movement, performance, or gesture library. Training-data use training Use of the subject's likeness in any model-training corpus. Default deny is the structural fact the class-action theory rests on. Embedding extraction embedding_extraction Generating vector representations of the subject for retrieval, classification, or downstream conditioning.

Platform-specific deny list

What this signs You are declaring a default-deny posture across 8 capability classes and 8 named platforms. Every unauthorized use becomes an evidentiary event under your controlling statute.

V

Authorized uses (optional)

The yes-faster pathway.

Restriction is the default; authorization is the exception. If the estate has chosen to engage on specific projects — a studio license, a documentary, a posthumous performance — record those grants here. The same machinery that returns a deny in milliseconds returns an allow in milliseconds.

∅ No grants on file Most postmortem estates begin here. Robin Williams' trust has historically granted no posthumous AI engagements. Living artists may have one or many.

+ Add an authorized grant

Licensee Capability Term (months) Compensation basis

The same record format Restriction assertions and authorization grants are the same data model — only the scope token differs. Verifiers issue a deny in milliseconds when no grant matches, and an allow in milliseconds when one does. No clearance email chain. No human in the verification path.

VI

Term & jurisdiction

For how long. And where.

Every assertion carries an explicit term. Postmortem terms are bounded by the controlling jurisdictional ceiling — your domicile's statute. Within that ceiling, the rights-holder may declare a custom embargo period, a phased release, or a permitted-after date.

Declared term Years from date of death (postmortem) or date of issuance (living). The declared term may not exceed the jurisdictional ceiling. Jurisdictional scope The geographies in which the controlling assertion is published. Adding the EU activates Article 50 of the EU AI Act. Audit disclosure Public audit creates a defensible record of every detection and verification — a credibility multiplier in litigation. Permitted-after-date (optional) A staged release date after which restrictions soften — e.g., archival use permitted after 25 years.

Declared term against jurisdictional ceiling —

VII

Review & sign

The assertion the trust will sign.

What follows is the canonical consent ledger entry produced from your declarations. Sign it — eIDAS, DocuSign, or wet-ink with a notarized affidavit — and the platform side begins enforcing within hours.

Consent ledger entry · draft did:litprov:<tbd>

Subject: —
Authority: —
Controlling statute: —
Term: —
Restricted: —
Authorized grants: None
Audit disclosure: —

Schedule a 30-minute onboarding call