Home / Policy / Methodology

Methodology

How Sovereign Beacon™ ratings are produced, version v1.0.

What a Beacon rating is

A Sovereign Beacon™ rating is an editorial assessment of a hardware product, application, website, AI tool, or privacy law's privacy posture, expressed on a four-state scale (Sovereign · Clear · Warning · Critical). It is an opinion formed from publicly available reporting, regulatory filings, vendor disclosures, and academic work. It is not a statement of intent or a legal finding.

Each weekly batch publishes two ratings per category: two hardware products, two apps, two sites, two AI applications, and two privacy laws — paired so that each category includes one Threat verdict and one Secure verdict. Laws are rated by the same standard as products: Secure when they advance individual privacy (GDPR, state shield laws, end-to-end encryption protections), Threat when they erode it (mandatory backdoor bills, warrantless surveillance reauthorizations, age-verification mandates).

How ratings are produced

1. Reconnaissance. A grounded LLM agent (Google Gemini 2.5 with Search grounding, or Vertex AI in the same configuration) is asked to identify privacy threats and privacy-respecting alternatives across hardware, apps, sites, and AI tools, citing only publicly reported sources from the last 24 months.
2. Citadel staging. The agent's output is posted through the Embassy Gateway (origin-validated, HMAC-signed) to a local Citadel staging buffer. Nothing is published from staging.
3. Manual review. The operator reviews each card individually: verifies every cited source resolves, checks that claims match the underlying reporting, and either approves, rejects, or amends the card.
4. YubiKey-gated commit. Approval requires a physical YubiKey OTP plus master PIN; the approved card is signed by a Marlowe physical core key and committed to the permanent vault.
5. Publish. Approved cards are mirrored from the vault to this archive as permanent URLs; the latest 20 surface on hectec.org.

Source standards

• Every material claim is backed by at least one named, dated, publicly accessible source.
• Preferred sources: regulators (FTC, state AGs, EU DPAs), reputable press (Reuters, AP, EFF, Mozilla Foundation, established trade press), peer-reviewed work, and primary documents (policies, settlements, court filings).
• The agent is instructed to fail loudly rather than invent sources; cards without verifiable citations are rejected at review.

Beacon-state criteria

• Sovereign — Software or hardware that keeps data on the user's device by default, with no telemetry to vendor servers.
• Clear — Vendor processes data but with strong defaults, named retention, end-to-end encryption where applicable, and no documented adverse findings.
• Warning — Vendor processes data with concerning defaults, opaque retention, or documented but unresolved concerns.
• Critical — Documented regulatory finding, settlement, breach, or surveillance behavior; or business model fundamentally relies on covert data extraction.

Editorial independence

Sovereignware™ accepts no payment, sponsorship, or other consideration from any rated party. HecTec Labs is the editorial author; Sovereignware™ is the canonical archive.

Re-evaluation

Each rating is re-evaluated when (a) the rated party publishes a material policy change, (b) a regulator issues a new finding, (c) a rated party submits a right-of-reply response, or (d) at minimum, every twelve months. Re-evaluation does not delete the prior rating; the archive preserves the chain.