How Cali works

How Cali supports reliable digital asset investigations.

This page explains the principles behind Cali's investigation methodology: evidence handling, provenance review, enrichment context, structured analysis, analyst control, and review-ready documentation. It is written for compliance, investigations, audit, security, legal, and technical reviewers evaluating how Cali supports digital asset investigation work.

Descriptions are informational only and do not constitute legal, regulatory, or supervisory advice.

Why methodology matters

Digital asset investigations are reviewed under scrutiny—by supervisors, counsel, auditors, and external parties. Methodology defines how evidence is preserved, how conclusions are reached, and whether work can be explained months later without relying on memory alone.

Cali is structured around reviewability and evidence continuity: underlying activity remains distinguishable from enrichment, risk context, and analyst-reviewed interpretation. Investigators retain control over findings, escalations, and reporting.

Repeatable workflows support reproducibility when matters are reopened, escalated, or challenged. Teams can show what was reviewed, what context was considered, and how outputs were validated—not only what conclusion was recorded.

This documentation describes operational principles for audit readiness. It does not disclose proprietary detection logic, internal scoring methodologies, or implementation details.

Core principles

The following principles guide how Cali supports investigation work across modules and review stages.

Evidence before interpretation — Source activity and records precede summaries, risk context, and drafted findings.
Investigator-led conclusions — Analysts remain responsible for review, escalation, filings, and final determinations.
Reviewable outputs — Work products are structured so supervisors and reviewers can validate basis and reasoning.
Context without replacing judgment — Enrichment and indicators support review; they do not substitute institutional policy or human decision-making.
Repeatable workflows — Cases, exports, and documentation support consistent handling when matters continue or reopen.

Evidence handling

Cali is designed to help investigators distinguish source activity from enrichment, risk context, and analyst-reviewed interpretation.

Source activity

On-chain transactions, logs, traces, transfers, timestamps, addresses, and amounts.
Chain metadata such as block heights, fees, contract addresses, and token properties.
Imported centralized or fiat-linked records where provided.

Investigation context

Entity, service, token, protocol, and address context where available.
Risk, typology, behavioral, and exposure indicators used to support investigation review.
Structured summaries and reporting drafts that remain subject to analyst review.

The objective is to make investigation work easier to review, explain, and document without hiding the underlying activity.

Data intake and standardization

Cali helps investigators work across blockchain activity, centralized records, and fiat-linked data without rebuilding every matter from scratch.

Standardizes transaction activity into investigator-readable records.
Preserves key source fields needed for review, reconstruction, and export.
Supports timestamps, hashes, addresses, assets, amounts, fees, and chain metadata.
Can incorporate centralized exchange records, deposits, withdrawals, conversions, and other fiat-linked activity where provided.
Designed to support multi-chain and multi-rail investigation work.

Risk and typology context

Cali surfaces investigative indicators used by AML, fraud, cyber, forensic, and compliance teams. These indicators support review; they are not automatic legal, regulatory, or SAR/STR determinations.

Structuring, layering, velocity, clustering, and abnormal movement patterns.
Mixer, bridge, high-risk service, scam, fraud, and adverse-context indicators where supported.
Behavioral patterns based on timing, amount bands, movement direction, and known investigative typologies.
Risk and typology context remains subject to human review, institutional policy, and escalation standards.

Provenance and exposure analysis

Cali is designed to help investigators reconstruct how value moved, where exposure may have occurred, and which counterparties or services appear relevant to the review.

Supports multi-hop transaction analysis across supported chains and assets.
Helps identify counterparties, intermediaries, services, clusters, contracts, and off-ramp context where available.
Supports visual and tabular review so investigators can move between flow views and transaction-level records.
Prioritizes investigative clarity over exhaustive visualization of every technically connected event.
Findings remain tied to underlying activity so reviewers can validate the basis for conclusions.

OSINT and external context

Cali treats OSINT as contextual intelligence that supports investigation review. It is not a substitute for institutional screening programs, escalation procedures, or final determinations.

Sanctions, PEP, adverse media, complaints, leaks, and victim-system context where available.
Entity and service context aligned to wallets, counterparties, names, domains, or other identifiers where supported.
Clear separation between factual source material, contextual signals, and analyst conclusions.
Institutions remain responsible for their own screening standards, escalation decisions, and final determinations.

Cali Panels and analyst control

Cali Panels are designed to accelerate understanding, not replace investigators. They help organize activity, surface risk context, summarize findings, and prepare review-support text inside the platform.

Panel outputs are intended for review, editing, approval, or rejection by investigators.
Outputs should be validated against underlying activity, source records, and institutional standards.
Cali does not make legal, regulatory, enforcement, or filing determinations.
Investigators retain responsibility for conclusions, escalations, filings, and external disclosures.

Reviewability and audit support

Cali is designed to support investigation work that may need to be reviewed by supervisors, counsel, auditors, regulators, courts, or external partners.

Preserves transaction identifiers, timestamps, addresses, assets, amounts, and source fields needed for review.
Supports exports and structured documentation for downstream investigation files.
Helps separate factual activity, contextual indicators, and analyst-reviewed conclusions.
Supports repeatable case review when matters are reopened, escalated, or externally challenged.

Operational performance

Cali is built for high-volume investigation work involving large transaction sets, multiple chains, and complex exposure paths.

Supports large tables, long timelines, and dense transaction histories.
Supports graph and provenance review for multi-hop activity.
Prioritizes responsiveness during active investigation and review.
Caching and performance features support usability but do not replace source-of-truth checks where required.

Limitations and responsibilities

Cali supports digital asset investigation work. It does not replace institutional judgment, legal advice, regulatory obligations, or required screening and reporting procedures.

Cali is not a KYC system, sanctions screening engine, regulator, auditor, or law firm.
Cali does not perform identity verification or customer due diligence.
Cali does not make legal, regulatory, supervisory, enforcement, or SAR/STR determinations.
Institutions remain responsible for review, escalation, filing, disclosure, and final conclusions.
Cali Panel outputs and review-support text should be validated against source records before use.

Questions about methodology?

Cali welcomes technical and operational discussions with compliance, investigations, audit, security, legal, and public-sector teams evaluating digital asset investigation workflows.

Discuss methodology →Explore the platform →