{
  "schema": "mvg.impact_assessment_descriptor@1",
  "issued_utc": "2026-02-22T00:00:00Z",
  "canonical_surface": "https://meridianverity.com/impact/assessment/",
  "boundary": {
    "public_safe": true,
    "non_binding_unless_incorporated": true,
    "not_a_certification": true,
    "no_patent_license_by_publication": true,
    "privacy_note": "This descriptor is public-safe. Customer-specific values and sensitive details may be withheld or provided under diligence/NDA."
  },
  "summary": {
    "one_liner": "Impact assessment turns public-impact risk into replayable receipts (fail-closed).",
    "purpose": "Provide a consistent, auditor-friendly method to identify, measure, and mitigate social impact and harm scenarios for high-risk automation and AI systems."
  },
  "policy": {
    "minimum_elements": [
      "System + scope (intended use, deployment context, allowed/disallowed actions)",
      "Affected stakeholders (public-safe categories)",
      "Top impact scenarios (harms + severity + likelihood)",
      "Controls mapping (Verify \u2192 Permit \u2192 Gate) + reason codes",
      "Evidence pointers (DSSE / packets / transparency / policies)"
    ],
    "metric_families": [
      "Side-effect prevention (unpermitted action attempts \u2192 HOLD/DENY rate)",
      "Audit replay success (offline reproducible verification success rate)",
      "Time-to-approval reduction (ticket completion time; method published)"
    ],
    "outputs": [
      "PASS",
      "HOLD",
      "FAIL"
    ],
    "fail_closed_policy": {
      "missing_required_sections": "HOLD",
      "missing_signature": "HOLD",
      "invalid_signature": "FAIL",
      "inconsistent_evidence": "FAIL"
    }
  },
  "template": {
    "public_safe_template_url": "https://meridianverity.com/impact/assessment/template/",
    "note": "Publish a public-safe assessment and keep a private addendum for NDA-bound details. The public-safe version proves the method exists and is replayable."
  },
  "discovery": {
    "trust_center": "https://meridianverity.com/trust-center/",
    "receipt_finder": "https://meridianverity.com/search/",
    "security_review_packet": "https://meridianverity.com/trust/security-review/",
    "governance_descriptor": "https://meridianverity.com/.well-known/mvg-governance.json",
    "aims_descriptor": "https://meridianverity.com/.well-known/mvg-aims.json"
  },
  "verification": {
    "detached_signature_url": "https://meridianverity.com/.well-known/mvg-impact-assessment.json.asc",
    "verify_hint": "gpg --verify mvg-impact-assessment.json.asc mvg-impact-assessment.json",
    "expected_output_hint": "gpg: Good signature (fingerprint matches pinned trust anchor)"
  }
}