Tombstone is a cryptographic notary for data lifecycle events. It records what happened, signs the chain, and issues a certificate no party can alter after the fact.

A deletion occurred. Tombstone witnessed it, signed it, and stored the chain. The certificate predates any inquiry.

Deletion without documentation is a statement. Tombstone makes it a record.

CPPA §7122 holds that audit findings cannot rely primarily on management assertions. Tombstone provides the independent third-party record that satisfies that standard.

Request a Demonstration
tombstone — verify

Live event stream — hover to pause

The Lifecycle Chain — scroll to build

0 / 5 events signed

01

deletion_window_opened

a1b2c3d4…

Regulatory clock started

02

execution_started

e5f6a7b8…

Agent authenticated

03

versions_enumerated

c9d0e1f2…

4 targets catalogued

04

purge_versions_executed

a3b4c5d6…

4 / 4 purged

05

deletion_complete

e7f8a9b0…

Chain sealed

CHAIN VERIFIED · ok: true

5 events · Ed25519 · violations: []

scroll

Independent Verification

Any party can verify the chain. No account required.

The certificate contains a public verification URL. Regulator, auditor, or the individual who made the request — any party queries the same endpoint and receives the same cryptographic result.

The record lives outside your systems. That is what makes it independent.

Most deletion records live inside the company being audited. Tombstone's record does not.

verify.tombstone.sh

The Certificate

TOMBSTONE
CRYPTOGRAPHIC DELETION CERTIFICATE

Certificate No.

TS-2026-d698be2c5a1c

Issued June 25, 2026 21:01 UTC

Regulation

CCPA 1798.105 — Right to Delete

Deletion Status

VERIFIED

Versions Deleted

4 of 4

Events in Chain

5 — signed, hash-chained

Algorithm

Ed25519

Retained Until

June 25, 2028

Scope Hash — one-way only. No raw identifiers held by Tombstone.

sha256:7f3a9e2d1b4c8f6a5e3d2c1b0a9f8e7d6c5b4a3f2e1d0c9b8a7f6e5d4c3b2a1

Verify at verify.tombstone.sh — no account required tombstone.sh

The Regulatory Context

§7122 CPPA audit findings cannot rely primarily on management assertions. Verbal confirmation of deletion is not a sufficient record under California's enforcement standard. Tombstone provides the independent third-party record that satisfies that standard.
Aug 1 California's DELETE Act — DROP program begins August 1, 2026. Registered data brokers must fulfill verified deletion requests within 45 days, with documented proof of compliance.
Art. 17 GDPR Article 17 — Right to Erasure. The same evidentiary gap applies across jurisdictions. Tombstone issues certificates for any supported regulation.

The record exists before anyone asks for it,
or it does not exist at all.

Request a Demonstration

We respond within one business day.