Durability Test · Pillar Series11 min read

When the Builders Are Gone: Audit Evidence That Survives the Team

Evidence that is sufficient today — read by the people who built the system — is a different thing from evidence still defensible eighteen months later, to someone who never met them. The gap between those two is the test most audit trails were never designed to pass.

Harish KumarHarish Kumar
··Part of: The EU AI Act Audit-Trail Stack

1. The Test, Stated Plainly

The sharpest formulation of what audit really demands came from Sue Eze, an AI governance and technology-risk lead, in a public comment in 2026:

“The true test of AI auditability is whether the evidence remains understandable and defensible when the people who built the system are no longer present.”

Sue Eze Sue Eze, Operational AI Governance & Technology Risk

It is a deceptively demanding bar. Most audit trails are sufficient in the room — while the engineer who built the pipeline, the analyst who set the thresholds, and the manager who signed it off are all still available to explain what everything means. The test Sue Eze names removes those people and asks whether the evidence still holds. If it does not, it was never really externalised; it was leaning on the team.

2. Systems Outlive the People Who Build Them

The reason this is not a theoretical concern is timing. AI systems run for years; the people who built them rarely stay that long. A decision made today may be questioned in 2027 or 2028 by which point the original engineers have changed roles, the analysts have left, and the approving director may be at another company. The audit happens precisely when the institutional memory is gone.

An audit trail that needs interpretation — “this field meant that,” “we set the threshold there because,” “the policy at the time was” — fails at exactly the moment it is needed, because the people who could supply the interpretation are no longer there to supply it. Designing for personnel change is not a nicety; it is the normal case for any system that matters.

3. The Same Test, One Layer Up: the Director

Sue Eze's test generalises a point Guy Miller has made about the accountable individual. Where Sue asks whether the system's evidence survives the team, Guy asks whether the director's personal evidence survives the director:

“Can the named director who approved the deployment produce personal independent evidence of what they did to satisfy themselves the architecture was operating correctly, evidence that is theirs, not the vendor's, not the company's, and survives their departure from the organisation?”

Guy Miller Guy Miller, Director-Attestation Layer · Archimedes Lever

This is the director-attestation lane, and it is Guy Miller's to develop — covered in depth in director attestation under Articles 26 and 27. The point here is only that it is the same durability test, applied to the person rather than the system: evidence that is theirs, and that outlasts their tenure. The substrate's job is narrower — to make the underlying record reconstructable so that whatever the director attests to can be backed by something a stranger can check.

4. What Makes Evidence Self-Contained

“Keeping documents” does not, by itself, pass the test. A document store can still depend on institutional memory to be read correctly. The stricter property is that the decision can be reconstructed and confirmed from the record alone, using only public information, by someone who does not trust the operator and never met the team.

Concretely, that means three things are captured in the record itself rather than in someone's head: the reasoning path the decision walked, the evidence it touched, and the framework version in force at the time. And it means the record can be checked independently — for example, with a standalone offline verifier that uses public keys alone, with no account and no vendor code, as described in the offline proof verifier. If a stranger can reconstruct the decision without anyone from the original team, the evidence has survived the team.

5. The Honest Limit

Durable evidence is necessary, not sufficient. A perfectly self-contained record of a poor decision is still a record of a poor decision — surviving the team does not make a decision right, and the substrate does not decide whether the action it recorded was permitted to bind. What it guarantees is narrower and load-bearing: that whoever has to answer for the decision later — an auditor, a regulator, a successor, the director themselves — has a record that stands on its own rather than one that quietly required the people who are no longer there.

Continue Reading

Frequently Asked Questions

What is the real test of AI auditability?

As stated by Sue Eze in 2026, whether the evidence remains understandable and defensible when the people who built the system are no longer present. Evidence that only makes sense while its authors explain it has not been externalised; it still depends on them.

Why does personnel change matter?

AI systems outlive the teams that build them. When a decision is questioned months or years later, the engineers, analysts, and approving director may all have moved on. If the trail relies on their tacit knowledge, it fails when it is needed. Design for the record to be reconstructable by someone who was never there.

How does this relate to director attestation (Articles 26/27)?

Guy Miller asks whether the named director can produce personal, independent evidence that is theirs and survives their departure. It is the same durability test applied to the accountable individual. That is Guy Miller's director-attestation lane; the substrate's role is to make the underlying record reconstructable.

What makes audit evidence self-contained?

It can be verified using only the record and public information — not the operator's runtime, not an account, not a person to explain it. The reasoning path, evidence touched, and framework version are in the record, and it can be checked independently (e.g. with a public-key-only offline verifier).

Does keeping documents satisfy this test?

Not necessarily. A document store can still depend on institutional memory. The stricter test: can the decision be reconstructed and confirmed from the record alone, by someone who does not trust the operator and never met the team? That is a property of how evidence was produced, not how much was stored.

Sources cited above (all verified and accessed 3 June 2026):

  • EU AI Act Article 26 — Obligations of Deployers of High-Risk AI Systems — artificialintelligenceact.eu/article/26/
  • EU AI Act Article 27 — Fundamental Rights Impact Assessment — artificialintelligenceact.eu/article/27/
  • Contributor quotes (Sue Eze, Guy Miller) reproduced verbatim from public LinkedIn posts and comments, 2026. Each is named with their full name, role and LinkedIn profile URL at first mention.