Vigilarx
Sign inTry the demo
Research Security AND Export Control · Compliance OS for U.S. universities

Research security and export control. One defensible system of record.

NSPM-33 four-pillar coverage and the full EAR / ITAR / OFAC export-control workflow — citation-anchored screening, FRE/TCP triage, ECCN classification, scholar vetting, country/embargo screening, audit packets that hold up to FCA review.

Request DemoSee Compliance Checklist
Compare your obligations vs. your current process ↓
14
federal watchlists screened
600+
ECCNs in our classification helper
42
regulatory authorities cited verbatim
0
hallucinations — every claim row-anchored
SHA-256
attestation hashes on every signed artifact
$50M
federal R&D threshold for full RSP coverage
Jan 25, 2026
NIH covered-individual disclosure deadline
May 25, 2026
NSF research-security training deadline
31 U.S.C. § 3729
FCA liability for false certification

Try a real screening in 30 seconds — no login required.

Click any preset below to run a live screening against the same engine our customers use. Results return source-cited verdicts in seconds.

Who it's for

CROs / VPs of Research Security
Procurement-grade audit packets, four-pillar coverage, FCA-defensible posture by NIH/NSF deadlines.
General Counsel
Immutable audit log, source-data versioning per screening, exportable PDF dossier — defensible under audit.
Research Security Analysts
Vet 365 faculty in 60 seconds. Citation-anchored search beats freeform AI agents on accuracy and beats manual on speed.

The problem: NSPM-33's four pillars

Every covered institution must demonstrate compliance against all four pillars. Vigilarx covers three of them directly; Pillar 1 is institutional self-attestation per OSTP guidance.

Pillar 1
Cybersecurity
Implement institutional cybersecurity plan meeting NIST IR 8481 controls.
Vigilarx coverage: Self-attestation only — Vigilarx tracks evidence + expiry; institution attests.
Pillar 2
Foreign Travel
Track international travel by covered individuals; pre-approve and brief.
Vigilarx coverage: Travel registration with auto-screen of destination + briefing log.
Pillar 3
Research Security Training
All covered individuals complete NSF Research Security Training (RST).
Vigilarx coverage: Completion ledger + expiry tracker per faculty member.
Pillar 4
Export Control
Train covered individuals on EAR / ITAR / OFAC export control obligations.
Vigilarx coverage: Course completion log + per-faculty status pill.

The product

Vigilarx Search surface — public demo result for Charles Lieber + Harvard returning a CRITICAL verdict with citation-anchored watchlist match.
Search
Citation-anchored screening
Type a name + institution. Get a verdict, source-cited evidence chain, and a 13-section dossier — in seconds.
Vigilarx Compliance Program surface — four NSPM-33 pillars with per-pillar status and evidence counts.
Compliance Program
Four-pillar tracker
Live status across cybersecurity, travel, RST, and export control. Pillar-anchored evidence with expiry.
Vigilarx Audit Trail surface — chronological log of screening, upload, and lead-capture events with source-data versions.
Audit Trail
Immutable, FCA-defensible
Every screening, upload, and decision logged with source-data versions. One click to export the audit packet.

Your obligations. Your current process. The gap Vigilarx closes.

Most institutions already do most of this somewhere. The gap is consolidation, tamper-evidence, and the citation chain that holds up under FCA review.

Federal obligation
Typical current process
With Vigilarx
Source-cited evidence on every screening claim
Manual screenshots, copy-pasted notes, ad hoc PDFs
Every indicator anchored to a watchlist row at audit time
FRE / TCP determination with defensible reasoning
Email threads, Word documents, PI memory
Triage wizard generates the determination + signed PDF
ECCN classification for items + technology + software
Outsourced quotes or rough best-guess
AI-assisted classifier ranked against the full CCL with confidence floors
Foreign-national vetting + deemed-export decisioning
Spreadsheet of names + scattered HR pings
Per-scholar 7-status workflow with §120.50 license analysis
BIS Affiliates Rule cascade-ownership tracing
Untraceable — relies on what the PI thinks the parent company is
50%-rule cascade walked deterministically against curated entity graph
Annual TCP review + amendment workflow
Calendar reminder that gets snoozed
365-day timer + T-30/T-7/T-0 nudges + Mark Reviewed extends the chain
Tamper-evident audit trail for FCA defense
Best-effort logs scattered across systems
SHA-256 attestation on every signed artifact + source-version capture
See the full compliance checklist →

Have a 30-min walkthrough.

Tell us about your institution and we'll respond within 1 business day.