Conto

Policy Engine

Define the rules for how agents spend, then evaluate every payment request before funds move. Conto keeps limits, categories, trust requirements, and approval rules in the transaction path.

One policy check, two execution paths

Managed wallet

Conto-orchestrated execution · Provider-backed custody, e.g. Privy or Sponge

01 Request

Agent requests a payment

POST /payments/request
02 Policy check

Conto evaluates policy

approveroutedeny
03 If exception

Human approves

Routine spend skips this step.

04 Execute

Managed provider signs and sends

Conto approves the request, then executes through the configured custody provider.

POST /payments/execute
05 Record

Logged with full context

tx 0x9f2c…

policy · approval · settled

Agent-controlled wallet

Agent keeps its own keys · Conto authorizes, logs on confirm

01 Request

Agent asks to authorize

POST /payments/approve
02 Policy check

Conto evaluates policy

approveroutedeny
03 If exception

Human approves

Routine spend skips this step.

04 Execute

Agent signs with its own key

Conto returns an approval token (10 min). The agent sends the tx.

05 Confirm + record

Agent confirms the hash

POST /payments/confirm

tx 0x9f2c…

policy · approval · settled

Same payment context, same policy evaluation, same audit trail. Execution is where the path diverges.

Managed executionAgent signsException path

Policy controls built for the payment decision

Use policy primitives that evaluate spend at the moment an agent asks to move money.

Spend limits

Set per-transaction, daily, weekly, monthly, and scoped limits by agent, wallet, merchant, category, or project.

Counterparty rules

Require trusted recipients, block risky addresses, and route unknown counterparties to review.

Velocity controls

Catch broken loops, retry storms, and unexpected payment bursts before a wallet is drained.

Approval thresholds

Let routine payments clear while higher-risk requests pause for human review with full policy context.

Policy outcomes your teams can inspect

Finance, operations, and security can see which rule fired, why it fired, and what happened to the payment next.

Evaluationpol_4f9c · 142ms

Payment request

procurement-agent → Quill Data$8,500.00
quilldata.io · datanew counterparty

Rules evaluated

Per-transaction limit
$8,500 ≤ $10,000pass
Monthly budget
$24.1k / $40kpass
Counterparty trust ≥ 70
new · no score yetreview
Category allowlist
datapass

Routed to review

1 of 4 rules needs a human before settlement.

policy: procurement-spend-v4

How policy decisions shape each payment

The engine sits between agent intent and settlement, turning configured rules into approve, deny, or route decisions.

Step 1

Configure rules

Create policies for the agent, wallet, payment rail, category, counterparty, or approval path.

Step 2

Evaluate every request

Conto checks the payment request against active policies when the agent tries to pay.

Step 3

Return a clear decision

Approved payments continue, denied requests stop, and exceptions route into approval workflows.

See it in action

Delivery & gig work in action

Watch a dispatch agent pay drivers the moment a delivery completes. Every payout hits the policy engine first, with per-tip caps, category allowlists, and velocity limits returning approve, deny, or review before it settles.

Approval threshold

$40

Velocity limit

5 payouts/hr

Settlement rail

Tempo · pathUSD

What inline policy delivers

Agents can transact autonomously without bypassing financial controls.

Finance and security see the exact policy decision behind each payment.

Control changes happen in Conto instead of scattered runtime code.