Original
Pictures
The record behind content
Sign, watermark, and anchor every AI output. C2PA manifest + invisible watermark + blockchain proof. One POST.
# Sign · watermark · anchor — one call
curl -X POST https://api.originalpictures.com/v1/sign \
-H "Authorization: Bearer $OP_KEY" \
-F "[email protected]" \
-F 'assertions={"c2pa.created":{"actions":[
{"action":"c2pa.ai_generated",
"softwareAgent":"your-model"}]}}' ← 200 OK
{
"manifest_id": "mf_01j...",
"layers": ["c2pa", "watermark", "anchor"],
"anchor_status": "pending_btc"
} Response: signed image, TrustMark watermark embedded, BTC + Arbitrum anchor queued.
The Stack
Three layers. No single one is enough.
Sign
C2PA manifest under our DigiCert cert.
SHA-256 hard binding + CAWG identity assertion naming your platform + RFC 3161 sigTst2 v2 timestamp. Mathematically valid forever, even if our servers are dark.
Watermark
TrustMark today; AudioSeal + VideoSeal at GA.
Invisible 100-bit payload surviving JPEG re-encode, crop, and screenshot. Decoded server-side to recover the manifest pointer when metadata is stripped.
Anchor
OpenTimestamps — BTC + Arbitrum.
Daily Merkle root anchored to Bitcoin and Arbitrum. No proprietary tokens. Verifiable offline with ots verify, independent of our servers.
# Sign + watermark + anchor in one POST
curl -X POST https://api.originalpictures.com/v1/sign \
-H "Authorization: Bearer $OP_KEY" \
-F "[email protected]" \
-F 'assertions={"c2pa.created":{"actions":[{"action":"c2pa.ai_generated","softwareAgent":"your-model"}]}}' Compliance — 2026
Five regimes. One POST covers all three code layers.
The incidents behind the laws
- Arup, Jan 2024
HK$200M lost across 15 transfers to a deepfake CFO video call.
- Romania, Dec 2024
Constitutional Court annulled presidential election first round after AI-amplified TikTok campaign.
- Pentagon image, May 2023
AI-generated explosion photo sent S&P 500 down 0.3% before AP and Bloomberg debunked it.
Each of these would have been disprovable with one missing manifest.
Use cases
Twelve ways to ship with provenance.
AI Platforms
Image-gen output marking
One POST: C2PA manifest + watermark + anchor before the byte leaves your system.
→Video-gen Article 50
VideoSeal + C2PA manifest satisfies EU AI Act Art. 50(2) for every frame.
→Voice-AI watermarking
AudioSeal sample-level watermark — 485× faster detection than WavMark.
→Training-data opt-out
c2pa.training_mining assertion signals opt-out to compliant scrapers at creation.
→Brands & Newsrooms
Press-photo authentication
CMS webhook signs on ingest: photographer identity, masthead, RFC 3161 timestamp.
→Live-event capture
React Native SDK with hardware-backed keys: device signs, server counter-signs.
→Influencer authenticity
Brand campaign photos carry a signed provenance record that survives repost.
→Stock library ingestion
Ingest webhook signs every contributed asset; manifest pointer survives strip.
→Regulators & Enterprise
KYC selfie verification
Capture SDK attaches Play Integrity / App Attest chain; detects replay attacks.
→Insurance chain-of-custody
Every claim photo signed at capture; adjuster verifies offline, no API needed.
→Court-admissible evidence
MIT-licensed open verifier; opposing counsel runs ots verify independently.
→Election-content pipeline
Batch-sign campaign materials; watermark enables rapid provenance lookup.
→Manifesto
The trace is gone. Diffusion models render light that never fell, voices that never spoke. The cost of generating a plausible memory has collapsed to fractions of a cent.
Detection is a treadmill. Every classifier trains the next forger. So we stopped trying to detect what is false and started signing what is real, at the moment it is real.
We are the notary. We are not in the picture. If we die, every manifest we ever signed remains mathematically valid — the RFC 3161 timestamp and the blockchain block are facts.
Sign once. Outlive the company.
FAQ
Eight questions, answered plainly.
What is C2PA?
The Coalition for Content Provenance and Authenticity is an open standard from Adobe, Microsoft, BBC, Intel, and others. It attaches a cryptographically signed manifest — assertions about how an asset was made, plus a hash of the asset — to image, video, audio, and PDF files. Current spec: v2.2 at spec.c2pa.org.
What is EU AI Act Article 50?
From 2 August 2026, providers of generative AI systems on the EU market must mark synthetic outputs in machine-readable form (Art. 50(2)); deployers must label deepfakes (Art. 50(4)). Penalties reach €15M or 3% of worldwide annual turnover. We deliver signed metadata + invisible watermark + fingerprint logging — the three-layer baseline named in the 5 March 2026 Code of Practice.
Why Original Pictures vs Adobe Content Credentials or Truepic?
Adobe ships an SDK — you still need your own CA, key custody, and pipeline. Truepic is a vertical capture stack for insurance and journalism. We are a horizontal signer-as-a-service: one POST /v1/sign, your name in the CAWG identity assertion, OpenTimestamps anchor, TrustMark watermark. Stack-agnostic and chain-minimal.
What happens when metadata is stripped?
Social platforms strip C2PA from JPEG today. That is why we layer a TrustMark watermark inside the pixels (100-bit payload, >96% bit accuracy under severe degradation per Adobe TrustMark FAQ) plus an OpenTimestamps proof. The watermark contains a pointer to our manifest store — a stripped image still leads back to its signed origin.
How do I integrate?
Two paths: API (POST /v1/sign, send media + assertions JSON, get signed asset back), or Capture SDK (React Native, on-device c2pa-rust with Android Keystore / iOS Secure Enclave, server co-sign). 30-line quickstart at docs.originalpictures.com.
What does it cost?
Free: 1,000 signatures/month, all modalities. Builder: $99/month, 25K sigs included, $0.005/sig after. Scale: $999/month, 250K included, $0.002/sig after, 99.9% SLA. Enterprise: from $50K ACV with custom pricing and DPA.
What if Original Pictures shuts down?
Every manifest carries an RFC 3161 sigTst2 v2 timestamp from a TSA on the C2PA Trust List, so validation works indefinitely per C2PA Spec v2.2 §1.3.1. The verifier is open-source MIT-licensed; every customer can export a portable offline tarball; a daily Merkle root is anchored to Bitcoin and Arbitrum.
How robust is the watermark?
TrustMark variant Q exceeds 96% bit accuracy at 42–45 dB PSNR under severe degradation; survives JPEG re-encoding, resize, crop, screenshot, and mild color shift. Does not survive dedicated removal pipelines or diffusion re-synthesis — which is exactly why we layer the manifest and the blockchain anchor.
More at docs.originalpictures.com
Pricing
Start free. Scale when you need to.
Free
For solo developers and experiments
forever
1,000 signatures / month
- 1,000 signing operations/month
- 100 watermarks/month
- OTS anchor batched daily
- All modalities: image, audio, video
- Public verification
- Community Slack
Builder
For startups shipping to production
/month + usage
$0.005 / sig after 25K included
- 25,000 sigs/month included
- $0.005/sig after · $0.002/watermark
- All modalities + watermarking
- Webhook integration
- Email support
Scale
For production deployments at volume
/month + usage
$0.002 / sig after 250K included
- 250,000 sigs/month included
- $0.002/sig after · $0.001/watermark
- 99.9% SLA · dedicated subnet
- All modalities + soft-binding
- Business-hours support
- Admin console + audit log
Enterprise
For regulated and hyperscale deployments
ACV
$0.0005 / sig at volume
- Volume pricing from $0.0005/sig
- CAWG identity-provider integration
- Dedicated SE · custom SLA
- Iron Mountain escrow access
- DPA + named-entity MSA
- EU-resident processing region
Anchor is included free at all tiers. Self-hosted deployment on our roadmap.
See full feature comparison →Sign once. Outlive the company.
Free: 1,000 signatures. No credit card. EU AI Act ready.