04
Page 04 · GCP Architecture

Four-layer
internal design.

Every GCP service, every agent, every data flow — the complete internal architecture of Autonomous Finance inside a single VPC-SC perimeter in europe-west3 with CMEK on all storage.

Region europe-west3
Boundary VPC-SC Perimeter
Encryption CMEK · All Storage
Agent Framework LangGraph · A2A Protocol
Auth Workload Identity Federation
Architecture Overview

All four layers.
One coherent perimeter.

VPC-SC Perimeter
europe-west3
CMEK on all storage
Workload Identity Federation
Secret Manager · Zero-Trust
Ingress: Cloud Interconnect → Private Service Connect → Cloud Run
Four-Layer GCP Architecture Overview Full architecture overview of Autonomous Finance on GCP: four nested layers — Experience (L4), Agent Orchestration (L3), ML Intelligence (L2), and Infrastructure (L1) — inside a single VPC-SC perimeter in europe-west3 with CMEK on all storage and Workload Identity Federation. VPC-SC PERIMETER · europe-west3 · CMEK ON ALL STORAGE LAYER 4 — EXPERIENCE GROUP CONTROLLER HITL Queue UI IC Reconciliation TREASURY MANAGER Dashboard Cash & FX Position AP LEAD Exception Inbox AP Exception Agent CFO READ-ONLY VIEW → AE Strategy Dashboard Executive Read Layer LAYER 3 — AGENT ORCHESTRATION IC RECONCILIATION Cloud Run · LangGraph Journal post requires hitl_id from SAP Write Guard SAP WRITE GUARD ↑ CASH & TREASURY Cloud Run · LangGraph Cash position · FX hedging Liquidity forecast runs af-treasury-events ↕ AP EXCEPTION Cloud Run · LangGraph Priority score · root cause Resolution routing af-ap-events ↕ HITL STATE MGR Approval Router hitl_id generation Firestore state store EU AI ACT GATE A2A A2A A2A LAYER 2 — ML / INTELLIGENCE VERTEX AI FEATURE STORE IC feature group Treasury feature group Invoice feature group Online + offline serving VERTEX AI ENDPOINTS IC Anomaly Detector Cash Forecast Model Invoice Exception Classifier SHAP explanation per inference VERTEX AI PIPELINES Weekly retraining runs GreenOps-scheduled Model Registry output Versioned · Model Cards MODEL REGISTRY Versioned models Model cards per version SHAP explanation layer Regulatory inspection ready LAYER 1 — INFRASTRUCTURE CLOUD RUN v2 3 agent services min-instances: 1 Serverless · Auto-scale PUB/SUB af-ic-events af-treasury-events af-ap-events Event bus FIRESTORE HITL state CMEK encrypted Document store BIGQUERY Audit trail Feature store outputs CSRD feed Analytics warehouse CLOUD STORAGE Invoice PDFs Model artifacts Object store · CMEK SECRET MANAGER API credentials SAP keys · banking Auto-rotation WORKLOAD IDENTITY FEDERATION Service-to-service auth · No long-lived credentials · VPC-SC enforcement AE · DATA GOV Lineage · Schema · Quality AE · GREENOPS Scheduling · Scope 3 AE · DASHBOARD CFO Strategy View LEGEND: UX signal ML inference Infrastructure write A2A protocol AE Platform integration
VPC-SC Perimeter Properties
europe-west3 · data residency CMEK · all storage Workload Identity Federation Secret Manager · auto-rotate Zero-trust service mesh A2A protocol · inter-agent
Resilience & DR
RPO: 1hr · RTO: 4hr (critical path)
Firestore: daily export to GCS · point-in-time recovery
BigQuery: cross-region dataset replica (europe-west4 standby)
Cloud Run: regional autoscaling · multi-zone within europe-west3
GCS: dual-region bucket policy for model artifacts
Layer 1 · Infrastructure

The foundations
nothing runs without.

01 Infrastructure · GCP

Layer 1 is the compliance substrate. Every service runs inside the VPC-SC perimeter in europe-west3. Cloud Run v2 hosts the three agent services. Pub/Sub is the event spine — three topics partitioned by agent domain. Firestore holds HITL state under CMEK. BigQuery is the immutable audit trail and feature store output sink.

The boundary is enforced at the Google Cloud project level, not at the application layer. Workload Identity Federation eliminates long-lived service account keys. Secret Manager rotates all external credentials on a cadence aligned to client security policy.

Layer 1 — Internal Event & Data Flow
Layer 1 — Infrastructure Internal Flow Event and data flow within Layer 1 infrastructure: external triggers from SAP and Banking APIs flow through Pub/Sub topics to Cloud Run agent services, which read/write to Firestore, BigQuery, and Cloud Storage. All auth via Workload Identity Federation inside VPC-SC perimeter. LAYER 1 INTERNAL FLOW · VPC-SC · europe-west3 SAP SYSTEM BAPI / OData trigger External · scheduled BANKING APIs SWIFT gpi / Open Banking External · real-time INVOICE INGEST PDF upload → GCS bucket External · push SECRET MANAGER Credentials · Rotation PUB/SUB BUS af-ic-events af-treasury-events af-ap-events at-least-once delivery Dead-letter after 5 retries CLOUD RUN v2 IC Agent Service 2 vCPU · 4GB RAM min: 1 · max: 10 instances Treasury Agent 2 vCPU · 4GB RAM min: 1 · max: 8 instances AP Exception Agent 2 vCPU · 4GB RAM min: 1 · max: 8 instances WIF · No static keys FIRESTORE HITL state documents hitl_id · status · timestamp CMEK · Audit log BIGQUERY Audit trail (immutable) Feature outputs · CSRD feed Partitioned · Clustered CLOUD STORAGE Invoice PDFs · artifacts Uniform bucket-level access CMEK · Versioning on WORKLOAD IDENTITY FEDERATION · SERVICE MESH · ZERO TRUST Cloud Run SA → Firestore / BQ / GCS without key files · VPC-SC enforced at project boundary
Cloud Run v2
Three Agent Services
IC Reconciliation, Cash & Treasury, and AP Exception agents each run as isolated Cloud Run v2 services with independent scaling bounds. Minimum one instance prevents cold-start latency on HITL callbacks.
min: 1 · max: 10
Pub/Sub
Three-Topic Event Bus
af-ic-events, af-treasury-events, and af-ap-events are the three event topics. Each agent publishes to its own topic and subscribes to upstream triggers. Dead-letter queues after five retry attempts with exponential backoff. At-least-once delivery is mitigated by idempotency keys on all consumer handlers — each event carries a deduplication_id checked against Firestore before processing to prevent duplicate financial writes.
at-least-once · DLQ · idempotency keys
Firestore
HITL State Store
Every human approval request creates a document in Firestore with a hitl_id, status, agent context, and timestamp. The SAP Write Guard checks hitl_id existence before allowing any journal post to proceed.
CMEK · native audit
BigQuery
Audit Trail + Feature Sink
Immutable row-level audit trail for every agent action. Feature store pipeline outputs land here for inspection. CSRD Scope 3 financed emissions feed is a native BigQuery table, not a downstream extract.
append-only · partitioned
Cloud Storage
Invoice PDFs + Model Artifacts
Two buckets: invoice-landing for PDF ingestion by the AP Exception Agent, and model-artifacts for Vertex AI pipeline output. Uniform bucket-level access with CMEK. Object versioning on.
CMEK · versioning
Secret Manager + WIF
Zero-Key Authentication
All SAP, banking API, and external credentials stored in Secret Manager with rotation aligned to client policy. Workload Identity Federation means no service account key files exist on any Cloud Run instance.
WIF · no static keys
Layer 1 Integration Points
VPC-SC perimeter enforcement europe-west3 data residency CMEK · Firestore + BQ + GCS Pub/Sub DLQ after 5 retries WIF · no service account keys Secret Manager rotation cadence
Layer 2 · ML / Intelligence

Three models.
One explanation layer.

Vertex AI Feature Store serves features to all three inference endpoints from three feature groups: IC, treasury, and invoice. Online serving for sub-100ms agent queries; offline for weekly retraining batch jobs.

Each inference call produces a SHAP explanation vector — not just a prediction. The explanation is logged with the audit trail and surfaced to the HITL UI so controllers understand why a flag was raised. Retraining pipelines are scheduled by GreenOps (the AE Platform's carbon-aware compute scheduler) for off-peak hours to minimise carbon footprint and Scope 3 ML emissions.

02 ML · Intelligence · Vertex AI
ML Inference & Retraining Pipeline
Layer 2 — ML Intelligence Pipeline ML pipeline showing Vertex AI Feature Store (IC, Treasury, Invoice feature groups) feeding three Vertex AI Endpoints (IC Anomaly Detector, Cash Forecast Model, Invoice Exception Classifier). Each inference returns a SHAP explanation vector. Retraining pipeline runs weekly via Vertex AI Pipelines with GreenOps scheduling and model promotion gated by Model Registry. LAYER 2 · ML INTELLIGENCE · VERTEX AI PLATFORM VERTEX FEATURE STORE IC FEATURE GROUP entity_pair_id · net_balance currency_risk · doc_count TREASURY FEATURE GROUP cash_balance · fx_delta liquidity_ratio · maturity INVOICE FEATURE GROUP vendor_id · amount · days_due exception_type · priority Online <100ms · Offline batch BigQuery backend store VERTEX AI ENDPOINTS IC ANOMALY DETECTOR Isolation Forest + LSTM Anomaly score 0–1 SHAP: top-3 features CASH FORECAST MODEL Temporal Fusion Transformer 30-day probabilistic range SHAP: temporal attribution INVOICE CLASSIFIER Multi-class exception type Priority score 1–10 SHAP: exception attribution Autoscaling · SLA <100ms SHAP EXPLANATION Per-inference SHAP vector Logged to BigQuery audit trail Surfaced in HITL UI Drift Monitor Feature drift PSI alert → triggers retraining pipeline Uncertainty Quantification Conformal prediction bands 95% CI per forecast Regulatory inspection ready EU AI Act Annex III · explainability SHAP per inference · full audit chain PIPELINE + REGISTRY VERTEX AI PIPELINES Weekly retraining schedule GreenOps off-peak compute Feature lag validation step Hold-out eval before deploy MODEL REGISTRY Semantic versioning Model card per version Training data lineage ref Rollback <5min to prior GreenOps schedule hook AE · GreenOps integration AE · GREENOPS Off-peak scheduling · Carbon budget
Vertex AI Feature Store
Three Feature Groups
IC, treasury, and invoice feature groups. Online serving feeds agent inference endpoints at sub-100ms. Offline serving feeds weekly retraining pipelines with historical feature snapshots and point-in-time correctness.
online + offline serving
Vertex AI Endpoints
Three Dedicated Models
IC Anomaly Detector uses a sequential ensemble: Isolation Forest scores the tabular snapshot (entity-pair features at a point in time); LSTM scores the 30-day sequence independently; final anomaly score = max(IF_score, LSTM_norm) with a configurable ensemble weight defaulting to 0.6/0.4. Cash Forecast Model uses Temporal Fusion Transformer (30-day probabilistic range). Invoice Exception Classifier is multi-class with priority score 1–10.
autoscaling · SLA <100ms
SHAP Explanation Layer
Per-Inference Explainability
Every model inference returns a SHAP explanation vector alongside the prediction. Top-3 contributing features are logged to the BigQuery audit trail and surfaced in the HITL UI. Satisfies EU AI Act Annex III explainability requirements.
EU AI Act · Annex III
Vertex AI Pipelines
Weekly Retraining
Kubeflow-based pipeline runs weekly. GreenOps-scheduled for off-peak compute windows. Hold-out evaluation gate before any model promotion. Drift detection triggers ad-hoc retraining on PSI threshold breach.
GreenOps-scheduled
Model Registry
Versioned + Model Cards
Semantic versioning for all three models. Each version carries a model card covering training data lineage, evaluation metrics, known limitations, and intended use. Rollback to any prior version in under five minutes.
versioned · rollback <5min
Drift + UQ Monitor
Continuous Model Health
Population Stability Index monitoring on feature distributions. Alert on PSI > 0.20 triggers pipeline rerun. Conformal prediction bands provide 95% confidence intervals on all forecast outputs for uncertainty quantification.
PSI > 0.20 → retrain
Layer 2 AE Platform Hooks
GreenOps · off-peak scheduling Data Governance · feature lineage AE Dashboard · model performance SHAP → HITL explainability EU AI Act Annex III · explainability
Layer 3 · Agent Orchestration

Three agents.
One guard on the gate.

03 Agents · LangGraph · A2A

Three LangGraph agents run as independent Cloud Run services. The A2A protocol handles cross-agent communication — no direct HTTP calls between agents, all coordination through typed protocol messages. The HITL State Manager intercepts every high-risk action before execution.

The SAP Write Guard is the terminal enforcement point for the IC agent: no journal post proceeds without a valid hitl_id from an approved HITL record in Firestore. This is structural, not configurable — the write path requires the token.

Agent Orchestration & A2A Protocol Flow
LAYER 3 · AGENT ORCHESTRATION · LANGGRAPH · A2A PROTOCOL IC RECONCILIATION AGENT Cloud Run v2 · LangGraph 1 · Fetch IC ledger entries from BQ 2 · Run IC Anomaly Detector endpoint 3 · Score > 0.7 → HITL queue 4 · Await hitl_id token from State Mgr 5 · SAP WRITE GUARD check hitl_id 6 · Post journal entry to SAP Pub: af-ic-events CSRD Scope 3 tag on settlement CASH & TREASURY AGENT Cloud Run v2 · LangGraph 1 · Ingest banking API position feed 2 · Run Cash Forecast endpoint 3 · FX hedge threshold → HITL 4 · A2A signal to IC Agent if IC delta 5 · Write position to BQ audit trail 6 · Push to Treasury dashboard Pub: af-treasury-events 30-day probabilistic cash forecast AP EXCEPTION AGENT Cloud Run v2 · LangGraph 1 · Poll af-ap-events topic 2 · Run Invoice Classifier endpoint 3 · Score exceptions 1–10 4 · Route high-scores to AP Lead 5 · Auto-resolve low-score exceptions 6 · Log resolution to BQ Pub: af-ap-events Root cause classification + SHAP HITL STATE MANAGER EU AI Act Annex III Gate 1 · Generate hitl_id UUID 2 · Write to Firestore with PENDING 3 · Route to HITL queue UI 4 · On approval → mark APPROVED SLA: 4hr business hours · Alert on breach Override audit-logged per action SAP WRITE GUARD IC Agent only · journal post gate Checks Firestore for APPROVED hitl_id Reject if missing or PENDING A2A A2A A2A: agent-to-agent protocol HITL: approval request GUARD: SAP write guard check
A2A Inter-Agent Protocol
IC → Treasury
Signal: IC settlement affects cash position
When the IC Reconciliation Agent posts a settlement that shifts net cash balances across entity pools, it sends an A2A message to the Treasury Agent carrying the delta amount and entity identifiers. Treasury Agent re-runs a position snapshot rather than waiting for the next scheduled cycle.
Treasury → IC
Signal: FX exposure triggers IC netting review
When the Cash Forecast Model detects an FX exposure breach on a cross-currency IC pair, the Treasury Agent sends an A2A signal to IC Agent requesting a netting review. IC Agent queues the entity pair for out-of-cycle reconciliation — no manual scheduling required.
AP → Treasury
Signal: large exception affects liquidity forecast
AP Exception Agent sends a signal when a stalled high-value payment exception crosses a materiality threshold that would affect the 7-day liquidity forecast. Treasury Agent updates the cash position model with the contingent liability before the next CFO dashboard refresh.
Layer 3 Structural Properties
A2A protocol · no direct HTTP SAP Write Guard · hitl_id required HITL SLA · 4hr business hours LangGraph stateful graph execution EU AI Act · all high-risk actions gated Override audit-logged per action
Layer 4 · Experience

Four roles.
One view of truth.

Layer 4 surfaces the right information to the right person. The Group Controller works through a HITL queue UI that shows pending approvals with SHAP explanations. The Treasury Manager has a live dashboard with cash positions, FX deltas, and 30-day forecasts with confidence intervals.

The AP Lead receives a prioritised exception inbox ordered by the classifier's priority score. The CFO has a read-only aggregated view that feeds into the AE Strategy Dashboard — the executive read layer across all AE platform modules.

04 Experience · HITL · Dashboard
Experience Layer — Role-Based Information Flow
LAYER 4 · EXPERIENCE · ROLE-BASED VIEWS IC AGENT OUTPUT HITL request + SHAP Journal pending → Controller TREASURY OUTPUT Cash position + forecast FX delta → Treasury Manager AP EXCEPTION OUTPUT Priority queue 1–10 Root cause → AP Lead inbox GROUP CONTROLLER HITL Queue UI Pending approvals · SHAP context Approve / reject / annotate Overrides audit-logged · SLA 4hr IC Reconciliation scope only TREASURY MANAGER Live Dashboard Cash positions · FX exposure 30-day probabilistic forecast Confidence intervals displayed HITL gate on hedge actions AP LEAD Exception Inbox Priority-ordered exception queue SHAP root-cause explanation Resolution action buttons Auto-resolved shown separately CFO VIEW Read-Only · Aggregated Cross-module summary No HITL actions available Feeds AE Strategy Dashboard D+0 · No latency on position AE STRATEGY DASHBOARD External · AE Platform Finance KPIs across all modules IC reconciliation rate Treasury FX exposure summary AP exception resolution rate CSRD Scope 3 financed emissions Data Governance lineage link
Group Controller · HITL UI
Approval Queue with SHAP Context
Pending IC reconciliation actions displayed with SHAP explanation, anomaly score, and entity context. Approve, reject, or annotate with override reason. All overrides audit-logged per HITL record. SLA 4-hour during business hours.
HITL · SLA 4hr
Treasury Manager · Dashboard
Live Cash + FX Position
Live entity-level cash positions, FX delta heatmap, and 30-day probabilistic cash forecast with 95% confidence intervals. FX hedge actions above threshold route to a HITL approval before execution. D+0 position latency.
real-time · probabilistic
AP Lead · Exception Inbox
Priority-Ordered Exception Queue
Exceptions sorted by classifier priority score 1–10 with SHAP root-cause attribution and suggested resolution action. Low-score exceptions auto-resolved by agent are shown in a separate resolved feed for review.
priority 1–10 · SHAP
CFO · Read-Only View
Executive Read Layer → AE Dashboard
Aggregated view across all three agent modules. No HITL actions available at CFO role level. Feeds the AE Strategy Dashboard as the Finance module feed — IC reconciliation rate, treasury FX exposure, AP exception resolution rate, and CSRD Scope 3 summary.
read-only · AE dashboard feed
Layer 4 · AE Platform Integration Points
AE Strategy Dashboard · CFO feed Data Governance · audit lineage GreenOps · Scope 3 display Identity · role-based access HITL annotations → model retraining
Component Reference

Every service.
Every purpose.

Service / Component GCP Product Layer Purpose Scale Config
IC Reconciliation Agent Cloud Run v2 L3 LangGraph agent. Fetches IC ledger entries, scores via anomaly detector, routes high-score items to HITL, posts journals to SAP after SAP Write Guard approval. 2 vCPU · 4GB · min 1 · max 10 instances · concurrency 80
Cash & Treasury Agent Cloud Run v2 L3 LangGraph agent. Ingests banking API position feed, runs cash forecast, monitors FX exposure, sends A2A signals to IC Agent on IC-driven cash deltas. 2 vCPU · 4GB · min 1 · max 8 instances · concurrency 60
AP Exception Agent Cloud Run v2 L3 LangGraph agent. Polls af-ap-events, classifies exceptions, scores priority 1–10, auto-resolves low-score items, routes high-score to AP Lead inbox. 2 vCPU · 4GB · min 1 · max 8 instances · concurrency 60
Event Bus — af-ic-events Cloud Pub/Sub L1 IC agent event topic. Carries IC ledger update events, anomaly score events, and settlement confirmation events. Dead-letter after 5 retries with exponential backoff. Standard tier · message retention 7d · DLQ enabled
Event Bus — af-treasury-events Cloud Pub/Sub L1 Treasury agent event topic. Carries cash position snapshots, FX exposure alerts, and forecast updates. A2A bridge topic for IC-to-Treasury signals. Standard tier · message retention 7d · DLQ enabled
Event Bus — af-ap-events Cloud Pub/Sub L1 AP agent event topic. Carries invoice exception events from SAP AP module push and AP Lead resolution actions back to the agent. Standard tier · message retention 7d · DLQ enabled
HITL State Store Firestore L1 Document-per-approval-request. Fields: hitl_id (UUID), agent_id, action_type, risk_class, status (PENDING/APPROVED/REJECTED), approver_id, timestamp, shap_vector_ref. Native mode · CMEK · Cloud Audit Logs on all operations
Audit Trail + Feature Sink BigQuery L1 Immutable append-only audit trail for all agent actions. Feature store online serving snapshot sink. CSRD Scope 3 financed emissions feed table. Partitioned by date, clustered by agent_id. Partitioned by _PARTITIONDATE · clustered agent_id, action_type
Invoice PDFs + Model Artifacts Cloud Storage L1 Two buckets. invoice-landing: AP agent reads PDF bytes for OCR pipeline. model-artifacts: Vertex AI Pipeline writes trained model binaries and evaluation artefacts. Standard storage · CMEK · Uniform bucket-level access · Versioning ON
Secret Manager Secret Manager L1 All SAP BAPI credentials, banking API keys, and SWIFT gateway tokens. Automatic rotation cadence per client security policy (default: 90d). Version history retained for audit. Automatic rotation · access via WIF · no env-var keys
Workload Identity Federation IAM / WIF L1 Service-to-service authentication across all Cloud Run agents and GCP services. No long-lived service account key files. Identity tokens scoped per agent with least-privilege IAM roles. Short-lived tokens · principle of least privilege · per-agent SA
IC Feature Group Vertex AI Feature Store L2 Online feature serving for IC Anomaly Detector. Features: entity_pair_id, net_balance_delta, currency_risk_flag, doc_count_7d, historical_variance. Updated on SAP GL sync events. Online serving latency <10ms · offline materialization nightly
Treasury Feature Group Vertex AI Feature Store L2 Online feature serving for Cash Forecast Model. Features: entity_id, cash_balance, fx_delta_usd, liquidity_ratio, maturity_ladder_30d. Updated on banking API position refresh. Online serving latency <10ms · offline materialization nightly
Invoice Feature Group Vertex AI Feature Store L2 Online feature serving for Invoice Exception Classifier. Features: vendor_id, invoice_amount, days_overdue, exception_type_hist, payment_run_flag. Updated on SAP AP push events. Online serving latency <10ms · offline materialization nightly
IC Anomaly Detector Vertex AI Endpoint L2 Isolation Forest + LSTM hybrid model. Outputs anomaly score 0–1 and SHAP vector (top-3 feature attributions). Score > 0.7 triggers HITL queue. Score logged to BigQuery. Autoscaling · SLA <100ms P95 · min 1 replica · max 4
Cash Forecast Model Vertex AI Endpoint L2 Temporal Fusion Transformer. Outputs 30-day probabilistic cash forecast with 95% confidence intervals and SHAP temporal attribution. Inputs: treasury feature vector, IC settlement pipeline. Autoscaling · SLA <100ms P95 · min 1 replica · max 4
Invoice Exception Classifier Vertex AI Endpoint L2 Multi-class exception type classifier + priority regressor. Outputs exception_type (6 classes), priority score 1–10, and SHAP attribution. Low priority (<4) routed to auto-resolution. Autoscaling · SLA <100ms P95 · min 1 replica · max 4
Retraining Pipeline Vertex AI Pipelines L2 Kubeflow pipeline. Runs weekly. Steps: feature lag validation → training job → hold-out evaluation → model registry promotion → endpoint deployment. GreenOps-scheduled for off-peak carbon budget. GreenOps schedule hook · weekly cadence · hold-out gate
Model Registry Vertex AI Model Registry L2 Semantic versioning for all three models. Model card per version covering training data lineage, evaluation metrics, known limitations. Rollback to any version <5min via endpoint traffic split. Versioned · model cards · rollback <5min · traffic split
HITL State Manager Cloud Run (internal service) L3 Approval router service. Generates hitl_id UUID, writes PENDING record to Firestore, routes to appropriate HITL UI queue (IC / Treasury / AP). Marks APPROVED on controller action. Alerts on SLA breach. 1 vCPU · 2GB · min 1 · max 4 · SLA alert 4hr
SAP Write Guard Cloud Run (middleware) L3 Terminal enforcement for IC journal posts. Intercepts every write call from IC Agent to SAP BAPI. Queries Firestore for hitl_id status. Rejects with 403 if status is PENDING or absent. 1 vCPU · 1GB · min 1 · stateless · P99 latency <20ms
Group Controller HITL UI Cloud Run (frontend) L4 HITL queue interface for Group Controllers. Shows pending approvals with SHAP explanation cards, anomaly score, entity context, and OECD TP documentation link. Approve/reject/annotate actions. Static SPA · CDN · role-gated IAP · audit-log all actions
Treasury Manager Dashboard Cloud Run (frontend) L4 Live treasury dashboard. Entity-level cash positions, FX delta heatmap, 30-day probabilistic forecast chart, liquidity maturity ladder. FX hedge HITL gate above threshold. D+0 latency. WebSocket push · CDN · role-gated IAP · D+0 position
AP Lead Exception Inbox Cloud Run (frontend) L4 Priority-ordered exception inbox. Sorted by classifier priority score descending. SHAP root-cause card per exception. Suggested resolution action. Auto-resolved exceptions in separate feed. Static SPA · CDN · role-gated IAP · priority sort
CFO Read-Only View → AE Dashboard Cloud Run → AE Platform L4 Aggregated executive view. Read-only. Feeds IC reconciliation rate, FX exposure KPI, AP exception resolution rate, and CSRD Scope 3 financed emissions summary into the AE Strategy Dashboard. Read-only IAP role · no HITL actions · AE API feed
AE Platform External Integration Points
AE · Data Governance · lineage + schema AE · GreenOps · ML scheduling + Scope 3 AE · Strategy Dashboard · CFO KPI feed AE · Identity · IAP role-gating AE · Audit Ledger · tamper-evident