Platform · Pipeline

Every source in. Every fact placed.

Setara takes the full spread of your evidence, emails, logs, documents, Slack threads, CSVs, audit logs, and screenshots, and turns it into a single, traceable picture. Nothing is dropped. Every transformation is recorded.
Request AccessSee the pipeline in action
The challenge

The evidence is already there. The problem is the shape it is in.

Complex matters, disputes, incidents, investigations, rarely fail because the relevant evidence did not exist. They fail because that evidence lived in twelve different formats, held by six different teams, with no common reference point. A Slack thread here. An audit log there. A screenshot folder someone emailed as a ZIP. By the time analysts finish piecing it together manually, the timeline is already contested and the window for a clear picture has closed.
  • Investigators spend more time converting and correlating files than they do analysing them
  • The same person, company, or account appears under different names across sources, creating false gaps in the record
  • Manual collation leaves no audit trail: no record of what was ingested, when, or what changed
  • Counsel receives a folder of documents rather than a structured briefing ready for immediate use
Challenge layer
The asymmetric environment
12
Source formats
per matter
6
Teams holding evidence
average
60%
Manual collation
of analyst time
3.4×
Name variants
per actor
0
Audit trail
without Setara
High-volume evidenceFragmented systemsUneven visibilityNon-linear behaviourHidden pathwayContext gap
Feature detail · Ingest

Ingest from anywhere. Lose nothing.

Setara accepts the formats your sources actually produce. There is no pre-processing step, no required export format, and no format conversion your team must handle before the work begins. Each item is stamped with its origin, its ingest timestamp, and a content hash at the point of entry, before any processing occurs.
  • Emails and email threads (raw .eml, .msg, forwarded chains)
  • System and application logs (plain text, structured JSON, syslog)
  • Documents: PDF, Word, spreadsheets, scanned images with OCR
  • Slack exports and message archives
  • CSV and tabular data from any source
  • Audit logs from cloud platforms, access control systems, and SaaS tools
  • Screenshots and image files with embedded metadata extraction
Azure activity
Gmail · M365
Phone calls
Transcriptions
Screenshots
Documents · PDF
Slack · Teams
Audit logs
CSV · datasets
Public context
Setara
core
Structured timelineEvidence mapConnected pathwayCounsel-ready brief
Process

Raw evidence · Setara · Core · Resolved output.

Every item that enters the pipeline passes through a consistent set of operations inside Setara Core. The steps are deterministic and fully logged. Each operation appends to the item's provenance record, so at any point you can trace any fact in the output back to the specific source line it came from.
  • Normalisation: dates, times, names, identifiers, and formats are standardised to a common schema across all sources
  • Entity resolution: references to the same person, account, device, or organisation across different sources are matched and collapsed into a single resolved entity
  • Relationship extraction: connections between resolved entities, who communicated with whom, which account accessed which system, are mapped as traversable links
  • Event sequencing: all dated events are placed onto a shared timeline regardless of their originating source
  • Provenance attachment: every resolved fact carries a traceable reference back to its source document, line, and ingest timestamp
Raw evidenceSetara · CoreResolved output
Email
Slack
PDF
CSV
Logs
OSINT
Setara · Core
01Normalise
02Resolve
03Sequence
04Cite
Timeline
Evidence Map
Graph
Brief
matter-2419 · pipeline runresolving
Step 1 of 5·Show raw evidence
Filter by source
Signal legend
Evidence signalPotential anomalySystem eventSupporting sourceNeeds reviewRelationship path
Reconstructed sequence
pending
Reveal signals and draw pathways to reconstruct the sequence.
Explain this connection

Tap any signal or pathway to see why it matters to the wider sequence.

Feature detail · Chain of custody

Chain-of-custody traceability at every step.

Setara is built for environments where the process of reaching a conclusion matters as much as the conclusion itself. Every item ingested, every normalisation applied, every entity resolution decision, and every output produced is recorded in a tamper-evident audit log. When counsel, a regulator, or a counterparty asks how a fact was established, the answer is already in the record.
  • Each ingested item receives a unique identifier and content hash before processing begins
  • All transformation steps are appended to a lineage record, not overwritten
  • Entity resolution decisions are logged with the evidence that supported each match
  • Outputs carry source citations that link back to the original ingested material
  • The full audit trail is exportable for use in legal proceedings, regulatory responses, or internal review
setara · matter-2419 · assembling contextlive
Outputs

Resolved outputs your teams can use immediately.

The pipeline does not produce a data dump. It produces structured, counsel-ready outputs that are directly usable without further formatting or manual assembly.
  • Timeline: a chronological event record drawn from all sources, with each entry linked to its origin
  • Evidence Map: a spatial view of the material, showing what exists, what corroborates what, and where gaps remain
  • Relationship Graph: a traversable map of entity connections, communication flows, and access patterns
  • Structured Briefing: a formatted summary of the matter, ready for counsel, executive review, or regulatory submission
Email
Document
Audit log
Message
Screenshot
Public filing
External signal
Internal evidenceOpen-source context
Use cases

Where teams put the pipeline to work.

Setara's pipeline is not domain-specific. The same ingest and processing path applies whether the matter is a commercial dispute, a cyber incident, an internal investigation, or a regulatory review.
  • Legal teams: build a corroborated, source-cited timeline from document productions and communications before the first hearing
  • Cyber teams: correlate logs, alerts, and access records from multiple systems into a single incident timeline without manual joins
  • Risk and compliance teams: produce a structured, auditable record of what happened, in what order, and who was involved
  • Business investigations: map relationships and communications across a target entity's footprint from public and provided sources
setara · matter-2419 · assembling contextlive
Scattered evidence
email · 09:14
screenshot.png
audit log · gws
doc · NDA-v3
chat · slack
OSINT · domain
Structured sequence
Day 1 · Tue
09:14Inbound email, vendor NDA
10:02Drive download · 38 files
11:47External upload · personal acct
14:21Public filing match · OSINT
16:08Audit log · privileged access
Briefing
Counsel-ready in 41h
ready
Proof

See matter-2419 run through the pipeline.

The live demonstration uses a real matter workload: mixed formats, overlapping entities, contested timeline. Watch how each source is ingested, normalised, and placed, and how the output is assembled step by step.
Azure activity
Gmail · M365
Phone calls
Transcriptions
Screenshots
Documents · PDF
Slack · Teams
Audit logs
CSV · datasets
Public context
Setara
core
Structured timelineEvidence mapConnected pathwayCounsel-ready brief
Request access

Start with your evidence. Setara handles the rest.

Request access and bring your first matter into the pipeline. The team will walk you through ingest, show you the processing steps, and deliver the resolved outputs in your first session.

Request Access
Or follow the step-by-step walkthrough.
Raw evidenceSetara · CoreResolved output
Email
Slack
PDF
CSV
Logs
OSINT
Setara · Core
01Normalise
02Resolve
03Sequence
04Cite
Timeline
Evidence Map
Graph
Brief