Features
18 U.S.C. § 2257 record-keeping, Mastercard AN 5196 consent, Visa VIRP reporting, and TAKE IT DOWN Act removal deadlines: every obligation handled by one platform, included with every plan.
Built in, not bolted on. Each one maps to a specific federal regulation or card-network rule, and all of them are included with every plan.
Talent scans the front and back of their government-issued photo ID, then takes a live selfie that is matched against the ID photo with facial recognition. Document authentication catches fraudulent or borrowed IDs that a manual check would miss, and legible copies are stored to meet 28 CFR 75.2(a)(1). Returning talent skip re-verification: their existing verification carries over to new scenes.
Pre-built templates for model releases, performer information worksheets, content agreements, and consent forms. All rendered with performer data and signed electronically with SHA-256 integrity hashing. Every signature includes a full audit trail: timestamp, IP address, scroll engagement, initials placement, and time on page.
Capture pre-shoot and post-shoot video consent recordings directly through the talent portal. Talent records from their own device, no special equipment needed. Videos are timestamped and stored encrypted alongside the rest of the scene's compliance records.
Mastercard AN 5196 and Visa VIRP require written, documented performer consent. Producer attestation alone is not enough. Easy2257 generates a Standard Model Release & Consent document for each performer, delivered through the same signing flow talent already uses. Scenes cannot be closed until every performer has a valid, non-revoked release on file.
AN 5196, VIRP, and the TAKE IT DOWN Act (2025) all require a working appeals process for anyone depicted in your content. Easy2257 provides a public, unauthenticated intake form where a depicted person can submit a removal request. SLA deadlines are computed automatically: 48 hours for NCII / TAKE IT DOWN Act claims, 72 hours for state NCII laws, 7 business days for card-network appeals.
Mastercard SPME §9.4.1 and Visa VIRP Tier 1 §3.1 require producers to submit a monthly compliance report to their payment acquirer, and a nil report is required even when nothing happened. Easy2257 generates this automatically on the 2nd of every month: a PDF and a machine-readable JSON covering removal requests, SLA performance, model releases, scenes finalized, and ID verifications.
28 CFR 75.2(e) requires that 2257 records be segregated from all other records. Easy2257 maintains compliance data in dedicated database tables, stored under dedicated storage paths, encrypted independently, and exported as standalone compliance archives containing only 2257-required records. The segregation architecture is documented in every archive manifest.
28 CFR 75.2(f) requires that the custodian be able to authenticate each digital record. Every file uploaded to Easy2257 (every ID image, every depiction, every signed document) receives a SHA-256 integrity hash computed at the moment of upload. The hash can be recomputed at any time to confirm the record has not been altered.
Easy2257 auto-generates the alphabetical cross-reference index required by 28 CFR 75.2(a)(2)-(3): every performer by legal name, with every alias, scene, published URL, and depiction filename linked, exported as JSON and PDF. Your complete records (IDs, releases, signed forms, depictions, index, manifest) export as a single audit-ready archive you can hand to an inspector on demand.
Coverage
Federal record-keeping law, both major card networks, and the TAKE IT DOWN Act overlap but don't align. Easy2257 tracks each rulebook separately so a single workflow (verify, sign, attest, archive) satisfies all of them at once.
Every 28 CFR Part 75 and 18 U.S.C. § 2257 requirement, plus the card-network layer, and how Easy2257 addresses each one:
Government IDs and compliance records demand bank-grade protection.
All records encrypted at rest with AES-256 and in transit with TLS 1.3.
Producer-only access with session-based authentication and audit logs.
Automated backups ensure your records survive any incident.
All of it included with every plan, from $39.95/scene. COR service too.