A Deterministic, Governance-Gated Retrieval-Augmented Generation (RAG) Architecture for Enterprise Operations.
💡 Note: The Streamlit live demo may take 1-2 minutes to wake up from inactivity. Once loaded, you can use it freely!
- Overview
- Why Use This?
- System Architecture
- Core Capabilities
- Tech Stack
- Folder Structure
- Evaluation Baseline
- Getting Started
The Internal Policy Intelligence System is a heavily controlled RAG engine designed specifically for policy-bound internal operations (e.g., HR, Finance, IT Helpdesks).
Unlike typical conversational AI chatbots that prioritize fluency, this system is designed to prioritize correctness, traceability, and architectural clarity over raw generative capability. It strictly enforces governance so the system knows exactly when to answer, when to refuse, and when to escalate—and importantly, why.
In corporate environments, large language models (LLMs) cannot be allowed to guess. If an employee asks about a refund policy or a security protocol, giving a "creative" but incorrect answer is a liability.
This project solves that by enforcing:
Zero-Trust Generation: The LLM is only allowed to generate a response after deterministic risk gates confirm the query is safe, and the context retrieved is the latest, owner-approved version. Every generated sentence is lexically verified against the source text.
The pipeline enforces strict separation of concerns. No layer mixes responsibilities.
- 🧭 Intent Detection → What is the user asking?
- 🚦 Routing (Owner Scoping) → Which departments are allowed to answer this?
- 🔎 Retrieval (FAISS) → Version dominance (v2 > v1) & Owner filtering.
- 🛡️ Constraint Filtering & Governance → Risk Gate: Is it safe? Should we refuse? Should we escalate?
- ⚖️ Verdict Handler → Execute decision based on the gate.
- ✍️ Strict JSON Generation → Formulate objective answer.
- 🔍 Lexical Grounding Check → Verify every generated clause against the text.
Older document versions are automatically suppressed in favor of the most recent policy version using deterministic dominance rules during the ranking phase.
Documents are rigidly filtered based on routed intent ownership, preventing cross-domain contamination (e.g., Support agents accessing Finance internal memos).
A structured governance layer classifies queries into strict verdicts:
- ✅
SAFE - 🚫
REFUSE_POLICY - ❌
REFUSE_INVALID - 🚨
ESCALATE(Limited strictly to security, legal, or compromise cases).
Policy denials must cite exact clauses from retrieved documents. Generated SAFE answers undergo sentence-level lexical grounding checks. Unsupported sentences are flagged, preventing silent hallucination drift.
A responsive Streamlit web interface provides basic session-based anti-spam rate limiting, real-time metrics visibility (confidence, verdicts, execution latency), and an interactive document explorer for direct comparison against raw markdown policies.
- Frontend: Streamlit (for rapid dashboarding & prototyping)
- LLM Engine: Groq (Using
llama-3.3-70b-versatilefor blazing fast structured generation) - Vector Database: FAISS (CPU) (For local, high-speed similarity search)
- Embeddings: Sentence-Transformers (
all-MiniLM-L6-v2) - Evaluation: Custom offline Python test harnesses
Internal-Policy-Intelligence-System/
├── app.py # Main Streamlit Dashboard UI
├── run_app.sh # UI Launcher script
├── data/
│ ├── index/ # Compiled FAISS vectors & metadata (Git-ignored)
│ └── raw_docs/ # Source-of-truth markdown files
│ ├── policies/
│ ├── sops/
│ ├── faqs/
│ └── notes/
├── evaluation/
│ ├── metrics.py # Recall@k, MRR calculation logic
│ └── run_evaluation.py # Offline evaluation harness
├── src/ # Core Application Conveyor Belt
│ ├── intent_detection/
│ ├── pipeline/ # Main rag_pipeline.py orchestration
│ ├── retrieval/ # Indexer, Embedder, Chunker, Reranker
│ ├── routing/
│ ├── rules/ # Governance & Constraint logic
│ └── utils/
└── system/ # Configuration Maps (Prompts, Routing tables)
Retrieval and governance performance are routinely measured using structured test cases offline to prevent regressions.
| Metric | Value |
|---|---|
| Total Queries Evaluated | 18 |
| Recall@5 | 0.8889 |
| MRR | 0.5259 |
| Metric | Value |
|---|---|
| Verdict Accuracy | 85% (20 test cases) |
(No further tuning was performed after freezing the v1 baseline.)
This system intentionally avoids overengineering. Current limitations include:
- Governance is semantic-only and operates at the query level.
- Multi-intent queries may bias dense retrieval toward dominant semantic clusters.
- Hybrid retrieval (BM25 + vector) is implemented but not enabled default.
- Grounding is lexical, not semantic.
- No production hardening for the core pipeline (async execution, distributed databases). The Streamlit frontend uses a simple in-memory session state for basic spam prevention.
These limitations are explicitly documented to maintain architectural transparency.
- Python 3.10+
- A Groq API Key
python3 -m venv .venv
source .venv/bin/activate
pip install -r requirements.txtCreate a .env file in the root directory:
GROQ_API_KEY=gsk_your_api_key_hereRun this to parse /data/raw_docs/ into FAISS before running the app.
python -m src.retrieval.index_builder./run_app.shTest the codebase against the frozen test suite to generate offline metrics:
python -m evaluation.run_evaluationEngineered for architectural clarity, strict governance, and measurable performance.