RA-001 · Research Report · 2026-05-16 · DOI 10.5281/zenodo.19862937

Decision Lineage & Provenance

Cameisha Smith

The Inquiry

The Inquiry: Organizational decisions are the unit of governance accountability, yet no infrastructure exists to capture the provenance of decisions — why they were made, by what authority, under what constraints, and with what expected outcomes — as a structural by-product of organizational operation. What is the state of the art across provenance, design rationale, institutional memory, process mining, AI accountability, and audit compliance? Where does each tradition's coverage end? Is the gap between these traditions disciplinary (solvable within existing fields) or structural (requiring new infrastructure)?

Falsifiable formulation: If any existing standard, framework, tool, or research tradition provides infrastructure that captures organizational decision provenance — the full chain of why, by whose authority, under what constraints, with what alternatives considered, and with what expected outcomes — at the moment of action and as a by-product of operation rather than a separate documentation task, then the structural gap claimed here does not exist.

Executive Summary

The data-to-decision gap is architectural, not extensional.

The W3C PROV specification defines provenance for "a piece of data or a thing." The provenance taxonomy (Buneman's why/where, Cheney's how, Herschel's what-for/what-form/what-from) provides a sophisticated vocabulary — but entirely for data. The questions organizational governance asks operate at a different abstraction level. Data provenance answers: which data influenced this output? Decision provenance must answer: why was this decision made, by whose authority, under what constraints, considering what alternatives, and expecting what outcomes? PROV's Entity/Activity/Agent model does not contain the constructs for authority delegation, constraint context, committed intent, or epistemic classification of knowledge states. The gap is not a missing PROV extension — it is a different layer of the stack.

Singh, Cobbe & Norval (2019) named this gap as "decision provenance" and proposed using data provenance methods to expose "decision pipelines." Their insight was correct — the accountability problem lives in decision chains, not just data chains. But their proposal remains within the data-flow paradigm: trace the data that flows into and out of decisions. The deeper requirement is infrastructure that captures the governance context of the decision itself — the authority, the constraints, the rationale — at the moment of commitment.

![Figure 2. The data-to-decision gap is architectural: data provenance infrastructure (bottom) is mature and widely deployed; decision provenance infrastructure (top) does not exist.](images/rr-001-fig-02.png)

The cognitive load diagnosis resolves the design rationale adoption puzzle.

Fifty years of design rationale research (Rittel 1973 → Ahmeti et al. 2024) produced increasingly lightweight documentation approaches without solving the adoption problem. The pattern: IBIS required structured argumentation networks. gIBIS made them graphical. QOC simplified the notation. ADRs reduced it to a template. Lightweight ADRs cut it to a single-page file. Each iteration reduced the burden. None eliminated it.

The cognitive load framework explains why: every approach in this tradition requires extraneous cognitive load — stepping outside the work to document the work. The designer must shift attention from the design decision to the meta-task of recording the design decision. This is not a tooling problem. It is a structural property of the documentation paradigm: when rationale capture is separate from rationale use, it imposes load that practitioners rationally reject. Nonaka & Takeuchi's (1995) SECI model adds depth: design decisions are substantially tacit knowledge — acquired through experience and not fully articulable. Attempting to externalize them after the fact is inherently lossy. The resolution requires making governance context a structural requirement of the operation itself — capturing rationale at the moment of commitment through the structural requirements of governance primitives, not through a separate documentation step.

Institutional memory literature confirms: memory loss is structural, preservation must be structural.

Walsh & Ungson's (1991) five retention facilities show that organizational memory is a distributed structural property, not a database. When any facility degrades, memory degrades. Darr, Argote & Epple (1995) provided the empirical anchor: knowledge depreciation is rapid even in standardized service operations (pizza franchises). Benkard (2000) confirmed it in aircraft manufacturing. These findings demolish the naive assumption that storing information prevents memory loss. Pollitt's (2000) four amnesia types — not documented, records lost, archives inaccessible, records available but unused — describe failure modes of storage technology, not of memory infrastructure.

The synthesis across Wegner (1987), Ren & Argote (2011), Ackerman & Halverson (2000), and Fiedler & Welpe (2010) is that memory preservation is a function of organizational structure, not storage capacity. Governance infrastructure that makes decision context a structural by-product of operation addresses the root cause identified by this tradition.

The retrospective/prospective distinction is architecturally fundamental.

Process mining (van der Aalst) and data provenance (Buneman/Cheney/Herschel) operate retrospectively — analyzing event logs and data transformation records after the fact. Audit standards (21 CFR Part 11, SOX 404) mandate retrospective records. Design rationale approaches attempt prospective capture but as a separate documentation burden. Kroll (2021) identifies the infrastructure gap explicitly — practitioners lack the tools to meet traceability requirements.

The synthesis reveals that prospective capture — capturing decision context at the moment of action, when reasoning is still active in working memory — is architecturally necessary. And it must be intrinsic to the operation. The xAPI standard (F11) validates that statement-based capture works at scale, but xAPI statements are epistemically flat: any actor can assert anything, no distinction between authoritative declarations and derived inferences, no authority delegation model. The gap between xAPI's deployed capability and governance requirements defines the infrastructure space.

Abstract

Organizations make decisions constantly — yet no infrastructure captures why those decisions were made, by whose authority, under what constraints, or with what expected outcomes. This survey examines six independent research traditions spanning five decades: data provenance, design rationale, institutional memory, process mining, AI accountability, and audit compliance. Each tradition independently establishes the requirement for organizational decision provenance and documents the consequences of its absence, but none provides infrastructure that captures decision context as a structural by-product of operation. The W3C PROV standard provides mature data provenance; nothing equivalent exists for decisions. The 50-year design rationale adoption failure is structurally diagnosed through cognitive load theory: every approach requires stepping outside the work to document the work. Institutional memory research confirms that preservation requires structural infrastructure, not better storage. The convergence of six traditions on the same gap — at their intersection, not within any one of them — constitutes the strongest evidence that the gap is architectural, not disciplinary.

"A record that describes the people, institutions, entities, and activities involved in producing, influencing, or delivering a piece of data or a thing." — Moreau & Missier (2013), W3C PROV-DM Recommendation
Findings15
F-RA-001-01 · gap-identification · lab-originated
Data provenance is mature and standardized (W3C PROV Recommendation 2013: stable, widely-deployed data model — three core types Entity/Activity/Agent, six core relations, domain extensions ProvONE/GDPRov), but the model is bounded to "a piece of data or a thing"; organizational decision provenance (why decided, under what authority and constraints) is absent and the extension mechanisms cannot express governance concepts (authority delegation, constraint context, decision rationale).
F-RA-001-02 · gap-identification · lab-originated
The provenance research tradition developed a powerful why/where/how taxonomy (Buneman/Khanna/Tan 2001 why+where; Cheney/Chiticariu/Tan 2009 how; Herschel et al. 2017 what-for/what-form/what-from) but all three field-defining surveys operate at the data level only; the taxonomy answers data questions, not the governance questions (why was this decision made, by whose authority, under what constraints).
F-RA-001-03 · gap-identification · lab-originated
"Decision provenance" has been named (Singh, Cobbe & Norval 2019, IEEE Access) as a conceptual proposal — using data-provenance methods to expose "decision pipelines" for oversight/auditing/compliance — but only conceptually: no formal infrastructure specification, no primitive system, no invariant structure, no operational model for capturing decision rationale at the point of action.
F-RA-001-04 · gap-identification · lab-originated
Design rationale research has pursued decision capture for 50 years (IBIS 1973 → gIBIS 1988 → QOC 1991 → DRL 1997 → ADRs 2005 → Lightweight ADRs 2011 → Ahmeti et al. 2024 action research) without achieving widespread industrial adoption; each generation reduces capture burden but ADRs still face adoption challenges in 2024.
F-RA-001-05 · root-cause-diagnosis · lab-originated
The design-rationale adoption failure is structurally explained by cognitive load: every approach (IBIS through lightweight ADRs) requires extraneous cognitive load — stepping outside the work to create/maintain separate rationale artifacts — which is reducible but not eliminable within the documentation paradigm; Nonaka & Takeuchi's (1995) SECI grounds it (design decisions are largely tacit; externalization is lossy and effortful).
F-RA-001-06 · gap-identification · lab-originated
Institutional memory is distributed across five retention facilities (Walsh & Ungson 1991: individuals, culture, transformations, structures, ecology), depreciates structurally and rapidly even in standardized operations (Darr/Argote/Epple 1995 pizza franchises; Benkard 2000 aircraft), and is a function of organizational structure not storage capacity (Stein 1995; Wegner 1987; Ren & Argote 2011; Ackerman & Halverson 2000; Fiedler & Welpe 2010; Pollitt 2000 four amnesia types).
F-RA-001-07 · gap-identification · lab-originated
Process mining (van der Aalst 2012: discovery, conformance checking, enhancement; Song & van der Aalst 2008 organizational mining) demonstrates the power of retrospective event-log analysis but has an acknowledged limit — event logs record what happened and when, but cannot capture why decisions were made, by what authority, under what constraints, or what alternatives were considered.
F-RA-001-08 · gap-identification · lab-originated
Traceability is necessary for accountability (Kroll 2021, ACM FAccT: traceability connects records of how a system was constructed and what it did to governance goals, requires establishing not only how a system worked but how/why it was created), but Kroll explicitly identifies a gap — the toolbox available to practitioners is insufficient for full traceability implementation.
F-RA-001-09 · gap-identification · lab-originated
AI systems have created urgent new demand for decision provenance that existing infrastructure cannot meet; the AI-accountability infrastructure is being constructed piecemeal (Mitchell et al. 2019 Model Cards; Gebru et al. 2021 Datasheets; Ojewale/Suresh/Venkatasubramanian 2026 LLM audit trails as "chronological, tamper-evident, context-rich ledger... linking technical provenance with governance records") — addressing the same need governance infrastructure could provide structurally.
F-RA-001-10 · gap-identification · lab-originated
Audit-trail standards (21 CFR Part 11, SOX §404, HIPAA, ISO 9001, ISACA) consistently mandate WHO/WHAT/WHEN — records of actions taken, by whom, when — but none requires decision rationale, authority basis, alternatives considered, or expected outcomes; they structurally omit WHY and BY WHAT AUTHORITY.
F-RA-001-11 · gap-identification · lab-originated
The closest deployed prior art for statement-based organizational capture is xAPI (IEEE 9274.1.1-2023): immutable Actor-Verb-Object JSON statements in a Learning Record Store, IEEE-standardized, millions of daily statements; it validates that statement-based capture works at organizational scale but exposes the gap — no governance primitives (any actor can assert anything), no truth-type system (all statements epistemically equal), no authority model (no delegation chains), no organizational state representation.
F-RA-001-12 · convergent-validation · lab-originated
The "requirements without infrastructure" meta-pattern is validated across six independent research traditions: data provenance (F1–F2), design rationale (F4–F5), institutional memory (F6), process mining (F7), AI accountability (F9), and audit compliance (F10) independently converge on the same structure — the requirement for organizational decision provenance is well-established, the consequences of its absence well-documented, but no infrastructure makes it a structural by-product of operation.
F-RA-001-13 · gap-identification · lab-originated
The data-lineage market validates lineage value while confirming the decision-lineage gap: enterprise tools (Apache Atlas, DataHub, Collibra, Informatica, Alation, MANTA) provide technical data lineage and command paid investment, but none provides governance primitives, authority delegation chains, truth-type systems, or organizational decision provenance. Market leaders differentiate structurally from DLP: Collibra is centralized governance-by-agents (agents propose metadata changes in an asset repository); Alation's "decision trace" is retrospective reconstruction from pipeline evidence — both stop short of prospective decision-provenance infrastructure.
F-RA-001-14 · architectural-framing · lab-originated
The data→decision gap is a *different layer of the stack*, not a missing PROV extension. PROV's Entity/Activity/Agent model does not contain the constructs for authority delegation, constraint context, committed intent, or epistemic classification of knowledge states; no extension (subtyping, expanded relations) can supply them because they are not at the data abstraction level.
F-RA-001-15 · convergent-validation · lab-originated
The "requirements without infrastructure" meta-pattern originates in RA-001 and became the organizing observation for the entire research program — confirmed in nine subsequent sprints in independent domains (S2 AI governance, S3 organizational memory, S5 semantic web, S6 audit, S8 world models, S9 cybernetics, S10 decision cognition, S11 symmetry-breaking, S14 organizational learning).
Open Questions4
OQ-001Can the cognitive load diagnosis be empirically validated?
OQ-002How do emerging AI governance regulations relate to the audit trail gap?
OQ-003What is the relationship between FAIR data principles and decision provenance?
OQ-004Does Stalla-Bourdillon's legal/data-protection work on provenance represent a separate tradition?
Bibliography37
Moreau, Luc and Missier, Paolo (2013) · PROV-DM: The PROV Data Model
Buneman, Peter and Khanna, Sanjeev and Tan, Wang-Chiew (2001) · Why and Where: A Characterization of Data Provenance
Cheney, James and Chiticariu, Laura and Tan, Wang-Chiew (2009) · Provenance in Databases: Why, How, and Where
Herschel, Melanie and Diestelk{\"a}mper, Ralf and Ben Lahmar, Houssem (2017) · A Survey on Provenance: What for? What form? What from?
Singh, Jatinder and Cobbe, Jennifer and Norval, Chris (2019) · Decision Provenance
Kroll, Joshua A. (2021) · Outlining Traceability: A Principle for Operationalizing Accountability in Computing Systems
Ojewale, Oyedeji and Suresh, Harini and Venkatasubramanian, Suresh (2026) · LLM Audit Trails: Transparency and Accountability in Large Language Model Systems
Rittel, Horst W. J. and Webber, Melvin M. (1973) · Dilemmas in a General Theory of Planning
Conklin, Jeff and Begeman, Michael L. (1988) · gIBIS: A Hypertext Tool for Exploratory Policy Discussion
MacLean, Allan and Young, Richard M. and Bellotti, Victoria M. E. and Moran, Thomas P. (1991) · Questions, Options, and Criteria: Elements of Design Space Analysis
Lee, Jintae (1997) · Design Rationale Systems: Understanding the Issues
Dutoit, Allen H. and McCall, Raymond and Mistrik, Ivan and Paech, Barbara (2006) · Rationale Management in Software Engineering
+25 more citations