We do not build features whose primary value is monitoring people. We surface bias in ranking — every vendor score, crew suggestion, and conflict resolution comes with the features that drove it. We do not automate decisions that meaningfully affect people without a human in the loop.
Agents propose; humans decide. Every consequential action creates a proposal (reviewable at /api/agents/proposals), not a direct mutation. Autonomy is earned per capability through explicit review — not granted by default.
Row-Level Security on every table. 3-layer RBAC for agents: role → agent access → venue scope → data filter. Prompt-injection defense on every untrusted input (lib/agent-input-guard.ts). Audit logs with before/after snapshots, 24-month retention.
Per-tenant learning, no pooled training. Your data trains your system, never anyone else's. Anthropic API calls run under Zero Data Retention (ZDR) — certified by Anthropic, enabled June 2026. No prompt sent from this platform is retained by Anthropic or used to train any model. Data minimization: only collect what the feature needs. Sub-processors (Supabase, Anthropic, Vercel, Resend, Sentry, plus optional integrations like Microsoft Graph) listed in the DPA; each role in the data flow documented. No third-party analytics that fingerprint users.