Private By Design

Security

The V2 foundation protects keys, signatures, approval status, indexing posture, and restore evidence.

Secret Handling

API and approval keys are hashed and never logged in raw form.

Tamper Evidence

Signed manifests are validated on every verification flow.

Restore Proof

Restore records reject secret-like notes and store hashes, not backup contents.

Learning Ledger

Review actions reject secret-like text and stay customer-owned.

Privacy Boundary

Risk, usage, and resilience evidence is metadata-only; no source payload exposure.