Client Bureau
Submit report

Privacy

Privacy Policy

Client Bureau is designed around limited public disclosure and private identifier matching.

Private identifiers

Phone numbers and email addresses are used for private matching and should be stored as hashes or otherwise protected identifiers. Full phone numbers and email addresses are not displayed on public client profile pages.

Evidence files

Report evidence is intended for admin-only review in a private Supabase Storage bucket. Public profiles should show moderated summaries, not raw evidence files, unless a future policy explicitly allows publication.

Account data

Contractor account data is used to provide authentication, report ownership, dashboard status, subscriptions, moderation communications, and operational support.

Retention and deletion

Production launch should define retention windows for rejected reports, evidence, responses, and subscription records before real customer onboarding begins.