Privacy-first handling for sensitive investigation materials.

This foundation copy establishes the privacy posture for the platform and should be reviewed by counsel before production deployment.

Policy Area 1

Information submitted through consultation, intake, portal, and evidence workflows may include identifying information, transaction records, communications, uploaded documents, wallet addresses, and case notes.

Policy Area 2

Sensitive materials should be protected through encryption in transit, encrypted storage, access logging, least-privilege permissions, retention controls, and administrative review.

Policy Area 3

Case information may be used to provide investigation support, organize evidence, prepare documentation, communicate with authorized users, and coordinate with legal or regulatory stakeholders when authorized.

Policy Area 4

A production deployment should include detailed retention periods, subprocessors, regional hosting commitments, user rights, breach notification procedures, and data processing agreements.