Privacy & consent
Beneficiary privacy is a core requirement, not an afterthought
Private beneficiary details are stored only for internal verification and are never exposed through public pages or APIs.
Policy 1
Beneficiary names, contact details, and locations are stored separately from public-safe case content.
Policy 2
Public dashboards show approved aggregates only.
Policy 3
Stories are anonymized by default.
Policy 4
Name or photo publication requires recorded consent and consent proof.
Policy 5
Takedown requests can be handled through the super admin console and contact workflow.