Authenticated intake
Uploads are parent-authenticated, school-scoped, size-limited, quarantined, and marked for review—not approved.
Security & data handling
SidelineWorks is designed to minimize exposure at every stage of document handling.
Uploads are parent-authenticated, school-scoped, size-limited, quarantined, and marked for review—not approved.
SidelineWorks records byte size and SHA-256 checksum and verifies both before processing.
Processing is queued separately. Local OCR and vision-language tools prepare structured suggestions through a private worker path.
Authorized school roles review the original record. Worker access is narrowly scoped and does not include user sessions or broad application permissions.
Normal review responses exclude raw OCR, prompts, internal paths, and non-retained pages.
AI assists with organization and extraction. It never approves eligibility.
Cloud document analysis is disabled by default in the current implementation. Manual review remains available when automated extraction cannot complete.
Our current positioning is local-first, privacy-conscious, human-reviewed, and designed around least privilege and data minimization. We do not claim HIPAA compliance, end-to-end encryption, fully automated retention enforcement, or formal security certification.
Security questions or responsible disclosures can be sent to [email protected]. Privacy questions can be sent to [email protected].