Security & data handling

Sensitive documents stay controlled from upload to review.

SidelineWorks is designed to minimize exposure at every stage of document handling.

01

Authenticated intake

Uploads are parent-authenticated, school-scoped, size-limited, quarantined, and marked for review—not approved.

02

Integrity verification

SidelineWorks records byte size and SHA-256 checksum and verifies both before processing.

03

Separated, local-first analysis

Processing is queued separately. Local OCR and vision-language tools prepare structured suggestions through a private worker path.

04

Least-privilege review

Authorized school roles review the original record. Worker access is narrowly scoped and does not include user sessions or broad application permissions.

05

Data-minimized results

Normal review responses exclude raw OCR, prompts, internal paths, and non-retained pages.

06

Human accountability

AI assists with organization and extraction. It never approves eligibility.

Securely received. Privately analyzed. Human verified.

Cloud document analysis is disabled by default in the current implementation. Manual review remains available when automated extraction cannot complete.

Accurate today, hardened continuously

Our current positioning is local-first, privacy-conscious, human-reviewed, and designed around least privilege and data minimization. We do not claim HIPAA compliance, end-to-end encryption, fully automated retention enforcement, or formal security certification.

Security questions or responsible disclosures can be sent to [email protected]. Privacy questions can be sent to [email protected].