Security
Security posture designed for sensitive family and legacy records.
LegacyOS is explicit about what is implemented today: owner-only access by default, scoped executor preview, validated forms, and authenticated document delivery. We do not claim certifications or guarantees that are not present.
Least-privilege data model
Records belong to the owner by default, and Supabase production SQL is shaped for row-level ownership policies.
Executor preview instead of full reveal
The MVP avoids a reckless “show everything” pattern. Access is based on linked records and visibility settings.
Protected local storage baseline
Document uploads are stored outside the public web root and served through authenticated route handlers.