A2P DeskEvidence-grade A2P preflight

Security

Security and data handling for A2P evidence workflows.

A2P Desk is built for agency-scoped A2P preflight work: private evidence, cautious reporting, provider-token boundaries, and tracked trust requests before support takes destructive action.

Report security issueBack to home

Last updated: May 27, 2026

Workspace isolation

  • Agency data is scoped by workspace, and Supabase RLS tests cover client, campaign, scan, finding, evidence, intake, consent, subscription, report, HighLevel, and trust-request resources.
  • Private evidence objects are stored under agency-scoped paths and are not exposed through public reports.
  • Service-role ledgers are not readable or writable by browser-authenticated users.

Evidence handling

  • Manual uploads are size-capped and byte-sniffed before private storage.
  • Evidence metadata uses hashes, source labels, timestamps, and sanitized URLs instead of exposing storage paths or signed URLs in reports.
  • Report links are read-only, revocable, and fail closed when unknown, disabled, or regenerated.

Provider and billing boundaries

  • HighLevel OAuth tokens are stored server-side and encrypted before persistence.
  • HighLevel launch scopes are readonly at launch: location read and installer details read.
  • Stripe-hosted checkout and billing portal flows are used for payment details; A2P Desk does not store full card numbers.

AI boundaries

  • Deterministic rules own scanner findings and pass/fail guidance.
  • AI-assisted rejection output is draft-only and requires agency review.
  • Pasted rejection text is redacted before AI use, and raw consent PII is not sent to AI providers.

Trust requests

  • Signed-in agency owners and admins can create tracked access, export, correction, deletion, and security requests from the dashboard.
  • Deletion requests are reviewed before destructive action so billing, audit, fraud-prevention, and security retention needs are handled deliberately.
  • Trust-request creation writes a service-role audit event with hashed request context when available and allowlisted metadata.

Operational status

  • Sentry SDK instrumentation and event scrubbing are wired; production receipt verification remains a launch-readiness item.
  • A sanitized health endpoint exists for uptime probes; the external uptime monitor still needs final provider configuration.
  • A2P Desk provides preflight workflow and evidence support only. It is not legal advice and does not guarantee HighLevel, carrier, TCR, Twilio, or provider approval.