Data & Privacy

Passport Intelligence is designed to give operators useful visibility into Digital Product Passport activity without unnecessary personal exposure. This page summarises the privacy and governance posture customers and developers should be aware of.

Brand-Scoped Access

All Passport Intelligence surfaces are scoped to the active brand. Access to the workspace, signals, and investigation tools is governed by the platform’s role model. Sensitive operations — such as triggering a manual trust recompute — are restricted to authorised roles (typically Owner and Admin).

Retention Posture

Passport Intelligence applies finite, operationally appropriate retention windows.

DataPosture
Visitor IPsMasked after the defined retention window
Engagement eventsRetained for a finite period appropriate to operational use
Aggregated metricsRetained for trend analysis as part of the platform’s analytical model

The intent is to give operators a credible operational view while limiting unnecessary retention of identifying information.

Identity Awareness Without Personal Profiling

Passport Intelligence is identity-aware in the product sense — it knows about products, passports, batches, and lots — not in the consumer-profiling sense. Signals are interpreted against the platform’s own identity model rather than against individual consumer identities.

Auditability

Operations performed within Passport Intelligence — including manual recomputes and investigations — fit within the platform’s broader audit posture, supporting after-the-fact review where required.

In Summary

Passport Intelligence is built to be enterprise-safe by default: brand-scoped, role-aware, identity-aware, and conservative on personal data retention.