Trust, kept visible.

This is the current trust baseline for Harper Relay Human-Aware Scheduling. It explains what the live desk stores today, what stays route-attached at the handoff, what still does not count as a separate portal or ticketing system, and where a direct privacy owner still needs to be named.

Open the company desk About Harper Relay

Current build status

Search persistence may be enabled on the server through Supabase.

Human-Aware Scheduling now routes review requests through the live Harper Relay desk with /managed-websites attached and website-review context already selected.

This remains a live company review path, not a separate client portal, hidden ticket queue, or secure credential-drop lane.

Optional analytics, pixels, and profiling are controlled by the privacy choices layer and stay off in essential-only mode.

Policy Scope

Keep the collection story honest and narrowly described.

This page is written to describe current functionality, not a hypothetical future stack. If the app later expands intake beyond the current audit brief or adds tracking, the policy needs to move with it.

What this review path collects

Only the narrow handoff details needed to review the scheduling break

The live Harper Relay desk collects first name, last name, email, message body, human verification status, optional phone, optional customer type and address, the attached route, request type, an optional quick-note seed, and optional discount or phone-follow-up preferences so an operator can review schedule-safe routing, stale proof, CTA friction, handoff breaks, or upkeep gaps.

What this route does not create

Human-Aware Scheduling stays honest about portals, tickets, and owner availability

The public note is for the page, proof, or handoff break, not for passwords, payment data, or an always-on account-manager inbox. This route does not create a separate client login, secure vault, or hidden project queue just because the page sells ongoing care.

Storage and processors

Contact requests may write to Supabase and notify handlers when email is configured

When the contact-request storage layer is available, the Human-Aware Scheduling desk can write the note to Supabase on the server. When storage is unavailable, the desk returns a truthful pilot-mode receipt and queues manual follow-up instead of claiming the write succeeded. Search snapshots, AI Visibility Audit briefs, and queue-governance metadata may also use the same server-side Supabase setup.

Cookies and similar tech

Optional tracking stays behind the privacy choices layer

On Harper Relay, optional analytics, marketing pixels, and visitor profiling are controlled by the privacy choices layer. Essential-only mode keeps non-essential tracking off. The current route does not use session replay, keystroke logging, or automatic marketing retargeting by default.

Currently In Scope

the route-attached Human-Aware Scheduling handoff at /contact?from=managed-websites with website-review context already selected

shared-desk submissions: first name, last name, email, message, human verification status, optional phone, customer type, company, address, route, request type, quick-note seed, and optional discount or phone-follow-up preference

a public note that stays high-level and asks for the page, proof, path, or upkeep break instead of passwords, payment data, or private secrets

route-aware privacy and about pages that keep the Human-Aware Scheduling story attached instead of dropping into a generic trust page

pilot-mode manual-follow-up receipts when contact storage is unavailable on the current run

AI Visibility Audit briefs, domain-search queries, and generated comparison snapshots elsewhere on the site

queue-governance metadata used for internal lane work

Still Not Live

a separate client login, client vault, or hidden ticket lane on the Human-Aware Scheduling route

a dedicated public privacy-request owner approved for broader site handling

session replay, keystroke logging, or advertising pixels that load before consent

Trust Routing

Trust requests need an owner, not a maze.

The policy route and company desk are live now. The last trust upgrade is simple and human: name the operator-approved mailbox or verified privacy-request owner so every sensitive question has a direct path.

Open the message desk Scenario Demos CRM Login