Data use
Mindburn's public site is a source-backed evaluation surface. Real company evidence belongs behind reviewed access and explicit authority boundaries.
Disclosure map
The public site explains the boundary. It does not become a place to submit private evidence or approve company work.
Public forms and the public assistant are for routing and source-backed questions. Visitors should not send secrets, credentials, customer records, regulated documents, or private evidence.
The public assistant can answer from indexed Mindburn routes and should return unavailable instead of inventing facts or approving work.
Receipts, EvidencePacks, and ProofGraph details for real company workflows are not public site artifacts unless explicitly published and source-backed.
Code Intelligence Graph indexing must respect .gitignore, deny sensitive paths, skip secret-looking files, enforce project-root containment, and treat code comments and README text as untrusted evidence unless promoted through review.
CodeIndexReceipt, CodeImpact, affected tests, and route impact can support engineering review. They cannot approve actions, execute shell commands, mutate source files, or override HELM AI Kernel authority.
When a workflow uses a model provider, the implementation must name what is sent, what is retained, and which authority boundary applies before side effects run.
Mindburn does not ask visitors to submit private data for public-site evaluation and does not present public assistant input as product training data.
The llms files, research routes, and receipt demos are public proof surfaces. Private customer evidence is not implied by public wording.