Status: scaffolded / public-safe security policy.

Report suspected exposure of student data, school private operations, exact sensitive locations, secrets, tokens, private Foundation operations, or sealed IP through the private review channel designated by Alexandra Caussade or Foundation governance. Do not open a public issue containing sensitive material.

This repository must not contain:

• student data, family data, individualized records, admissions records, grades, attendance records, health records, or staff private data;
• exact sensitive locations, private facility details, private schedules, private routes, or private partner notes;
• donor data, volunteer private data, customer data, or private Foundation operations;
• private training corpora, secrets, tokens, credentials, private endpoints, or sealed YOSO-YAi LLC IP.

If sensitive material is found, stop publication work, remove the public exposure path, preserve enough metadata for private review, and require human review before restoring any related public content.