Guide: Privacy profiles and team roles

Loose access controls and excessive data collection turn simple mistakes into expensive incidents.

1. Select one of three onboarding privacy profiles:
2. Alias Mode, Standard Mode, or Business CRM Mode.
3. Open Settings → Privacy Protocol Dashboard to tune field visibility, retention, alias-only mode, and screen privacy behavior.
4. Review Vault Mode status and Customer Data Inventory in Settings.
5. Set ephemeral profile defaults (1, 7, or 30 days) for quick POS customers.
6. Open Settings → Manage Team for role assignment and least-privilege controls.
7. Confirm restricted routes and session controls per role.

• Some role and permission UX is still maturing.
• Retention cleanup runs on schedule and supports manual trigger, but hard-delete restore is not available in this phase.