Public commitments registry
All six enterprise documentation commitments from the BeProof PRD are published on this website for pilot and procurement review. BeProof remains pilot-ready — not full Enterprise GA.
Closure status
6 of 6 PRD public commitments documented with public pages — retention, support matrix, SSO/RBAC, isolation/encryption, vulnerability disclosure, versioning.
Retention schedule
DocumentedPersonal, managed endpoint, and control plane retention — default 90 days upstream in pilot.
macOS support matrix
DocumentedmacOS 14–15, Apple Silicon, permissions, PPPC, and MDM deployment runbooks.
SSO / RBAC model
DocumentedFirebase admin auth (pilot), four org roles, device JWT enrollment. SAML/OIDC — post-GA.
Tenant isolation & encryption
DocumentedPer-tenant scope, RBAC, TLS. Journal payloads are encrypted; inventory tables are metadata-only but not encrypted in the current release. Ed25519 export signing; GCP cloud encryption.
Vulnerability disclosure
DocumentedPrivate report channel, 3-day ack target, latest-release support policy, safe harbor.
Unified versioning contract
DocumentedThree independent axes: app release, Policy Pack semver, data contract version — all in export manifest.
Pilot → GA documentation pack
Public commitments closure completes the pilot → GA documentation pack:
- Design partner kit
- Reference architecture
- Compliance mapping
- Procurement FAQ
- Security whitepaper
- Public commitments (this page)
Post-pilot gaps (documented honestly)
These are not hidden — they are outside the six PRD public commitments and remain roadmap or contractual items:
- BeProof SOC 2 / ISO 27001 certification
- SAML/OIDC enterprise admin SSO
- SIEM production streaming (M4)
- EU data residency (on requirement)
- Enterprise SLA and commercial pricing