Account scoped
Receipts are associated with the authenticated LINE user so users only access their own documents.
Privacy
Built for sensitive receipt data
Receipts can contain supplier names, tax IDs, payment totals, and business activity. PromJod.ai treats those documents as private workflow data.
Controlled storage
Uploaded files and extracted records are stored through the configured project storage and database providers.
Deletion workflow
Use the history page to remove receipt records that no longer need to stay in the workspace.
Recommended Operating Rules
Limit admin access to staff who need receipt review or export rights.
Do not upload personal documents that are not related to business expense processing.
Rotate API keys and environment secrets outside the repository.
Review storage retention and deletion policies before production launch.
Production Checklist
Retention: decide how long original receipt images and extracted JSON should remain available.
Deletion: test that history deletion removes records users no longer need.
Access: document who can inspect Supabase tables, storage buckets, and Railway logs.