Admin Access Policy

Private user content is not general staff-accessible material. Administrative access should be limited to the smallest scope necessary to maintain security, investigate platform failures, resolve support issues, or satisfy legal obligations.

Administrative review should be metadata-first. Job status, billing state, queue diagnostics, session information, and export records should be reviewed before any deeper content access is considered.

If deeper access to private transcripts, uploads, notes, or exports is ever required, it should be justified, audited, time-limited, and restricted to authorized personnel. Product controls should favor read-only support views rather than ordinary user-route bypasses.

Admin access, billing actions, and sensitive remediation steps should create reviewable audit logs. Private job review should stay inside admin tooling and should not rely on normal end-user routes.