Governance
Audit, Approvals, and Privacy Boundaries
Operating Principle
The PMO governs work objects: projects, tasks, agent runs, approvals, and audit events. It does not implement hidden employee monitoring.
Production Write Gate
Write-like actions must be auditable before persistence is connected. External sends, publishes, deletes, and high-risk tool calls require explicit human approval.
Governance Rules
| Area | Rule |
|---|---|
| Audit Events | Append-only writes for work-object changes |
| Approvals | External send/publish/delete requires human review |
| Privacy | No hidden employee monitoring or personal productivity scores |