Role-based access
Workspace members hold one of owner, admin, adjuster, reviewer, or viewer. Each role has scoped permissions enforced at the database layer through row-level security policies, not just in the UI.
Trust
Claims work involves sensitive customer information and high-stakes decisions. The controls below describe how ClaimCircuit is built today — what's actually in place, not aspirational.
Attestation issued January 2026.
In progress.
Not claimed.
AI drafts the work for a qualified human to review. These are the controls that keep AI output accountable.
Workspace members hold one of owner, admin, adjuster, reviewer, or viewer. Each role has scoped permissions enforced at the database layer through row-level security policies, not just in the UI.
Claims, evidence, customers, policies, AI outputs, and audit logs are partitioned by organization. Members of one workspace cannot read or write another workspace's records.
Uploaded evidence, claim documents, and media live in private storage buckets. Files are not publicly addressable; access is mediated by the application using the requester's session and workspace membership.
Sensitive actions are recorded to immutable audit logs and per-claim event timelines. Members of a workspace can review what happened, who acted, and when.
Each AI capability — FNOL structuring, document review, damage vision, policy match, triage, brief drafting, customer update drafting — has an explicit toggle. Owners and admins decide which capabilities are available, and human review is required by default.
Customer-facing messages are never sent without an authorized human approving the draft. Recipients can manage email preferences and unsubscribe from non-essential mail at any time.
AI never approves, denies, settles, accuses, or sends customer messages on its own. AI output is treated as a draft for a qualified human to review, edit, and decide on.
Reach our security contact at security@claimcircuit.com. For details on what to include, see our responsible disclosure guidelines.
Service area state and any active incidents are tracked on the status page. Incident response runs on 24/7 NOC monitoring with a P1 response target under 2 hours.